Re^2: Insecure dependency in open while running with -T switch

Replies are listed 'Best First'.
Re^3: Insecure dependency in open while running with -T switch by vit (Friar) on Jan 18, 2008 at 23:50 UTC
Acually I have one more question. My file is a path to file like /yyy/xxx/file.txt Symbol "/" or "\" is always tainted as far as I understand. Untainting just file.txt is not enough. So what to do?	[reply]
Re^4: Insecure dependency in open while running with -T switch by runrig (Abbot) on Jan 19, 2008 at 00:23 UTC
Symbol "/" or "\" is always tainted as far as I understand. You understand incorrectly. "/" and "\" is fine if that is what you allow in your regular expression to untaint the data.	[reply]
Re^5: Insecure dependency in open while running with -T switch by vit (Friar) on Jan 19, 2008 at 00:53 UTC
So now allowed additionally \\ \/ and \s which I need to pass files and parameter into my internal perl script and my CGI started working with -T `sub untainted_string { my ($data) = @_; if ($data =~ /^([-\@\w.\\\/\s]+)$/) { $data = $1; # $data now untainted } else { die "Bad data in '$data'"; } return $data; }` [download] So where might I be in danger now? Why -T makes my CGI safer?	[reply] [d/l]
Re^6: Insecure dependency in open while running with -T switch by runrig (Abbot) on Jan 19, 2008 at 01:13 UTC
Re^7: Insecure dependency in open while running with -T switch by vit (Friar) on Jan 19, 2008 at 01:30 UTC
Some notes below your chosen depth have not been shown here