Keep It Simple, Stupid | |
PerlMonks |
Re^2: Safely capturing the output of an external programby AppleFritter (Vicar) |
on Mar 09, 2020 at 07:58 UTC ( [id://11113998]=note: print w/replies, xml ) | Need Help?? |
Untainting might work though; if the filename matches, say, q/^[A-Za-z0-9]+\.tfm$/, it's probably safe to pass it through any shell. But I've never liked that approach, and "probably" is a dangerous word.
In Section
Seekers of Perl Wisdom
|
|