On Dec 7, 2005, at 3:55 AM, David Dorward wrote:
What tests must be in place in order to keep your perl scripts from
being hijacked from spammers? Any help would be greatly appreciated.
For forms that send email, you don't want to let the user enter a "To,
CC, or BCC" address.
Nor should you allow new lines ...
$subject = "User entered data with\nBCC: spam victim <[EMAIL PROTECTED]>"
Thanks David,
I wasn't aware of that problem. I'm guessing that using CGI.pm to parse
input helps solve that problem. Is this correct?
Kindest Regards,
--
Bill Stephenson
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
<http://learn.perl.org/> <http://learn.perl.org/first-response>
