mod_proxy is insecure as shipped: the deny rule is commented out. I had it installed, and a spammer used it to relay spam through my server. Shall I commit a change to the 30_mod_proxy.conf that denies by default? Ari