Re: Re: Hand Rolled CGI

in reply to Re: Hand Rolled CGI
in thread Hand Rolled CGI

Note that virtualsue's suggestion was to use CGI::Carp qw(fatalsToBrowser); for debugging. That should be for debugging only!

You do not want to leave that line in pages in production since the debugging information provided can help an attacker "debug" how to effectively compromise your script.

Comment on Re: Re: Hand Rolled CGI Download Code

Replies are listed 'Best First'.
Re: Re: Re: Hand Rolled CGI by bradcathey (Prior) on May 07, 2004 at 18:57 UTC
Absolutely, tilly, I never meant to imply that the line stay in for production code. But thanks for pointing that out. —Brad "A little yeast leavens the whole dough."	[reply]

In Section Seekers of Perl Wisdom