but calling it "safe" or not-dangerous is dishonest stupid" OK, lets put the paranoid to rest. It's my own server run from home. It's my own code. Only I know the page address. I run an HTTPS apache server latest stable build. I have configured apache to kill CGI scripts that run longer than 8 seconds. I now have a certain 'magic' that needs to be met to let the page process the perl script. It is only me that uses it. If that is stupid, then I am thick, not Nick

Why base your identity on an attribute of software?