We wish to secure forms over 10gAS from SQL injection... while providing internet access. We are experimenting with mod_security.conf for Apache but when we enable it we get the forms error: FRM-92102. Is this the best way to secure forms and does anyone have experience configuring mod_security.conf? Thanks in advance. Paula