Beefy Boxes and Bandwidth Generously Provided by pair Networks
go ahead... be a heretic
 
PerlMonks  

Re^2: Is Module::SafeVersion a Waste of Time?

by Ovid (Cardinal)
on Apr 25, 2006 at 09:27 UTC ( [id://545507]=note: print w/replies, xml ) Need Help??


in reply to Re: Is Module::SafeVersion a Waste of Time?
in thread Is Module::SafeVersion a Waste of Time?

I do have a fair amount of code in place to allow them since it's so common. Unfortunately, as you can see from the examples above, trying to reliably parse such information is extremely difficult and in many cases, it's not worth the trouble. Hence my thoughts on special casing some modules. It's the only way I can do that reliably.

Cheers,
Ovid

New address of my CGI Course.

Replies are listed 'Best First'.
Re^3: Is Module::SafeVersion a Waste of Time?
by demerphq (Chancellor) on Apr 25, 2006 at 10:18 UTC

    Heres one I use regularly:

    ($VERSION) = sprintf "%d.%03d", 0, ' $Revision:: 6 $' =~ /::\s+(\S+)/; + #

    Im not convinced that there is a security issue here to be honest. I think im with Schwern on this. If there is a security issue with version evaluation you already have serious problems. I mean presumably they could have just set up the Makefile.pl to nuke your system.....

    ---
    $world=~s/war/peace/g

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://545507]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others wandering the Monastery: (4)
As of 2024-03-19 10:57 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found