[Bioperl-l] Bio::Root::Root.pm and taint
jason at cgt.duhs.duke.edu
Tue Apr 13 11:00:10 EDT 2004
presumably you'd get the same thing with SeqIO or any of the other
bits using the dyanamic module loading system.
hmm - I guess the _load_module routine needs to be untainted...
not something I've worked on in the past - but perhaps someone else can
take a look.
On Tue, 13 Apr 2004, rich wrote:
> Hi, I am having an issue getting a cgi script to run in
> taint mode.
> The error log shows the message below.
> User defined input is taken from a form and written to a
> temp file. This is then read with Bio::PopGen::IO::csv.
> Looking at the comments within Root.pm it looks as
> though this had had attention previously
> MSG: Failed to load module Bio::PopGen::IO::csv.
> Insecure dependency in require while running with -T swi
> tch at
> line 394.
> STACK Bio::Root::Root::_load_module
> STACK (eval)
> STACK Bio::PopGen::IO::_load_format_module
> STACK Bio::PopGen::IO::new
> STACK toplevel /usr/apache_ssl/cgi-bin/popgen_format.cgi:106
> Bioperl-l mailing list
> Bioperl-l at portal.open-bio.org
jason at cgt.mc.duke.edu
More information about the Bioperl-l