Dear Mr. Muskrat,
I appreciate and accept your kind apology, and
also the remarks of Brother Frankus and others.
I'm truly appreciative of advice and eager to learn more.
As perhaps many programmers are, I'm self-taught by trying
to inhale book after book and examine other's code. I would
be really nuts to think there's nothing more to learn.
In fact, as I mentioned in my initial email to you, the
points you raised were excellent -- I plan to integrate
most of them in a substantial rewrite of FutureSQL that will
make FutureSQL compatible with mod_perl.
As you mentioned, security really is a gigantic concern. I
would indeed appreciate feedback about any security holes
in my scripts. I also have been looking for feedback about
the session id security method that I created in
FutureSQL, using a hand-roled XOR method. See
Security Text for details.
My biggest worry about this posting has been that I make my living
(supposedly :-) as a programmer. I try to really do my best
to serve my clients with code that works and doesn't break, and is
hopefully robust. So far, my clients have given me pretty good
marks, as one could see from their quotes at:
Programming Information.
In other words, my reputation (if I have one :-) is important to me,
and having esteemed programmers such as the Perl Monks conclude that
I was a careless and/or unconcerned programmer would be a dreadful thing,
in my opinion.
Thank you once again for your technical recommendations!
Best regards,
Peter
|