How to "override" a variable?

Question

How to "override" a variable?

As far as I know, when a variable is corrupted, Perl will not allow it to be used on the system (), exec (), opened, eval (), the backtick command, or any function that affects something outside the program (such as unlink). So what does this mean for this?

+5

perl cgi

Anil Jan 03 '12 at 8:13

source share

2 answers

use Untaint:

, -T taint. CGI . , . , .

use Untaint;

my $pattern = qr(^k\w+);

my $foo = $ARGV[0];

# Untaint a scalar
if (is_tainted($foo)) {
        print "\$foo is tainted. Attempting to launder\n";
        $foo = untaint($pattern, $foo);
}else{
        print "\$foo is not tainted!!\n";
}

+6

Zaid 03 . '12 8:19

Øyvind Skaar · Accepted Answer · 2012-01-03T09:36:34+0000

Use a regex for a corrupt variable to pull out "safe" values:

. , ; tainting . Perl , , $1, $2 .., , , .

:

, - , . , ( "" ), - . , , .

Perlsec:

How to "override" a variable?

More articles: