I would first check if what the cookie supplies is indeed a file, and a file that I'm allowed to copy, and then use

    system cp => $file1, $file2;
    die "Copy returned ", $? >> 8, "\n" if $?;
[download]

Note that the way system is used is 'safe', there's no shell that will interpret funny characters.

Abigail

The open FOO, ">$file" syntax will not allow pipes, so there is no danger from "rm -rf / |".

It will get messed up if $file starts with & or >, though. To prevent this, just switching to 3-arg open is sufficient: open FOO, ">", $file or bailout("error opening output file: $!")

You should be aware that taking any value from the user and treating it as a file name is a huge security hole since the user could pass the name of a system file or device etc.

Say the magic word. Say it.

taint

Thank you.

To the OP: your data is tainted. Please untaint it.

One of the things that might go wrong is that you only read one line of $B_file, is this intensional?

Another potential problem is that you don't strip line endings from the line you read (no chomp) but write a \n to the output file nevertheless, so you may have an end-of-line too many.

And as pointed out above, the read operation might fail without you noticing since you don't check for errors after attempting to open $B_file.

Hope this helps, but yes, mentioning what kind of problems you have might help you even more ;) -gjb-

use File::Copy;

$A_file = $q->cookie('cookie_1');
$B_file = "file.txt";
copy ($B_file,$A_file);
[download]

open FILE, "$B_file" or die "Unable to open \'$B_file\': $!";
open(OUT,">$A_file") or die "Unable to open \'$A_file\':
while (<FILE>) {
  print OUT "$_";
}
[download]

Thanx... did the trick. -Lisa