develooper Front page | perl.perl5.porters | Postings from October 2013

Re: [perl #119855] chdir, taint, and if

Thread Previous | Thread Next
Dave Mitchell
October 1, 2013 07:56
Re: [perl #119855] chdir, taint, and if
Message ID:
On Sat, Sep 28, 2013 at 04:57:31AM -0600, Ben Hildred wrote:
> So where would this be documented? Before reporting this issue I checked
> the relevant man pages, my dead tree copy of the camel, and google; so if
> this is not a bug in the code as you assert, might it be something that
> needs to be documented?

In perlsec, it says:

    For efficiency reasons, Perl takes a conservative view of
    whether data is tainted.  If an expression contains tainted data,
    any subexpression may be considered tainted, even if the value
    of the subexpression is not itself affected by the tainted data.

perhaps we should s/an expression/a statement/ ?

Britain, Britain, Britain! Discovered by Sir Henry Britain in
sixteen-oh-ten. Sold to Germany a year later for a pfennig and the promise
of a kiss. Destroyed in eighteen thirty-forty two, and rebuilt a week
later by a man. This we know. Hello. But what of the people of Britain?
Who they? What do? And why?   -- "Little Britain"

Thread Previous | Thread Next Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at | Group listing | About