hey, i have a slight problem, i know whats wrong, however i dont know how to fix it.
i am trying to run a system command to run one script from another. the problem is with taint mode. if i dont include -T at the top of the script system doesnt run... (i think). if i do include it i get the following error:
[Wed Dec 10 14:07:57 2003] [error] [client 81.132.220.83] malformed header from script. Bad header=<pre>Insecure dependency in sy: /home/jxkobgnr/public_html/cgi-bin/sendtxt.cgi
[Wed Dec 10 14:07:57 2003] sendtxt.cgi: Insecure dependency in system while running with -T switch at /home/jxkobgnr/public_html/cgi-bin/sendtxt.cgi line 305.
delete @ENV{qw(PATH IFS CDPATH ENV BASH_ENV)};
system "$link";the problem is that $code is tainted. its a just an cgi param, and $row_id[0] is a database value.
so how can i get it to work?
thanks
Pedge
i am trying to run a system command to run one script from another. the problem is with taint mode. if i dont include -T at the top of the script system doesnt run... (i think). if i do include it i get the following error:
[Wed Dec 10 14:07:57 2003] [error] [client 81.132.220.83] malformed header from script. Bad header=<pre>Insecure dependency in sy: /home/jxkobgnr/public_html/cgi-bin/sendtxt.cgi
[Wed Dec 10 14:07:57 2003] sendtxt.cgi: Insecure dependency in system while running with -T switch at /home/jxkobgnr/public_html/cgi-bin/sendtxt.cgi line 305.
Code:
my $link = "/cgi-bin/cron/text.cgi?id=$row_id[0]&code=$code"; delete @ENV{qw(PATH IFS CDPATH ENV BASH_ENV)};
system "$link";
so how can i get it to work?
thanks
Pedge