[Date Prev][Date Next][Thread Prev][Thread Next] [Search] [Date Index] [Thread Index]

[MacPerl] CGI.pm and Taint on MacPerl

To: mac-perl@iis.ee.ethz.ch
Subject: [MacPerl] CGI.pm and Taint on MacPerl
From: pudge@pobox.com (Chris Nandor)
Date: Wed, 28 Jan 1998 23:30:37 -0500

I cannot recall if this has popped up before or not.  The AUTOLOAD routine
in CGI.pm fails on the C<eval "package $pack; $$auto";> line.  $auto
contains a reference to the text of the autoloaded routines.

Untainting the string via C<$$auto =~ /^(.*)$/s;$$auto = $1;> works just
fine, but I don't see why it would be necessary in MacPerl and not Unix
perl.

FYI, I am beginning my script with:

BEGIN {
  my $f = $ENV{MACPERL};
  $f =~ /^(.+)$/;
  unshift @INC,
    "${f}lib:$MacPerl::Architecture:",
    "${f}lib:";
}

which adds the relevant libraries back into @INC, since they are not
hardcoded into the binary (yet).

Any thoughts?

--
Chris Nandor          mailto:pudge@pobox.com         http://pudge.net/
%PGPKey=('B76E72AD',[1024,'0824 090B CE73 CA10  1FF7 7F13 8180 B6B6'])
#==       New Book: MacPerl:  Programming for the Rest of Us       ==#
#==    Publishing Date: Early 1998. http://www.ptf.com/macperl/    ==#



***** Want to unsubscribe from this list?
***** Send mail with body "unsubscribe" to mac-perl-request@iis.ee.ethz.ch

Follow-Ups:
- Re: [MacPerl] CGI.pm and Taint on MacPerl
  - From: Karsten Meier <krstnmr@ibm.net>

Prev by Date: [MacPerl] SQL queries
Next by Date: [MacPerl] Reading Bitmap Images from PICT files using Perl
Prev by thread: [MacPerl] Reading Bitmap Images from PICT files using Perl
Next by thread: Re: [MacPerl] CGI.pm and Taint on MacPerl
Navigation: Date Index | Thread Index | Search | Other lists at bumppo.net