Beefy Boxes and Bandwidth Generously Provided by pair Networks
P is for Practical
 
PerlMonks  

Re^3: Insecure CPAN module in taint mode

by afoken (Canon)
on Jul 06, 2021 at 21:31 UTC ( #11134730=note: print w/replies, xml ) Need Help??


in reply to Re^2: Insecure CPAN module in taint mode
in thread Insecure CPAN module in taint mode

In your code you don't show how you set $ENV{PATH} to a fixed value - I would start with that...

That's because I don't!

That means you haven't thoroughly read perlsec or Re: When not to use taint mode. (Yes, the latter contains a relevant update. It was added a few minutes after posting, three weeks ago.)

Alexander

--
Today I will gladly share my knowledge and experience, for there are no sweeter words than "I told you so". ;-)
  • Comment on Re^3: Insecure CPAN module in taint mode

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://11134730]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others surveying the Monastery: (6)
As of 2022-05-20 23:46 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Do you prefer to work remotely?



    Results (76 votes). Check out past polls.
    Notices?