Come for the quick hacks, stay for the epiphanies. | |
PerlMonks |
Taint with Perl on NT/IISby ajt (Prior) |
on Sep 25, 2001 at 22:34 UTC ( [id://114618]=perlquestion: print w/replies, xml ) | Need Help?? |
ajt has asked for the wisdom of the Perl Monks concerning the following question:
A script I wrote for and tested with Apache on NT an Linux was recently moved to an MS IIS box. To my horror IIS would not run the script, claiming that -T was too late in the shebang line. To get the script to run, I was forced to remove the -T line.
It looks like IIS is simply running the script through Perl via the registry association: "perl.exe runs .pl files". Essentially it looks like the same error if you run the file from cmd.exe without specifying -T in the call. Does this mean that most IIS boxes running Perl are always running with Taint off, or have their admins reconfigured NT so that Perl is always called with -T? What is therefore the best way to write scripts so that they can be run as safely as possible and on as many platforms as possible, without having to rewrite them when they move box? I assume that it's best to let Apache use a shebang rather than a registry association when running it on NT, see How does apache under NT find the perl interpreter?. If I could we wouldn't be using MS IIS, but that's another story....
Back to
Seekers of Perl Wisdom
|
|