in reply to lib::http - Using virtually a Perl library from the Internet with the HTTP protocol.
The problem with doing this is that now all somebody has to do to comprimise the system of everybody running this with the defaults is to break in to the sourceforge account, or otherwise modifiy the files there. Even worse, since you used a domain name, it's possible to use DNS posining to fake things, and point at another server completely.
It'd be nice if this did https, and had a parameter for easy checking of the server's Client-SSL-Cert-Subject and Client-SSL-Warning psuedoheaders.
Oh, and nitpick: "fisically" referrers to financials, "physically" is the opposite of "virtually".
Warning: Unless otherwise stated, code is untested. Do not use without understanding. Code is posted in the hopes it is useful, but without warranty. All copyrights are relinquished into the public domain unless otherwise stated. I am not an angel. I am capable of error, and err on a fairly regular basis. If I made a mistake, please let me know (such as by replying to this node).
|
---|
Replies are listed 'Best First'. | |
---|---|
Re^2: lib::http - Using virtually a Perl library from the Internet with the HTTP protocol.
by gmpassos (Priest) on Feb 13, 2005 at 17:11 UTC | |
Re^2: lib::http - Using virtually a Perl library from the Internet with the HTTP protocol.
by itub (Priest) on Feb 13, 2005 at 16:56 UTC |
In Section
Meditations