Hi, I would like to ensure that our php.ini is fully locked down to prevents individuals from any exploiting vulnerabilities in our site. (hershonline.com) What sites do you recommend to gather this information? Do you recommend running tools like securitymetrics.com? I ran this on our site (hersh) and found no real errors. However, I want to make sure that hersh site is fully secure. Thanks for the advice. Thanks, Dale Hersowitz Hersh Corporaton hershonline.com -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php