Perl-Sensitive Sunglasses | |
PerlMonks |
comment on |
( [id://3333]=superdoc: print w/replies, xml ) | Need Help?? |
Run it in taint mode and only accept what is allowed and reject all other.
[a-zA-Z0-9] seems a safe set, but ultimately it will depend on what system commands you want to run. CountZero A program should be light and agile, its subroutines connected like a string of pearls. The spirit and intent of the program should be retained throughout. There should be neither too little or too much, neither needless loops nor useless variables, neither lack of structure nor overwhelming rigidity." - The Tao of Programming, 4.1 - Geoffrey James My blog: Imperial DeltronicsIn reply to Re: Dangerous Characters for system calls
by CountZero
|
|