--- Claude Jones <[EMAIL PROTECTED]> wrote: > This is my first post, and I hope it's not too newbie even for a list with > this name. I'm just beginning to learn Perl and I have successfully got some > scripts working on our website to handle form submissions. We are in process > of bringing our site in house, where we will host on a MIIS server. > Currently our site is hosted on a Linux server. By changing some things, I > briefly got our forms to work on our new server, and didn't realize it, and > kept changing things. Now, I'm completely stumped and can't find the > problem. All the permissions are properly set. Perl has been mapped to run > with MIIS. I've installed a sendmail client for windows which works. If > someone is willing to take a look, the script is at the following: > www.crosseyes.biz\form_processor.txt I've changed the ending to .txt to > prevent any complications. > > Claude Jones > WTVS, Leesburg, VA
Claude, Don't worry about your question being "too newbie". That's what the list is here for :) That being said, I really feel sorry for people who just start learning Perl who get free scripts like yours. Even if it didn't cost you any money up front, you overpaid. I just did a quick scan through the code and I see many problems with it (not the least of which is the way that it directly pipes form data to send mail (that can be a huge security hole). Even though your code compiles, I saw some issues with it that could cause you problems and I really, really, thought about pointing them out. Unfortunately, I realized that, from an ethical standpoint, fixing dangerous code so that you can have security holes running on your system would be improper. I'm not trying to be "high and mighty" and my apologies in advance if this seems rude. I realize that you're new to Perl so I hardly think you're to blame :) You may wish to check out STAMP (Secure, Template-Aware Mail Processor) by Benjamin Trott: http://rhumba.pair.com/ben/perl/stamp/. Ben is an excellent programmer and, while I haven't reviewed this particular product, I am familiar enough with his code in general that I feel very comfortable recommending it. It does require installing some modules. If you're interested in this program (it's also free, by the way) and you have any trouble, let us know. Cheers, Curtis "Ovid" Poe ===== Senior Programmer Onsite! Technology (http://www.onsitetech.com/) "Ovid" on http://www.perlmonks.org/ __________________________________________________ Do You Yahoo!? Send your FREE holiday greetings online! http://greetings.yahoo.com -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
