On Thu, 16 Jun 2005, Steve Hay wrote:
> Well, I'm really confused now.
>
> A simple test program shows that system("copy ...") does indeed work
> fine, even with tainting on and $ENV{PATH} cleared (as per op/taint.t).
Really? I think the clearing of $ENV{PATH} is the problem because Perl
will use an unqualified "cmd.exe /x/d/c" or "command.com /c" to invoke
the shell (it doesn't use $ENV{COMSPEC}. So if you clear $ENV{PATH}
it will not be able to find cmd.exe.
Cheers,
-Jan
