While using taint is a good thing, if you are running with mod_perl, the -T switch does not work. Basically, by the time your perl script runs, it is too late to switch tainting on. There is a special Apache mod_perl directive to be used if you want taint checking:
PerlTaintCheck On
However, I believe
ALL perl scripts that then run in Apache are running with taint switched on.
Ken