Re: Any one who knows Formmail by Matts Scripts

2003-04-04 Thread Abel Lucano 
On Fri, 4 Apr 2003, Luinrandir Hernsen wrote:

 Hallo
 I need to have my form mail to 2 or 3 addresses.
 Anyone familiar enough with this popular program to advise???
 Thanks
 Lou


Lou, forget it; matt's formmail script has a lot of security flaws
discussed in this list and others.

Try  http://nms-cgi.sourceforge.net/   as an alternative good choice

regards,


Abel Lucano
DECODE SA
[EMAIL PROTECTED]






-- 
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: perl cgi security

2002-10-28 Thread Abel Lucano 
On Mon, 28 Oct 2002, Jim Lundeen wrote:

 nothing that will work on Linux box?

 Admin-Stress wrote:

  Nice, but that will produce .exe, executable file for Windows :(
 
  --- David Simcik [EMAIL PROTECTED] wrote:
   See perl2exe.exe for details on converting scripts into executables.
  

Hi, Jim
yes, in a Linux box you can type:

chmod +x scriptname

it works, you have an executable..

just kidding :)

I  understand instead that you want 'hide' your script Perl code
Humm...even Perl masters bring you their best written scripts.

In relationship with perl2exe.exe, search this list-digest by January
2002, read Randal Schwartz's advice on this topic.

regards,


Abel Lucano
DECODE SA
Av Independencia 1355 - Buenos Aires
TE/FAX +5411 4383 1161
[EMAIL PROTECTED]




-- 
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

calling a external cgi from a form passing parameters

2001-06-13 Thread Abel Lucano 


Hi everyone,

why this doesn't pass $username and $password to checkuser.cgi script??
when the form is filled out I only see

http://external-server/cgi-bin/checkuser.cgi?user=$usuariopass=$contrasena

and $usuario it's not replaced by param('username'), etc
 
Any advice will be very appreciated,



#!/usr/bin/perl

use CGI;
use CGI::Carp 'fatalsToBrowser';

$q = new CGI;
print $q-header,
  $q-start_html({bgcolor=white}, 'Check users'),
  $q-h1('Check users'),
  $q-br,
$q-start_form(-action='http://external-server/cgi-bin/checkuser.cgi?user=$usuariopass=$contrasena'),
  $q-h3('type user name'),
  $q-textfield(-name='username',  -size=20),
  $q-p(),
  $q-h3('type user password'),
  $q-password_field(-name='passwd',  -size=20),
  $usuario = $q-param('username'),
  $contrasena = $q-param('passwd'),
  $q-p(),
  $q-submit(-name='Check'),
  $q-end_form, $q-hr,
  $q-end_html;



Abel Lucano
Decode SA
email: [EMAIL PROTECTED]
http://www.decode.com.ar