Re: Saving a sequence
- Posted by ryanj Jan 23, 2015
- 1283 views
ne1uno said...
it's worth mentioning, be very sure of where your data us coming from when you read values into a program from serialize to sequences or from map save/load. a crafty user can sometimes use this input to instrument your program to do whatever.
imagine you are using a path or an expression expecting valid data that you carefully parsed before you saved it but then neglect to reparse & validate before you use what was loaded back in the next day. this is a very common security hole in many programs and languages.
Good advice, ne1uno.