Beefy Boxes and Bandwidth Generously Provided by pair Networks
Your skill will accomplish
what the force of many cannot
 
PerlMonks  

Re^2: Is Module::SafeVersion a Waste of Time?

by Ovid (Cardinal)
on Apr 25, 2006 at 09:27 UTC ( #545507=note: print w/ replies, xml ) Need Help??


in reply to Re: Is Module::SafeVersion a Waste of Time?
in thread Is Module::SafeVersion a Waste of Time?

I do have a fair amount of code in place to allow them since it's so common. Unfortunately, as you can see from the examples above, trying to reliably parse such information is extremely difficult and in many cases, it's not worth the trouble. Hence my thoughts on special casing some modules. It's the only way I can do that reliably.

Cheers,
Ovid

New address of my CGI Course.


Comment on Re^2: Is Module::SafeVersion a Waste of Time?
Re^3: Is Module::SafeVersion a Waste of Time?
by demerphq (Chancellor) on Apr 25, 2006 at 10:18 UTC

    Heres one I use regularly:

    ($VERSION) = sprintf "%d.%03d", 0, ' $Revision:: 6 $' =~ /::\s+(\S+)/; + #

    Im not convinced that there is a security issue here to be honest. I think im with Schwern on this. If there is a security issue with version evaluation you already have serious problems. I mean presumably they could have just set up the Makefile.pl to nuke your system.....

    ---
    $world=~s/war/peace/g

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://545507]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others romping around the Monastery: (9)
As of 2014-12-25 11:12 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    Is guessing a good strategy for surviving in the IT business?





    Results (160 votes), past polls