P is for Practical | |
PerlMonks |
Re: Is this safe??by Hot Pastrami (Monk) |
on Feb 07, 2001 at 00:17 UTC ( [id://56764]=note: print w/replies, xml ) | Need Help?? |
Use CGI.pm for grabbing the parameters, and read up on Taint mode for protecting against such attacks. A search for 'Taint' on this site should yield lots of good results. Update: After I replied I looked at what this code actually does... you must be very cautious. You are allowing some very dangerous things to be specified by the user, such as paths to files. This approach invites grave danger to the security of your server. Hot Pastrami
In Section
Seekers of Perl Wisdom
|
|