Beefy Boxes and Bandwidth Generously Provided by pair Networks
good chemistry is complicated,
and a little bit messy -LW
 
PerlMonks  

RE: Re: File Naming

by Anonymous Monk
on Aug 01, 2000 at 10:02 UTC ( [id://25413]=note: print w/replies, xml ) Need Help??


in reply to Re: File Naming
in thread File Naming

sub secure_query
{
    $_ = shift;
    s/\-+(.*)/$1/g;
    s/(.*)[ \t]+\-(.*)/$1$2/g;
    tr/\$\'\`\"\<\>\/\;\!\|/_/;
    return($_);
}#End secure_query

[download]

Replies are listed 'Best First'.
RE: RE: Re: File Naming
by Fastolfe (Vicar) on Aug 01, 2000 at 22:49 UTC
    This is probably a little simpler and a lot safer: 
    $had_bad_characters = $user =~ s/\W//g;

# Safer still (since what's defined as a 'word character' could change
+ based on locale/Unicode (?))
$user =~ s/[^a-zA-Z_-]//g;   # Explicitely define what we want to ACCE
+PT as valid

    [download]
    Generally the secure approach involves defining what is acceptable and disallowing everything else, not trying to filter out what we know/anticipate to be bad, because stuff frequently slips through.
[reply]
[d/l]

In Section Seekers of Perl Wisdom

Log In?
Username:
Password:

What's my password?
Create A New User
Domain Nodelet?

www.com | www.net | www.org
Node Status?
node history
Node Type: note [id://25413]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this?Last hourOther CB clients
Other Users?
Others avoiding work at the Monastery: (6)
As of 2025-05-23 14:45 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    No recent polls found
    Notices?
    erzuuliAnonymous Monks are no longer allowed to use Super Search, due to an excessive use of this resource by robots.