jalex <[EMAIL PROTECTED]> writes:
[...]
> Yes, I am aware various workarounds exist, however I don't think whether
> this is a bug or not is really at all arguable: anything that is marked as
> tainted in perl needs to be also marked tainted in mod_perl2. There is
> nothing in the mod_perl docume
Thanks. You guys have been a great help. I'm going to use Apache 2 and
mod_perl 2 for my next project so I'm sure you'll hear more from me as I've
never touched it. Looks like most of it is backwards compatible though and
when in doubt changing Apache:: to Apache2:: looks like it will work most of
Joe Schaefer wrote:
>
> "Kevin Spencer" <[EMAIL PROTECTED]> writes:
>
> [...]
>
>> Using the URL:
>>
>> http://myserverhere/cgi-bin/taint-test/taint.pl?log=foo
>>
>> Produces:
>>
>> Oops! Where's the taint?!?
>>
>> $^TAINT=1
>
> CGI.pm uses $r->args to get at the query string,
> which isn't m
