Hi,
Thanks, that just what I needed to know. I can see what you mean about security issues.

So if you were writing a software application that needed to sit entirely under the document root, and you were writing your own Perl modules, what would you do...? I guess I could ask people to put stuff outside the document root... I think i'll take a look at your code for including the CGI module and see if I can use that,

cheers,
Tom

So if you were writing a software application that needed to sit entirely under the document root {...}

I'd explain to my client that they should hire another programmer, because I wasn't willing to be responsible for a mistake in security when such a file layout was clearly not necessary.

Letting the PHBs decide technical issues is unethical as a professional programmer.

-- Randal L. Schwartz, Perl hacker
Be sure to read my standard disclaimer if this is a reply.

I'm sorry but what are PHBs?

Can anyone tell me what PHBs means?

I sometimes put modules in a subdirectory of a (CGI) script when I have very custom versions of a module per script, and that way, it's easy to keep track of which module version belongs to which script. Actually, they're more like loadable sections of the main script, on demand. Plus, they're easier to copy to different systems, that way.

The way I keep them from prying eyes, is by denying access to them through the HTTP server, by placing a deny from all rule on *.pm files, in my .htaccess file.

The only other problem I can think of, is the value of the current directory when the script is run, in order to find that libroot. You cannot be 100% sure that it's the directory the script is in — though for CGI, that is generally the case. In theory, FindBin should be able to help locate the script, but I've had it more fail to do anything at all, than actually help.