comment on

Does anyone have any suggestions?

Yes.

In your application, split your string up into parts you want quoted and parts you don't. Then use quotemeta to quote the parts you want quoted. Then put the strings back together again.

You haven't said what your criteria is for deciding whether or not to quote a given part of a string is, so I can't give you specific code to split the string up, but the general idea is, don't try to bypass security features like quotemeta by finding "loopholes". If there are loopholes, there are bugs; and you hope there *aren't* bugs, right? Instead, only apply a feature if you really want it in the first place...

In reply to Re: Escaping quotemeta() in regex by Anonymous Monk
in thread Escaping quotemeta() in regex by sweetblood

Are you posting in the right place? Check out Where do I post X? to know for sure.
Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:
<code> <a> <b> <big> <blockquote> <br /> <dd> <dl> <dt> <em> <font> <h1> <h2> <h3> <h4> <h5> <h6> <hr /> <i> <li> <nbsp> <ol> <p> <small> <strike> <strong> <sub> <sup> <table> <td> <th> <tr> <tt> <u> <ul>
Snippets of code should be wrapped in <code> tags not <pre> tags. In fact, <pre> tags should generally be avoided. If they must be used, extreme care should be taken to ensure that their contents do not have long lines (<70 chars), in order to prevent horizontal scrolling (and possible janitor intervention).
Want more info? How to link or How to display code and escape characters are good places to start.


Pathologically Eclectic Rubbish Lister
	PerlMonks