Re^5: -T switch & untaint - how to resolve errors?

Looks like the file isn't opened for some reason. Try doing open(....) or die "Can't open file: $!"

"What should it profit a man, if he should win a flame war, yet lose his cool?"

Comment on Re^5: -T switch & untaint - how to resolve errors? Download Code

Replies are listed 'Best First'.
Re^6: -T switch & untaint - how to resolve errors? by Stenyj (Beadle) on Apr 10, 2005 at 22:00 UTC
kicks self This is why I don't program while I'm tired. Path to the file was off. ROFL Thx a ton man, I really appreciate your help. Stenyj	[reply]
Is restricting to "words" good enough? by doom (Deacon) on Apr 11, 2005 at 03:30 UTC
This is why I don't program while I'm tired. Path to the file was off. Maybe this is a good place to add the comment that it's probably a good idea to tighten up the requirements for what you're going to allow as user input. For example, you might do something like this: `sub untaint_directory { # restrict directory names to a short list of accessible locations my $var = $_[0]; my @allowed_locations = qw( political_babble funny_animal_stories down_with_starwars guests tests public ); my $dir; my $ok = 0; if ( ($dir) = ($var =~ m/^(\w+)$/ )) { foreach my $loc (@allowed_locations) { if ($dir eq $loc) { $ok = 1; last; } } } unless ($ok) { die("Not an allowed directory: $dir"); } return $dir; }` [download] The idea is that this is a security related task, and you should be as paranoid about it as you can. Do your best to restrict the input you're going to accept to things that you know are okay.	[reply] [d/l]