Hi,
I am writing my first Perl CGI program. I get logins through one CGI
script. When the user has loggin I use
a(href->myurl$login=mylogin&passwor=mypassword
to get to my input screen. Logins are checked by doing a trial connection
to the database. I plan to run in taint mode. I will be checking each
field for obvious signs of corruption before entering it in the database.
So the user enters data which is checked for corruption before it is put in
the database.
I am running ActivePerl under WindowsXP and using IIS as a webserver.
Are there things I should be doing, besides not running on Windows and IIS,
to make my application more secure? I am careful to timestamp every row in
every table in case some malicious nonsense is done and I have to clean up
the mess.
Thanks
Mary Anderson
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
<http://learn.perl.org/> <http://learn.perl.org/first-response>
