Beefy Boxes and Bandwidth Generously Provided by pair Networks
Just another Perl shrine
 
PerlMonks  

Re: Security with open() in CGI scripts

by higle (Chaplain)
on Feb 26, 2002 at 20:33 UTC ( #147713=note: print w/replies, xml ) Need Help??


in reply to Security with open() in CGI scripts

Another great resource that covers CGI/Web programming security basics is Ovid's online CGI programming course, particularly lesson #3, Basic Security with CGI.pm. It has great information about untainting your data, including that naughty NULL byte.

I learned tons from reading this quick and condensed course.

  higle
  • Comment on Re: Security with open() in CGI scripts

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://147713]
help
Chatterbox?
[LanX]: oh you want the result line by line?
[jdporter]: ok, LanX, then what?
[jdporter]: It doesn't have to be line by line. Just "my program" "writes" to the external prog and also/then "reads" from it.
LanX open (You are not allowed to open to a command that pipes both in and out, but see IPC::Open2, IPC::Open3, and Bidirectional Communication with Another Process in perlipc for alternatives.)
[jdporter]: IPC::Open2, I guess
[jdporter]: yes, that

How do I use this? | Other CB clients
Other Users?
Others surveying the Monastery: (12)
As of 2017-05-24 20:33 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?