Security aware programming(9)

• Taint mode: what it does not do

  • it does not disallow:

• open(F, "<", $tainted);

• system("command", $tainted);

• system($tainted, $tainted);

• print($tainted); # cross-site scripting

• printf($tainted, $tainted); # format string

  • world writable directories (except $ENV{PATH})
  • group writable directories
  • protect against human (untainting) mistakes...