Contents

• What is ‘Taint’ Checking?
• Potentially Insecure Stuff?
• A Simple Example
• What Could Possibly Go Wrong?
• The First Rule of Taint Club
• Untrustworthy Sources of Data
• The Second Rule of Taint Club
• Setuid Perl Scripts
• Perl Library Path with -T
• DBI and Taint
• Good Habits for More Secure Coding
• Resources

• Wellington Perl Mongers
• 13 November 2007