Perl CGI? Please say Perl CGI.
Perl CGI
Hay, I had literally like four minutes to write the entire handler! (I should have fast-cgiāed it to, I dunno, a Lisp command in emacs. That would have been awesome)
Perl runs on modern machines?
$param = $q->param('totally_safe');
$param =~ s/[^a-zA-Z0-9]//g;
say '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"><head></head><body>';
say "Take me, I'm yours $param";
Every perl script I write starts with:
`killall python 1&2>/dev/null`
Just out of spite.
Anyone going to RSA this year?
Perl is still used in a lot of odd places you might not expect. Iāve had it on my todo list to kill the handful of ancient Perl CGIs the thing at work uses since I got there (used for auth, naturally, fairly 90s, and with āourā sprinkled around and no āwarningsā). The first month I was there I was locking things in those scripts down in terror.
I kind of like Perl for quick one-off scripts, since sh is the spawn of Satan and perlās always there.
Scripting in perl should be considered spiteful enough. ( i wrote some great one offs in the past using perl, but I prefer languages that donāt make me feel like Iām fuzz testing my own brain when I come back and look at the code a month later.)
āourā is an abomination that should be killed with fire. I do like fucking with people and mixing functional, procedural, and oop all in one subroutine.
If you havenāt read this diatribe, its worth a read (mostly java complaininā, but a good read)
Itās nice for some things if youāve already gone through the pain of learning it and donāt want to drag in sed/awk/pipes:
perl -i.bak -pe ās/old/new/ig;ā file
If you have to save the script in a file and then open that file again then itās dicier, but if itās trivial it can be fine.
Itās fantastic for one liners. Iāve got a bit of bitterness though having inherited poorly commented applications with multiple modules, all, written, in fucking perl. <shakes fist at sky/>
Iām starting to take your claims of being evil more seriously.
Oh, so you found my code?
Thereās a phrase I learned a few decades ago, and its not a compliment: Three Star Programmer. As in:
***string
As in a pointer to a pointer to a pointer. Try debugging that shiat. It denotes a developer who thinks they are clever, but all his colleagues fucking loathe him.
Like doing math in a korn shell script cause some random update broke bc?
[size=10](Not my proudest moment)[/size]
No, the person who wrote it moved on to be a big shot executive at a tier 1 provider. He doesnāt touch code now, and weāre all better off because of it.
I think we should start a different rant thread on Java because otherwise it would take over everything.
At the job I do
35% Java
20% C (split between kernel/userspace)
40% Rails
5% other crap
but it feels like 80% Java because of the slog through AbstractProfileFactoryThreadBuilder.java with added dependency injection head meltingness (and some Hibernate for extra magic). It does make kmalloc() seem more friendly, though.
All of it begs for one lazy/poorly informed/briefly confused person to make an error and open up a security vulnerability too.
Again, back to sec, I have a friend that is a founder of a company that is an RSA finalist.
http://www.rsaconference.com/press/46/rsa-conference-announces-finalists-for-innovation
They are āPhantomā. Iāve known him for a decade and I couldnāt be more proud.
Repeat after me: There is no such thing as secure PHP.
Why bother?