diff options
| author | Gurusamy Sarathy <gsar@cpan.org> | 2000-02-27 16:52:54 +0000 |
|---|---|---|
| committer | Gurusamy Sarathy <gsar@cpan.org> | 2000-02-27 16:52:54 +0000 |
| commit | 3a4b19e44cf4e74b7a6a58fed36ba3ca9cafc864 (patch) | |
| tree | 06876cea0f2afbd1cc3015160d103665323c3659 /pod/perlsec.pod | |
| parent | 26fb8f1f48b6245e35b6b73b7e98bbb26aab4dc6 (diff) | |
| download | perl-3a4b19e44cf4e74b7a6a58fed36ba3ca9cafc864.tar.gz | |
remove outdated info about csh and glob(); glob() need not fail
when tainting anymore if using internal globbing
p4raw-id: //depot/perl@5286
Diffstat (limited to 'pod/perlsec.pod')
| -rw-r--r-- | pod/perlsec.pod | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/pod/perlsec.pod b/pod/perlsec.pod index 212879af93..40374870a1 100644 --- a/pod/perlsec.pod +++ b/pod/perlsec.pod @@ -84,8 +84,8 @@ For example: exec "echo", $arg; # Secure (doesn't use the shell) exec "sh", '-c', $arg; # Considered secure, alas! - @files = <*.c>; # Always insecure (uses csh) - @files = glob('*.c'); # Always insecure (uses csh) + @files = <*.c>; # insecure (uses readdir() or similar) + @files = glob('*.c'); # insecure (uses readdir() or similar) If you try to do something insecure, you will get a fatal error saying something like "Insecure dependency" or "Insecure $ENV{PATH}". Note that you |