Just an aside here whichever way it gets done ... The potential for abuse here is very high. Someone may craft a patch that executes arbitrary PHP code that can be effectively anything. Having a virtual server to do this will help with some scenarios, but others (e.g. sending spam, crawling, phishing) can still be useful to the cracker ...