I'm working on a generic email script that take one user specified file name that points to a email template file(allows html formated emails). I want to make sure this file name does not contain any potentially dangerous commands like ;/rm-rf;/.