greetings, I'm a new to perl developer and
I just wanted to confirm there is no ESAPI implementation for Perl?
http://www.owasp.org/index.php/ESAPI
Is there something most use in lieu of that? I see there are a number of misc modules out there for handling security issues. I guess I'm looking for a standard accepted and vetted implementation vs. starting to grab random modules off CPAN and cobble something together. I have no wish to reinvent the wheel or use something that's not well tested and kept up to date.
I have to write an application for a client that among a number of other things, finishes with doing 302 redirects to arbitrary urls, urls could be anything.
I'm not 100% clear myself what could be harmful in this particular context, and the client wants users to more or less be able to specify almost anything to redirect to. So I'm hoping to find a security library to run the urls through prior to redirect.
cheers
Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!
Titles consisting of a single word are discouraged, and in most cases are disallowed outright.
Read Where should I post X? if you're not absolutely sure you're posting in the right place.
Please read these before you post! —
Posts may use any of the Perl Monks Approved HTML tags:
- a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr
You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)
| |
For: |
|
Use: |
| & | | & |
| < | | < |
| > | | > |
| [ | | [ |
| ] | | ] |
Link using PerlMonks shortcuts! What shortcuts can I use for linking?
See Writeup Formatting Tips and other pages linked from there for more info.