Like i mentioned Dave, they also poorly implement the OS security like having the web server run as root instead of a chroot environment. -- Alex Hartman