Beefy Boxes and Bandwidth Generously Provided by pair Networks
more useful options
 
PerlMonks  

Re^2: Perl calling Linux commands

by tmharish (Friar)
on Mar 08, 2013 at 13:50 UTC ( #1022423=note: print w/ replies, xml ) Need Help??


in reply to Re: Perl calling Linux commands
in thread Perl calling Linux commands

Additionally you need to look at tainted variables.

Its a really bad idea to take user input and throw it to system ( or a database ) - What if the username input was:

" || ls && 0 &&

Of course you could replace ls with whatever exciting nefarious command you choose but thats the idea ...


Comment on Re^2: Perl calling Linux commands
Select or Download Code

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1022423]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others drinking their drinks and smoking their pipes about the Monastery: (10)
As of 2015-07-02 21:28 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (45 votes), past polls