Try reading perlsec
And try this CGI course, that's based on security
I'm not so good at security, but this course gave me a very good overview of
what I could be letting away.
----- Original Message -----
From: "Chris Knipe" <firstname.lastname@example.org>
Sent: Thursday, April 17, 2003 12:56 PM
Subject: when is secure, secure?
> Lo everyone,
> I wrote a custom authentication handler for PureFTPD, using a combination
> authentication methods, for about 4 different types of users.
> So far, from testing it, it does look to work properly, and does it's job
> pretty well (and fast). I use #!/usr/bin/perl -W as well as use Strict,
> use warnings, and the code returns no errors or warnings when run.
> I am right to presume that this basically only really tells me the my
> and structure of the application is right? What's a good way to see
> it is actually SECURE... There is a couple of lines of code that I have my
> reservations about and am thus not 100% happy with the script...
> To unsubscribe, e-mail: email@example.com
> For additional commands, e-mail: firstname.lastname@example.org