in reply to Security techniques every programmer should know
http://www.perl.com/doc/FAQs/cgi/perl-cgi-faq.html