Stories
Slash Boxes
Comments
NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.

All the Perl that's Practical to Extract and Report

The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Call for TPF volunteers: I know PHP, why should I use Perl? 4 Comments More | Login | Reply /

 Full
 Abbreviated
 Hidden
More | Login | Reply
Loading... please wait.
  • I like to point to my experience with PHP [perl.org] as why I shy away from it. But that's simply not good enough - I mean, anyone can write insecure code with any language.

    I'm not sure this is a worthy project. IMO, we need to get programmers good at what they do. KISS (Keep It Secure, Stupid!). Converting them to a new language resets their capabilities instead of getting them closer to writing that killer app.

    Peace,

    Jason
    • I mean, anyone can write insecure code with any language.

      Although Perl makes it very easy to NOT write insecure code by using taint mode. That's a huge bonus over PHP.

      We'll be sure to put taint mode on the list.

      --

      --
      xoa

      • Yeah, that was my initial thought, too, but put yourself in the shoes of a PHP programmer. They just want to hack something quick to get the job done. Taint mode adds complexity to the task at hand.

        And I'm sure there's something similiar that can be done in PHP (register_globals, etc).

        IMHO, the clincher is CPAN (though PHP has PEAR -- odd their latest news [php.net] is >1y old, though -- maybe PHP uses something else?). With CPAN, a Perl Web programmer can design/code from a high level and look for CPAN modules

        • Yeah, that was my initial thought, too, but put yourself in the shoes of a PHP programmer. They just want to hack something quick to get the job done. Taint mode adds complexity to the task at hand.

          Ick. I would never want anyone working for me to have the idea that taint mode adds too much complexity to a web app.

          --
          J. David works really hard, has a passion for writing good software, and knows many of the world's best Perl programmers
Stories, comments, journals, and other submissions on use Perl; are Copyright 1998-2006, their respective owners.