For anyone with any sites hosted on 1&1.com, DON'T use their spiffy new xhtml website builder program. It has a vulnerability with the images folder that allows people to upload php scripts. I feel like I need to explain why I know this so I can still have some dignity. I was helping my wife build a couple of sites, but grew tired of having her constantly tell me to tweak it. So, I broke down and made her use the Website Builder program so she could design the site herself.