> Perl's "-T" flag turns on taint checking. Check out the perlsec manpage
Just FYI, Perl's "-T" flag doesn't turns on taint checking in mod_perl,
but triggers a warning that PerlTaintMode should be turned On in the
config file. See:
http://perl.apache.org/guide/porting.html#Switches_w_T
> for more info. Briefly, though, taint checking tells perl (among other
> things) not to trust environment variables such as $ENV{PATH}, and warn
> you if you make any implicit use of them when you run UNIX commands. You
> can avoid this error by explicitly setting the PATH before you execute
> external commands:
>
> $ENV{'PATH'} = "/bin:/usr/bin:/usr/sbin";
>
> -Rob von Behren
>
>
> On Sat, 2 Oct 1999, Pepi wrote:
>
> > Greetings,
> >
> > Does anyone now what that server error suggests:
> >
> > Insecure $ENV{PATH} while running with -T switch at
> > /home/web/perl/contact.pl line 46.
> >
> >
> > Close to this line in this source file I have:
> >
> > open (SENDMAIL, "| /usr/sbin/sendmail -oi -t")
> > or unexpected("contact.pl: Can't open sendmail process: $!\n");
> >
> > print SENDMAIL "To:support\@findmax.com\n";
> > print SENDMAIL "From:".$input{'email'}."\n";
> > print SENDMAIL "Subject: [contact form]".$input{'subject'}."\n\n";
> > print SENDMAIL $input{'message'}."\n";
> >
> > close (SENDMAIL)
> > or intecept("contact.pl: Sendmail did not finish w/ success: $!");
> >
> >
> > Thank you!
> >
> >
> > __________________________________________________________
> > Petar Maymounkov Cell: (617) 283-2401
> > 166 Quincy Mail Center Home: (617) 493-3106
> > Cambridge, MA 02138 Page: [EMAIL PROTECTED]
> >
> >
> >
>
_______________________________________________________________________
Stas Bekman mailto:[EMAIL PROTECTED] www.singlesheaven.com/stas
Perl,CGI,Apache,Linux,Web,Java,PC at www.singlesheaven.com/stas/TULARC
www.apache.org & www.perl.com == www.modperl.com || perl.apache.org
single o-> + single o-+ = singlesheaven http://www.singlesheaven.com
