Hey. How would I hide .htaccess and .htpasswd files from users who have accounts on my linux box? I am under the impression that these files have to be world readable cause the web server must read em so what can I do to "hide" em from other users on my system who just decide to cat the files? Thanks.

ahh the good old .htpasswd files, Im researching them as we speak, I believe that you have to chmod them to something that only apache can read (nobody?)(root also of course?) but Im not to familiar yet, gimme the weekend and Ill try to remember to post findings, later