knitti wrote:
try avoiding anything in php. try avoiding anything in perl. yes, with
both languages it is _possible_ to write secure code, but actually
very seldom practiced. Everything else is a matter of taste and the
task to solve.
This is a shame about perl, but I can't say you're wrong. Years ago I
would have said go to #perl of efnet and ask there. Back then many of
the perl developers (and faq writers, and book writers) hung out there.
They put security features in perl and wrote secure perl cgi and knew
what they were talking about. Last time I was in #perl (on
irc.perl.org?) few of the real perlers were there. There may be enough
left to give you good answers.
But this isn't really a perl problem, or a php problem. It's possible to
write secure code in many environments, but it's not easy. Most cms
developers worry more about having tons of features than about secure
code. "Security" is tacked on as an afterthought, which doesn't work.
--
Darrin Chandler
[EMAIL PROTECTED]
http://www.stilyagin.com/
