Beefy Boxes and Bandwidth Generously Provided by pair Networks
Welcome to the Monastery
 
PerlMonks  

Re: Security techniques every programmer should know

by ihb (Deacon)
on Dec 27, 2004 at 23:45 UTC ( #417663=note: print w/ replies, xml ) Need Help??


in reply to Security techniques every programmer should know

Taint mode does not help against null bytes (or any other bytes) in your read_file "$page.html" example. Reads are not checked for tainted data. Writes are though, so write_file "$page.html" would've been stopped by the -T switch.

In short, I'd like to add this: Don't think -T will do the job for you! Just think it may help you if you slipped up.

ihb

See perltoc if you don't know which perldoc to read!
Read argumentation in its context!


Comment on Re: Security techniques every programmer should know
Select or Download Code

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://417663]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others contemplating the Monastery: (4)
As of 2014-09-20 15:12 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    How do you remember the number of days in each month?











    Results (160 votes), past polls