CGI/Perl Guide | Learning Center | Forums | Advertise | Login
Site Search: in

  Main Index MAIN
INDEX
Search Posts SEARCH
POSTS
Who's Online WHO'S
ONLINE
Log in LOG
IN

Home: Perl Programming Help: Advanced:
cgi security checks / maintaining state

 



microwebber
Novice

May 27, 2003, 1:53 AM

Post #1 of 2 (867 views)
cgi security checks / maintaining state Can't Post

I'm a new cgi programmer and have written a few scripts that allow a user to create a website and transfer scripts to their site.



It has a shopping cart which is only half way finished. Before I complete the code which gathers items added to the cart I would like to know if their is a more efficient way than cookies to maintain state .



Also I use sockets to transfer some scripts if requested by the user. Is this safe? The perl script is written to the users disk, then the user is redirected to that page.

Can I be sued if my code is hacked and someone's data is lost or security is breached?

And last, can a more advanced user check my code before I post it. Or is there a service that does this?
Thanks
Tricia
yourkeylady@earthlink.net


Haunter
Novice

Jun 3, 2003, 6:13 PM

Post #2 of 2 (856 views)
Re: [microwebber] cgi security checks / maintaining state [In reply to] Can't Post

I personlly like CGI::Session.pm Check CPAN.

It allows you to use either database or flat file to maintain state. Bonus is all info is stored on the server not in cookies. Take a look.

I suggest a wrapper around the module to do simple error checking and implementation.

 
 


Search for (options) Powered by Gossamer Forum v.1.2.0

Web Applications & Managed Hosting Powered by Gossamer Threads
Visit our Mailing List Archives