Beefy Boxes and Bandwidth Generously Provided by pair Networks
Don't ask to ask, just ask
 
PerlMonks  

Re: Vetting a CGI script

by calin (Deacon)
on Nov 12, 2003 at 17:35 UTC ( #306564=note: print w/ replies, xml ) Need Help??


in reply to Vetting a CGI script

I don't know anything about cgi-lib.pl. However, if I were to code this fascist-style, these thoughts would cross my mind:

  • Use the three-or-more-argument version of open. It's safer.
  • Turn $mailprog into a lexically scoped variable or constant (use constant ...). Messing with it is unlikely, but I'm following my fascist mindset.
  • Passing improperly untainted data to sendmail screams SPAM GATEWAY!


Comment on Re: Vetting a CGI script
Select or Download Code

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://306564]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others musing on the Monastery: (15)
As of 2014-08-27 13:22 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The best computer themed movie is:











    Results (238 votes), past polls