-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At 1:51 PM -0300 11/13/00, martin langhoff wrote:
> Why would you want to validate the filename of the file you are getting
>via upload? Or am I missing something?
Sorry, I missed that it was an upload parameter. I thought you were
getting th
Kee Hinckley wrote:
> So long as you don't mind someone doing http://xxx/foo.epl?file=/etc/passwd
> I'd do a little checking on the contents of $fdat{file} first.
Kee,
using CGI.pm's magic to treat a reference as a filehandle is regarded
as a safe practice, and is part of what I underst
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
At 11:08 AM -0300 11/13/00, martin langhoff wrote:
>hi,
>
> I'm using mod_perl 1.24 and Embperl 1.2.1 and I'd like to know if
>using construct like
>
>{
> local $/ = undef;
> $filecontents = <$fdat{file}>;
>}
So long as you don't m
hi,
>
> I'm using mod_perl 1.24 and Embperl 1.2.1 and I'd like to know if
> using construct like
>
> {
> local $/ = undef;
> $filecontents = <$fdat{file}>;
> }
>
> is supported/supposed to work. Reading the man pages, it seems that the
> 'official' way is to take the "binary clean" path and use r
hi,
I'm using mod_perl 1.24 and Embperl 1.2.1 and I'd like to know if
using construct like
{
local $/ = undef;
$filecontents = <$fdat{file}>;
}
is supported/supposed to work. Reading the man pages, it seems that the
'official' way is to take the "binary
> Oh sorry, I think I have said something wrong. I mean there is no record
for
> different users shared the same session id. Also there is no sudden change
of
> session id for one member.
>
> in my httpd.conf I haven't set the cookie_domain, what should I set in
there?
You only need it, if your
Hi Eddie,
>
> In the previous mail (Get Wrong Session?) I have mentioned a problem
> that few users of my web community login with their user name and
> password, they will go to other user's account. I have added a print
> LOG to the main page of each user's account. After few days monitor a
