Don't ask to ask, just ask | |
PerlMonks |
(Ovid) RE(2): Perl, CGI, and Securityby Ovid (Cardinal) |
on Aug 14, 2000 at 04:18 UTC ( [id://27708]=note: print w/replies, xml ) | Need Help?? |
Thanks for the offer. I appreciate it.
Yeah, my comment about checking for a caret was pretty stupid. One of the security points that I want to harp on is that it is much safer to specify what you will allow as opposed to what you won't allow. All it takes is for the programmer to miss one naughty character and the game could be up.
Cheers,
In Section
Perl Monks Discussion
|
|