[Date Prev][Date Next][Thread Prev][Thread Next] [Search] [Date Index] [Thread Index]

Re: [MacPerl] Thanks 4 HELP, it Works But.....

To: mac-perl@iis.ee.ethz.ch
Subject: Re: [MacPerl] Thanks 4 HELP, it Works But.....
From: "Brian L. Matthews" <blm@halcyon.com>
Date: Wed, 12 Nov 1997 13:53:39 -0800 (PST)
In-Reply-To: <19971112193517468.AAA191@[130.91.108.80]> from "Steve Linberg" at Nov 12, 97 02:37:01 pm

Steve Linberg writes:
|I use a slight variation:
|$buffer =~ tr/+/ /;
|$buffer =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
|$buffer =~ s/<!--(.|\n)*-->//g;
|$buffer =~ s/<([^>]|\n)*>//g;
|do this before the split statement.

This is why it's best to use something like CGI.pm that has been tested
by thousands of people. Think about what happens if a name or value has an
equal sign, ampersand, or plus in it. Under CGI.pm it will work fine. Under
the code quoted above, it not only will fail, but fail badly.

Second, you're being way overzealous in your removal of comments and
markup. Consider what happens to:
<!-- a comment -->good stuff<!-- another comment -->
and:
If a < b and c > d, ...
and:
<!---->
which isn't even a valid SGML comment.

Brian

***** Want to unsubscribe from this list?
***** Send mail with body "unsubscribe" to mac-perl-request@iis.ee.ethz.ch

References:
- RE: [MacPerl] Thanks 4 HELP, it Works But.....
  - From: linberg@literacy.upenn.edu (Steve Linberg)

Prev by Date: Re: Multiprocessing? (Was: [MacPerl] acgi vs cgi (fwd)) (fwd)
Next by Date: [MacPerl] Perl 5.1.5r4 bug
Prev by thread: RE: [MacPerl] Thanks 4 HELP, it Works But.....
Next by thread: Multiprocessing? (Was: [MacPerl] acgi vs cgi (fwd)) (fwd)
Navigation: Date Index | Thread Index | Search | Other lists at bumppo.net