[plug] NOTE: serious security flaw in AwStats

[Bob Linus]

II. DESCRIPTION

Remote exploitation of an input validation vulnerability in AWStats
allows attackers to execute arbitrary commands under the privileges of
the web server.
http://lists.netsys.com/pipermail/full-disclosure/2005-January/031002.html
-----------
This is why you run services as nobody/nogroup or users with limited
permissions?   Unfortunately, I'm getting old and need to keep myself
current with best practices for unix security and productivity. :)