Welcome to WebmasterWorld Guest from 188.8.131.52
This is what I've come up with so far:
- Check that the referring URL is what it should be
- Validate that user input is sane eg an alpha numneric field shouldn't contain control characters
- Never blindly pass user input to an external program as an argument
- All writable files should be in a seperate directory so that permissions on your cgi-bin can be made secure
- Remove all backup files (eg foo.cgi~ ) from your script directory, as they will be served up as text giving a hacker plenty of food for thought.
I ran out of ideas at this point. Has anyone any more, or disagree with any of these?
Care to share? I'm still learning perl, or else I might actually know this one.
Or you could sticky mail me, if you don't want to post..after all, it wouldn't be good to start the revolution from one casual post, yes?
Not really something that would fall under stander precautions or practices, but a good option for some applications.