Why setuid-root wrapper?

1. Original web environment was not chroot

2. Only root can perform setuid to run as unique userid

3. Root-only access to private data,

   userid database, usage log, secret for I/O crypto token