This shouldn't be insecure, but I'd really prefer being able to set
multiple suexec roots (we really just need to suexec in .../user and .../common/app)
public_html/cgi-bin
# The first two lines contain the suexec document root and the suexec userdir
# suffix. If one of them is disabled by prepending a # character, suexec will
public_html/cgi-bin
# The first two lines contain the suexec document root and the suexec userdir
# suffix. If one of them is disabled by prepending a # character, suexec will