I wonder in general, now, how much webwork actually uses taint checking? With CGI scripts, I suppose you can include the argument when you configure what the server does with a perl script. What about other add-ins to make http servers keep perl running and cache scripts? Does anything/anyone use taint checking here?
—John
Update: 93 minutes after I posted this, Ovid posted another top-level message on the same subject which essentially answers my question. To prevent parallel discussions, keep any replies on his thread.
|
|---|