Stamp_Guy wrote:

Only a few people would be able to do this

That issue is irrelevant. Assume the worst case scenario: everyone has the ability to run the program, with source code in hand, and complete knowledge of whatever database, file system, permissions, etc., that you have. If, at that point, nothing can be done, you're okay.

Limit what they can name the files: if you can limit them to only having letters, numbers, and underscores in the filenames, then things are good. What if they try to name a file with a pipe, or an ascii zero, or with other special characters that might confuse the shell or Perl? Limiting what they can name the files will help tremendously.

Cheers,
Ovid

Join the Perlmonks Setiathome Group or just click on the the link and check out our stats.