Michael Kraus wrote:
OK... My thoughts are this - <flamesuit on :)>checking out the module
before casting judgement on it is a good thing(tm)</flamesuit off>
:)
Sure, but I hope I included enough of disclaimers... ;-)
The module leaves validation up to the end user/programmer... It is
simply a module of convenience. It does not blindly untaint all data,
you must request each form element to be untainted as you go.
Do you mean that you can access the parameters the usual way, even if
you are using CGI::Untaint? Then I did misunderstand. Sorry.
I view the CGI::Untaint module as simply a tool in the process of
validating data, and using it in a taint-safe fashion.
Thanks for clarifying. (And for the initial tip.)
--
Gunnar Hjalmarsson
Email: http://www.gunnar.cc/cgi-bin/contact.pl
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
<http://learn.perl.org/> <http://learn.perl.org/first-response>
