[Novalug] "taint"

Mark Smith mark@winksmith.com
Sun Mar 22 23:24:43 EDT 2015


hahahaha, xkcd hits home again.

On Sun, Mar 22, 2015 at 11:10:24PM -0400, Richard Rognlie via Novalug wrote:
> The short answer to taint and perl is...
> 
> A tainted variable contains input which has not been sanity checked.
> 
> Think "Little Bobby Tables" from XKCD
>         https://xkcd.com/327/
> 
> Making sure that whatever the input, there are no unintended side effects 
> due to quoting and/or special characters, PATHs, assumed directories, etc. etc.
> 
> 
> On Mon, Mar 23, 2015 at 03:39:04PM +1300, Mark Smith via Novalug wrote:
> > taint is used in common nomenclature for kernels and for perl, possibly others.
> > 
> > 	http://perldoc.perl.org/perlsec.html
> > 	http://unix.stackexchange.com/questions/118116/linux-what-is-a-tainted-kernel
> > 
> > plus, the original question was in regards to perl tainting iirc.
> > 
> > On Sat, Mar 21, 2015 at 09:16:58AM -0500, Beartooth via Novalug wrote:
> > > 	I know lots of meanings for the word, in lots of contexts, but not
> > > one relevant to computing.

-- 
Hei konā mai
Mark Smith
mark@winksmith.com



More information about the Novalug mailing list