good chemistry is complicated, and a little bit messy -LW |
|
PerlMonks |
Re: Re: Re: UGU file rename script (GOLF?)by myocom (Deacon) |
on Jul 20, 2001 at 01:49 UTC ( [id://98256]=note: print w/replies, xml ) | Need Help?? |
I understand that it would execute rm with the user's own permissions. And that may not be a problem for this particular application (though I would never deploy it on *my* network). I'm more concerned that this sort of code will get passed on to a different application (cargo-cult style), where security *does* matter. To my thinking, there should at least be a comment about security in there by the eval.
In Section
Meditations
|
|