Beefy Boxes and Bandwidth Generously Provided by pair Networks
Pathologically Eclectic Rubbish Lister
 
PerlMonks  

Re: Dir Structure Print out

by chip (Curate)
on Nov 14, 2001 at 07:13 UTC ( #125226=note: print w/replies, xml ) Need Help??


in reply to Dir Structure Print out

Serious security errors:
  • Using form input in a pathname without sanitizing it; specifically:
  • Allowing sneaky examination of the system by user input of paths starting with lots of dotdot entries.

    -- Chip Salzenberg, Free-Floating Agent of Chaos

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://125226]
help
Chatterbox?
Veltro ouch
usemodperl remembers the hilarious merlyn bot
[usemodperl]: perl is not broken, perl is being broken by the web being broken by https, for the love of banking apps on free wifi at coffee shops or something...
[Veltro]: Wondering, would it be so hard to write a small application that you can access using http which forwards the request over web ussing ssl?
[Veltro]: are there not even tools for that?
[usemodperl]: the breakage is so fresh i guess not, so it's up to us! :-)
[usemodperl]: someone has yet to make that future famous free http to https proxy written in perl and supported by ads, paypal, patreon, etc to make millions of dollars a minute!
[Veltro]: Why would this be fresh, I recon this is stuff that happens all the time (not Perl per se)

How do I use this? | Other CB clients
Other Users?
Others about the Monastery: (9)
As of 2018-06-24 16:58 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Should cpanminus be part of the standard Perl release?



    Results (126 votes). Check out past polls.

    Notices?