Hi Ben, Thank you for your suggestion to read about "taint". I honestly never heard of it before and it sounds like a bit "too much" for me, but I will look into it. If I had known when I started, it might be good; but the server is well on its way now when I realized this potential security problem and I think if I switch on taint, I'll get pages of warning messages. Enough pages to overwhelm me...
But, I will look into it...thanks for the suggestion! Ray BenRifkah Bergsten-Buret wrote: > Ray, > > Using input from the user as part of command line arguments opens you > up to all kinds of attacks. If you aren't careful a user can gain > complete control of your server. > ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Mason-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/mason-users
