Re: $TAINTED in latest CGI.pm v2.87


There's more than one way to do things
	PerlMonks

Re: $TAINTED in latest CGI.pm v2.87

by Sinister (Friar)

on Oct 10, 2002 at 12:56 UTC ( [id://204160]=note: print w/replies, xml )

Need Help??

in reply to $TAINTED in latest CGI.pm v2.87

*Sinister is completely shocked and horrified!

I was going to say that this:

$TAINTED = substr($ENV{REQUEST_METHOD}.'',0,0) 
  if defined $ENV{REQUEST_METHOD};
[download]

Was prob. the nicest solution to your problem, as it doesn't state: 'my $TAINTED = ...' - I was figuring that $TAINTED was defined earlier.

To make sure I wasn't going to say anything stupid, I did the bad thing of opening the black box and peak into the CGI module.

My hart stopped for a moment! My stumach turned! More then once..! I screamed: "WHERE IS 'use strict;' ??!?!?!!"

Yes, dear monks,
the module we all hold up high, and use a lot in our daily work, does not use strict! *sigh*

er formait hyarya.
-- "Life is a house and the next tornado is never far away"
-- "lovely by nature"

Comment on Re: $TAINTED in latest CGI.pm v2.87 Download Code

Replies are listed 'Best First'.
Re^2: $TAINTED in latest CGI.pm v2.87 by particle (Vicar) on Oct 10, 2002 at 14:52 UTC
contrary to popular belief, this is a good thing. strict causes a performance hit of around 30%, which is something a performance-oriented module like CGI would like to avoid. i believe what you're seeing is optimized perl, which is not to be mistaken for maintainable perl. i trust the CGI experts who keep this module up to date to do their job, and at the same time hope i'm never called on to debug that mess and make an update. ~Particle accelerates	[reply] [d/l]
Re:2: $TAINTED in latest CGI.pm v2.87 by blakem (Monsignor) on Oct 10, 2002 at 22:20 UTC
A discussion about the "unique" coding style of CGI.pm can be found at: Paradigm Shift - Don't use strict -Blake	[reply]

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://204160]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others learning in the Monastery: (6)

As of 2024-04-18 13:19 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found