Thanks tobyink, I did see that in my search but I found it unsatisfactory
Ok, this will add use re 'taint'; for all modules -- kinda like a source filter -- probably doesn't play well with PAR :)
also makes printing on STDOUT die if tainted
$ perl -I. -Tle "use retaint; retaint::foo(); print 123; print substr
+$ENV{PATH}, 0, 1; "
retaint.pm:20: tainted? 1
retaint.pm:21: tainted? 0
123
D
$ perl -I. -Tle "use taintall; use retaint; retaint::foo(); print 123;
+ print substr $ENV{PATH}, 0, 1; "
/loader/0xb61cbc/retaint.pm:21: tainted? 1
/loader/0xb61cbc/retaint.pm:22: tainted? 1
123
Insecure dependency in 'print' at -e line 1.
taintall.pm
retaint.pm
-
Are you posting in the right place? Check out Where do I post X? to know for sure.
-
Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
<code> <a> <b> <big>
<blockquote> <br /> <dd>
<dl> <dt> <em> <font>
<h1> <h2> <h3> <h4>
<h5> <h6> <hr /> <i>
<li> <nbsp> <ol> <p>
<small> <strike> <strong>
<sub> <sup> <table>
<td> <th> <tr> <tt>
<u> <ul>
-
Snippets of code should be wrapped in
<code> tags not
<pre> tags. In fact, <pre>
tags should generally be avoided. If they must
be used, extreme care should be
taken to ensure that their contents do not
have long lines (<70 chars), in order to prevent
horizontal scrolling (and possible janitor
intervention).
-
Want more info? How to link
or How to display code and escape characters
are good places to start.
|