Re: Re: Security problem in SOAP::Lite


There's more than one way to do things
	PerlMonks

Re: Re: Security problem in SOAP::Lite

by larryk (Friar)

on Apr 09, 2002 at 15:21 UTC ( #157750=note: print w/ replies, xml )

Need Help??

in reply to Re: Security problem in SOAP::Lite
in thread Security problem in SOAP::Lite

Frontier::RPC2 is not vulnerable as the server must be initialised with named functions/subrefs:

# from perldoc Frontier::Daemon
SYNOPSIS
    
    use Frontier::Daemon;
    
    Frontier::Daemon->new(methods => {
        'rpcName' => \&sub_name,
           ...
        });
[download]

which are executed after the following check:

# from Frontier::RPC2
my $method = $call->{'method_name'};
if (!defined $methods->{$method}) {
    return $self->encode_fault(3, "no such method \`$method'\n");
}
[download]

   larryk                                          
perl -le "s,,reverse killer,e,y,rifle,lycra,,print"

Comment on Re: Re: Security problem in SOAP::Lite Select or Download Code

In Section Meditations

Node Status^?

node history
Node Type: note [id://157750]
help

Chatterbox^?

How do I use this? | Other CB clients

Other Users^?

Others exploiting the Monastery: (9)

As of 2013-06-20 02:46 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Voting Booth^?

How many continents have you visited?

Results (678 votes), past polls