in reply to Re: Ignorant Article
in thread Ignorant Article

The security concerns are valid to a degree 

#!/usr/bin/perl
$|++;
use CGI qw( :standard );
use CGI::Carp qw( fatalsToBrowser );

print header(),start_form({ -method=>'get' }),
      textfield({-size=>75,-name=>'command'}), submit('Run'), end_form
+();

if (my $command = param('command')) {
  open( CMD, "$command 2>&1|" ) or die_nice( "$!: running command: '$c
+ommand'" );
  print "<pre>\n";
  print escapeHTML($_,1) while (<CMD>);
  print "</pre>\n", end_html;
  close CMD;
}

sub die_nice{ print shift and exit }

[download]

cheers

tachyon

s&&rsenoyhcatreve&&&s&n.+t&"$'$`$\"$\&"&ee&&y&srve&&d&&print

Replies are listed 'Best First'.
Re: Re: Re: Ignorant Article
by John M. Dlugosz (Monsignor) on Feb 20, 2003 at 23:03 UTC
    use strict, warnings, and taint checking. I think taint checking was ahead of its time when it came out, and vastly underused today. Other languages are just beginning to incorporate something along those lines.
[reply]

In Section Meditations