in reply to
Re^5: Taint mode limitations
in thread Taint mode limitations
If you think about "removing malicious characters" you do not understand security! You should never remove the bad, you should always take just the good!
It appears you don't understand security either :) Consider
my $good = join '', $bad =~ m/(\w+)/g;
my $good = $bad =~ s/\W+//gr;
Sure, only the m// version untaints successfully in perl, but both versions "remove malicious characters" and both versions "take just the good"