Not really. If your form allows uploads, your form allows uploads. That's where DoS comes into play. Disguising the location of your code is a start, but you still have to figure out what you're going to do if someone tries to paste rogue code into your form or hit you with an obnoxiously large upload. CGI.pm does have some provisions for this built in, and I highly recommend its use for web forms as opposed to home-grown CGI. I believe many others on the list recommend the same....
Scot R. Well, does it help that this code snippet we have been looking at is not in a file with a .cgi or .pl extension, but in a .pm file being used by the actual .cgi file that people would be posting to. Jes' curious.. Thanks 4 All Luke -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
