|Do you know where your variables are?|
Re: Re: (OT) Perl Open Source accounting packages?by Ovid (Cardinal)
|on Oct 10, 2002 at 21:29 UTC||Need Help??|
Hi, Anonymous Monk. SQL Ledger was actually the very first package that we evaluated. We were very impressed with its long list of features. However, "features" are only part of the package. This is a short list from my initial review of the code.
You are absolutely correct that OSS doesn't appear to have been terribly successful with accounting software. In the defense of the people responsible for SQL Ledger, the above list is not unique to their product.
Now, if only I could find an accounting package with a test suite ... any test suite.
Update: Just to let people know that I am not being too picky, here's a sample of code from admin.pl in SQL Ledger.
You'll notice that we are using eval on data from a hashref named $form. As one can imagine, this data has been pulled (incorrectly) straight from a Web form. It is also tainted (or would be if taint checking were used). Due to how feature-rich this code is, working to track down all of the security holes (such as unvalidated and improperly quoted data being used in SQL statements) would take so much time that I'd rather start with a better written, but less feature-rich package.
Join the Perlmonks Setiathome Group or just click on the the link and check out our stats.