Dermot wrote:
[...]
Would perlsec help?[1] I'm asking because it looks to me like taint
checks are on so every path you use will need to be un-tainted before
it's used. I'm not if it would improve matters to explicitly import
$Bin from FindBin, EG:
use FindBin qw($Bin);
use lib qq($Bin/../);
If not I'd guess you will need to launder the $FindBin::Bin before you
use it and that would probably have to happen in a BEGIN block.[2]
Yes, that seems to be it. Many thanks.
In summary, it looks as though the result of 'FindBin' is being treated
as tainted, so it needs to be untainted it before being fed into "use
lib" (or other adjustment to '@INC').
--
: David Lee
: ECMWF (Data Handling System)
: Shinfield Park
: Reading RG2 9AX
: Berkshire
:
: tel: +44-118-9499 362
: email: david....@ecmwf.int
--
To unsubscribe, e-mail: beginners-unsubscr...@perl.org
For additional commands, e-mail: beginners-h...@perl.org
http://learn.perl.org/
