Cpanel is using UW Imap server. There are major security concerns with the possibily to show non-mail files within SquirrelMail and other mail clients. This includes sensitive files, such as /etc/passwd and others. It's a known problem with the UW imap server. The easiest and probably the best is to not use UW. It's terribly slow with large mailboxes. A much better alternate to UW would be Courier IMAP which is significantely faster and more secure. It would also help with the speed of pop3 on heavily loaded servers such as cPanel. Anyone care to comment on this? This is definately a major security concern espeically for those of us running Squirrelmail.