But without a cgi wrapper, the files would have to be readable by the user that Apache runs as (nobody). Any user who can program perl can write a simple script to read his dirs/files and get at private info. That's what Anup is concernad about.
~Charlie
~Charlie