Re: security issues with an index.pl-type thing...

in reply to security issues with an index.pl-type thing...

thanks for the help guys...one more question: The stuff that's passed to the script as part of the link--is that passed as @ARGV? ie:

www.ourintranet.com/index.pl?node=Announcements

----------------------------------------------------------------------
+---------------
#index.pl

$node = $ARGV[0];

blah blah blah;

----------------------------------------------------------------------
+---------------
[download]

Comment on Re: security issues with an index.pl-type thing... Download Code

Replies are listed 'Best First'.
Re: Re: security issues with an index.pl-type thing... by wog (Curate) on Jun 18, 2001 at 19:55 UTC
Yes, it is passed as `@ARGV` for a CGI script such as that (that's probably run like CGI script, though the server might need configuration to do that). However, you are probably better off using the CGI module (or, maybe, a similar module) to parse it, because the string is not in an immediately usable format, and the CGI module knows how to extract the stuff you want. (Don't reinvent the wheel!)	[reply] [d/l]

Replies are listed 'Best First'.

Re: Re: security issues with an index.pl-type thing...
by wog (Curate) on Jun 18, 2001 at 19:55 UTC

@ARGV

CGI

[reply]
[d/l]

In Section Seekers of Perl Wisdom