Beefy Boxes and Bandwidth Generously Provided by pair Networks
There's more than one way to do things
 
PerlMonks  

Re^4: Insecure CPAN module in taint mode

by Bod (Curate)
on Jul 06, 2021 at 22:22 UTC ( #11134738=note: print w/replies, xml ) Need Help??


in reply to Re^3: Insecure CPAN module in taint mode
in thread Insecure CPAN module in taint mode

and shows that you didn't read the whole of perlsec, nor even the few paragraphs in the section called Cleaning Up Your Path

I did!
I put the delete in. Once the error had gone I commented that line out to see if it was necessary and the error did not return. Hence why I didn't include it in the code snippet.

I think that Corion's advice...

Good advice it may be. But on this shared hosting (you remembered correctly) it didn't work - Re^2: Insecure CPAN module in taint mode

Replies are listed 'Best First'.
Re^5: Insecure CPAN module in taint mode
by pryrt (Monsignor) on Jul 06, 2021 at 22:29 UTC
    I put the delete in. Once the error had gone I commented that line out to see if it was necessary and the error did not return.

    Sorry, since your example didn't include the delete, I interpreted that to mean that you hadn't used it. (I've only got what you show me to go on, so that's not an unreasonable interpretation.)

    My first experiment didn't have the delete but did change the PATH, and it wasn't sufficient to remove the taint message; my second experiment added the delete and the taint message went away; in a later experiment, I accidentally forgot the delete, and the taint message came back. So I don't know how the taint message went away for you. I would personally be worried that it will come back unexpectedly; since it doesn't hurt to leave it in, that would be my recommendation.

      I would personally be worried that it will come back unexpectedly; since it doesn't hurt to leave it in, that would be my recommendation

      On that recommendation, it has been added back in...

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?
Node Status?
node history
Node Type: note [id://11134738]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others taking refuge in the Monastery: (3)
As of 2022-05-25 15:46 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    Do you prefer to work remotely?



    Results (90 votes). Check out past polls.

    Notices?