>>>>> "Elfyn" == Elfyn McBratney <[EMAIL PROTECTED]> writes:
Elfyn> * Escape [shell] `meta'-characters - `"', `;', '|', etc. - in all user Elfyn> input. This is especially important if you hand-off user-supplied Elfyn> input to an external program (for example, `sendmail'); Even better, don't let such things get near a shell. Use multi-arg exec or system, or multi-arg open to fork-and-pipe. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 <merlyn@stonehenge.com> <URL:http://www.stonehenge.com/merlyn/> Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] <http://learn.perl.org/> <http://learn.perl.org/first-response>
