From dde0c55834d928a105603c1c12834b19edb60ed7 Mon Sep 17 00:00:00 2001 From: Brian Fraser Date: Tue, 31 Jan 2012 23:41:16 -0300 Subject: [PATCH] perlsec: #109408 --- pod/perlsec.pod | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/pod/perlsec.pod b/pod/perlsec.pod index d8470ec..634024d 100644 --- a/pod/perlsec.pod +++ b/pod/perlsec.pod @@ -134,10 +134,8 @@ For example: @files = <*.c>; # insecure (uses readdir() or similar) @files = glob('*.c'); # insecure (uses readdir() or similar) - # In Perl releases older than 5.6.0 the <*.c> and glob('*.c') would - # have used an external program to do the filename expansion; but in - # either case the result is tainted since the list of filenames comes - # from outside of the program. + # In either case, the results of glob are tainted, since the list of + # filenames comes from outside of the program. $bad = ($arg, 23); # $bad will be tainted $arg, `true`; # Insecure (although it isn't really) -- 2.7.4