If you want a mother of a hack, then you can write a file system that masquerades PHP. That way, you can use the built in hijack web server, and it will be fooled into serving out dynamic content masquerading as static files on this invented file system.

Of course, it would work equally well with FTP.

Of course, it doesn't have to be PHP, it can be anything.

Calvin