Frank Maas wrote:
On Tue, Aug 01, 2006 at 07:33:51AM +0100, John ORourke wrote:
You could even do something really clever and make it map URI onto
module - eg. so /debitor/contract/create calls
Debitor::Contract->create(), but that wouldn't be very secure!
Why would that be not very secure? Could you give an example of things
that go wrong?
As described, it would allow any person with access to the web server to
call any method of any installed Perl module! Just by adding some
simple checks to ensure only certain allowed modules and methods were
called, it could become secure.
John