Re: User regexps


No such thing as a small change
	PerlMonks

Re: User regexps

by Abigail-II (Bishop)

on Jan 14, 2004 at 15:44 UTC ( [id://321276]=note: print w/replies, xml )

Need Help??

in reply to Re: User regexps
in thread User regexps

And that's going to prevent you from danger exactly how?

There are two potential dangers when running user supplied regexes. 1) arbitrary code injection and 2) resource exhaustion. 1) is not possible by default, only if you enable use re 'eval', or use string eval (which isn't done by the OP). 2) is a more serious problem, and can be archieved with the limited of characters you propose.

Abigail

Comment on Re: User regexps Download Code

Replies are listed 'Best First'.
Re: Re: User regexps by dd-b (Monk) on Jan 14, 2004 at 18:13 UTC
The resource exhaustion issues can be partly defended against using ulimit at the shell level, or suitable system calls. I don't actually know if there's a direct Perl interface to that; nothing in perlfunc anyway.	[reply]
Re: Re: Re: User regexps by Fletch (Bishop) on Jan 15, 2004 at 01:09 UTC
Yup, BSD::Resource.	[reply]

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://321276]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others learning in the Monastery: (3)

As of 2024-04-25 10:08 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found