Apache: The Definitive Guide, 3rd Edition

Perl Flags

When your scripts ran under mod_cgi, they started off with the “shebang line”:

#! /usr/local/bin/perl -w -T

Under mod_perl this is no longer necessary. However, it is tolerated, so you don’t have to remove it, and the -w flag is even picked up and invokes warnings. It would be too simple if all the other possible flags were also recognized, so if you use -T to invoke taint checking, it won’t work. You have to use PerlTaintCheck On, PerlWarning On in the Apache Config file. It is recommended that you always use PerlTaintCheck to guard against attempts to hack your scripts by way of dubious entries in HTML forms. It is recommended that you have PerlWarn on while the scripts are being developed, but when in production to turn warnings off since one warning per visitor, written to the log file on a busy site, can soon use up all the available disk space and bring the server to a halt.

Get Apache: The Definitive Guide, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Apache: The Definitive Guide, 3rd Edition by Ben Laurie, Peter Laurie

Perl Flags

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly