Home > Archive > PERL CGI Beginners > January 2005 > Insecure dependency in glob while running with -T switch
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Insecure dependency in glob while running with -T switch
|
|
| David Gilden 2005-01-17, 3:55 am |
| Last question here,
#!/usr/bin/perl -wT
=2E... Snip .......
my @filesToRemove =3D <*>;
The line above is causing:
Insecure dependency in glob while running with -T switch
What can I do still have this functionally and satisfy 'tainting'
Thanks,
Dave
tel: 817-741-2327 fax: 972-916-3451
(kora musician / audiophile / webmaster @ www.coraconnection.com / Ft. Wor=
th, TX, USA)
| |
| Paul Archer 2005-01-17, 8:55 am |
| I just tried that on the command-line, and I'm not getting the warning
you're seeing. What version of Perl are you running?
And have you tried alternatives like
my @files = `ls`;
or using opendir/readdir?
Paul
Yesterday, David Gilden wrote:
> Last question here,
>
> #!/usr/bin/perl -wT
>
>
> .... Snip .......
>
> my @filesToRemove = <*>;
>
> The line above is causing:
>
> Insecure dependency in glob while running with -T switch
>
> What can I do still have this functionally and satisfy 'tainting'
>
>
> Thanks,
>
>
> Dave
>
> tel: 817-741-2327 fax: 972-916-3451
> (kora musician / audiophile / webmaster @ www.coraconnection.com / Ft. Worth, TX, USA)
>
> --
> To unsubscribe, e-mail: beginners-cgi-unsubscribe@perl.org
> For additional commands, e-mail: beginners-cgi-help@perl.org
> <http://learn.perl.org/> <http://learn.perl.org/first-response>
>
>
>
-------------------------------------------------
"Welcome to downtown Coolsville--population: us."
-------------------------------------------------
| |
| Bob Showalter 2005-01-17, 3:55 pm |
| David Gilden wrote:
> Last question here,
>
> #!/usr/bin/perl -wT
>
>
> .... Snip .......
>
> my @filesToRemove = <*>;
>
> The line above is causing:
>
> Insecure dependency in glob while running with -T switch
>
> What can I do still have this functionally and satisfy 'tainting'
I'm not positive, but I think with pre-5.6 Perl you cannot use glob under
-T. So you have two choices: 1) use opendir/readdir and untaint those
results, or 2) upgrade to 5.6.1 or higher. Hopefully someone can confirm
this.
|
|
|
|
|