Re: [Cgi-session-user] Taint problem with CGI::Session

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

David Levner wrote:
>
> 2. Add a call to "$session->flush();" after
> "$session->expire($Conf::session_expiration_seconds);"

This is a recommended solution. There are some related bug reports about
it, although they mostly relate to 4.x

> My server is running Fedora 5, perl v5.8.8 built for
> i386-linux-thread-multi, and I am using CGI::Session 3.95. All the CGI
> scripts run under SSL (https).

For further community support, I suggest testing an upgrade to the
latest stable release in your development area to see if it improves
things.

CGI::Session 3.9x is not being maintained as a branch.

   Mark