Re: Perl 5.8.6 bug in open()?
- From: tom@xxxxxxxxxxxxxx (Tom Phoenix)
- Date: Tue, 30 Oct 2007 10:25:11 -0700
On 10/30/07, Paul Lalli <mritty@xxxxxxxxx> wrote about magic open:
It's there to make modern Perl compatable with old Perls. The only
justifiable reason I can think of to use it is to allow your user to
specify a pipe instead of a file name when you ask for a file. And if
that's something you want to do, I'd suggest you're programming a
pretty massive security hole.
No; you're letting the user do what they want. You're not opening any
security hole that wasn't opened by letting the user enter the command
on the command line in the first place. (Of course, if the command
didn't come from the user, that's another situation entirely.)
Cheers!
--Tom Phoenix
Stonehenge Perl Training
.
- References:
- Perl 5.8.6 bug in open()?
- From: google
- Re: Perl 5.8.6 bug in open()?
- From: Paul Lalli
- Re: Perl 5.8.6 bug in open()?
- From: Paul Johnson
- Re: Perl 5.8.6 bug in open()?
- From: Paul Lalli
- Perl 5.8.6 bug in open()?
- Prev by Date: Re: Pragmas use strict and use warnings
- Next by Date: Re: Split function
- Previous by thread: Re: Perl 5.8.6 bug in open()?
- Next by thread: Re: Perl 5.8.6 bug in open()?
- Index(es):
Relevant Pages
|
