Keep It Simple, Stupid | |
PerlMonks |
Re^2: Extra CGI.pm safety by stripping \x00 bytes?by rlucas (Scribe) |
on May 26, 2005 at 19:56 UTC ( [id://460852]=note: print w/replies, xml ) | Need Help?? |
OK - thanks for clarifying that for me. I understood the nature of the crack as described by Ovid in his node (and by others elsewhere on the web). In fact, I'm not anticipating sending anything to system(), and I'm tainting things.
However, when I send utf8 text to other external C programs (databases, for example, or sendmail), should I take special caution in those cases?
In Section
Seekers of Perl Wisdom
|
|