Beefy Boxes and Bandwidth Generously Provided by pair Networks
Keep It Simple, Stupid
 
PerlMonks  

Re^2: A regexp server in Perl

by iburrell (Chaplain)
on Nov 11, 2004 at 18:31 UTC ( [id://407144] : note . print w/replies, xml ) Need Help??


in reply to Re: A regexp server in Perl
in thread A regexp server in Perl

Even if the regex are sanitized to removed Perl code, they are still dangerous. It is fairly easy to produce pathological regular expressions that won't finish in the age of the universe and take all the CPU to process.

This results in a denial of service attack. The server would need to have some way to kill off matches if they run for too long.