> 2) there are certain apache hacks (like things that include ../) that I > would prefer to stop at the firewall. I would also like to log these > attempts and begin a reject/ban for a certain period of time. Or just log > until I figure out the best way to safely ban. try mod_security application firewall for apache: http://www.modsecurity.org/ -- Eero, RHCE