нашел в логах следующее
String found where operator expected at (eval 15) line 1, near ")",""
\t(Missing operator before ","?) Bareword found where operator expected at (eval 15) line 1, near "","_SESSION_EXPIRE_LIST"
\t(Missing operator before _SESSION_EXPIRE_LIST?)
String found where operator expected at (eval 15) line 1, near "_SESSION_EXPIRE_LIST" => {""
Unquoted string "logged" may clash with future reserved word at (eval 15) line 1.
String found where operator expected at (eval 15) line 1, near "in" => 2400},""
Bareword found where operator expected at (eval 15) line 1, near "" => 2400},"reg_from"
\t(Missing operator before reg_from?)
String found where operator expected at (eval 15) line 1, near "reg_from" => ""
Bareword found where operator expected at (eval 15) line 1, near "" => "http"
\t(Missing operator before http?)
Unquoted string "http" may clash with future reserved word at (eval 15) line 1.
Bareword found where operator expected at (eval 15) line 1, near "//meet"
\t(Missing operator before eet?)
Unquoted string "eet" may clash with future reserved word at (eval 15) line 1.
Unquoted string "sotchi" may clash with future reserved word at (eval 15) line 1.
Unquoted string "ru" may clash with future reserved word at (eval 15) line 1.
Unquoted string "fcgi" may clash with future reserved word at (eval 15) line 1.
Unquoted string "fpl" may clash with future reserved word at (eval 15) line 1.
Unquoted string "sid" may clash with future reserved word at (eval 15) line 1.
Bareword found where operator expected at (eval 15) line 1, near "9a41fb838f1db13b9a43be32ac07e07e"
\t(Missing operator before a41fb838f1db13b9a43be32ac07e07e?)
String found where operator expected at (eval 15) line 1, at end of line
Can't find string terminator '"' anywhere before EOF at (eval 15) line 1.
Can't find string terminator '"' anywhere before EOF at (eval 15) line 1.
Can't find string terminator '"' anywhere before EOF at (eval 15) line 1.
Use of uninitialized value in sprintf at /usr/local/lib/perl5/site_perl/5.8.8/CGI/Session/File.pm line 93.
incomplete headers (0 bytes) received from server "/usr/local/www/meet.sotchi.ru/fcgi-bin/__start.fpl"

и соответсвенно в файле сессии (юзаю CGI::Session::File), вижу следующее (переводы строк добавил для формата):



$D = {
"password_value" => 148,
"bd2" => 12,
"bd1" => 23,
"myid" => 62,
"password" => 148,
"res_save" => "",
"reg_count" => 0,
"code" => "81o4d9yrjswtgxq9nfl66wei3j46tok6",
"_SESSION_ID" => "9a41fb838f1db13b9a43be32ac07e07e",
"_SESSION_ETIME" => 2400,
"reg_error_descr" => "",
"ccode" => "0519",
"location" => 1,
"~logged-in" => 1,
"_SESSION_REMOTE_ADDR" => "62.xxx...",
"_SESSION_CTIME" => "1225126077",
"login" => "Dandy",
"_SESSION_ATIME" => "1225127741",
"bd3" => 1982,
"reg_error" => "",
"login_value" => "abc \x{422}\x{441}\x{441}.. )",
"_SESSION_EXPIRE_LIST" => {"~logged-in" => 2400},
"reg_from" => "blah blah ?sid=9a41fb838f1db13b9a43be32ac07e07e"
};
{441}.. )",
"_SESSION_EXPIRE_LIST" => {"~logged-in" => 2400},
};


Я так понимаю тут уязвимость с Unicode или что то еще... есть мысли?