Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Block ";" in input string
Top Forums Programming Block ";" in input string Post 302077343 by jim mcnamara on Wednesday 21st of June 2006 10:51:53 AM
Old 06-21-2006
Assuming the arguments are never more than 34 chars long then that will work.

Corona actually gave a better solution - ie., let wpleca2unix.sh fend for itself.
What if that code is invoked by some other means than your program - i.e., another programmer decides to let it run on it's own? In general, you should not depend on security with only one secure code layer. IMO.

FWIW:
Code:
for(m=0; command[m]; m++) /* check the whole thing */
  {
    if(!(isalnum(command[m]) || isspace(command[m])))
    {
      return 0;  
    }
  }

And. Consider using regcomp() and friends when you want to test complex character classes in a long string. In this case the ctype.h tests are easy to implement and understand. Most other times they are a nightmare.
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

check input = "empty" and "numeric"

Hi how to check input is "empty" and "numeric" in ksh? e.g: ./myscript.ksh k output show: invalid number input ./myscript.ksh output show: no input ./myscript.ksh 10 output show: input is numeric (6 Replies)
Discussion started by: geoffry
6 Replies

2. Shell Programming and Scripting

input string="3MMTQSZ348GGMZRQWMJM4SD6M";output string="3MMTQ-SZ348-GGMZR-QWMJM-4SD6

input string="3MMTQSZ348GGMZRQWMJM4SD6M" output string="3MMTQ-SZ348-GGMZR-QWMJM-4SD6M" using linux shell script (4 Replies)
Discussion started by: pankajd
4 Replies

3. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

4. Shell Programming and Scripting

Using sed to find text between a "string " and character ","

Hello everyone Sorry I have to add another sed question. I am searching a log file and need only the first 2 occurances of text which comes after (note the space) "string " and before a ",". I have tried sed -n 's/.*string \(*\),.*/\1/p' filewith some, but limited success. This gives out all... (10 Replies)
Discussion started by: haggismn
10 Replies

5. Shell Programming and Scripting

how to use "cut" or "awk" or "sed" to remove a string

logs: "/home/abc/public_html/index.php" "/home/abc/public_html/index.php" "/home/xyz/public_html/index.php" "/home/xyz/public_html/index.php" "/home/xyz/public_html/index.php" how to use "cut" or "awk" or "sed" to get the following result: abc abc xyz xyz xyz (8 Replies)
Discussion started by: timmywong
8 Replies

6. Shell Programming and Scripting

tcsh - understanding difference between "echo string" and "echo string > /dev/stdout"

I came across and unexpected behavior with redirections in tcsh. I know, csh is not best for redirections, but I'd like to understand what is happening here. I have following script (called out_to_streams.csh): #!/bin/tcsh -f echo Redirected to STDOUT > /dev/stdout echo Redirected to... (2 Replies)
Discussion started by: marcink
2 Replies

7. Shell Programming and Scripting

grep with "[" and "]" and "dot" within the search string

Hello. Following recommendations for one of my threads, this is working perfectly : #!/bin/bash CNT=$( grep -c -e "some text 1" -e "some text 2" -e "some text 3" "/tmp/log_file.txt" ) Now I need a grep success for some thing like : #!/bin/bash CNT=$( grep -c -e "some text_1... (4 Replies)
Discussion started by: jcdole
4 Replies

8. UNIX for Dummies Questions & Answers

Using "mailx" command to read "to" and "cc" email addreses from input file

How to use "mailx" command to do e-mail reading the input file containing email address, where column 1 has name and column 2 containing “To” e-mail address and column 3 contains “cc” e-mail address to include with same email. Sample input file, email.txt Below is an sample code where... (2 Replies)
Discussion started by: asjaiswal
2 Replies

9. Shell Programming and Scripting

How to avoid "Too many arguments" error, when passing a long String literal as input to a command?

Hi, I am using awk here. Inside an awk script, I have a variable which contains a very long XML data in string format (500kb). I want to pass this data (as argument) to curl command using system function. But getting Too many arguments error due to length of string data(payloadBlock). I... (4 Replies)
Discussion started by: cool.aquarian
4 Replies

10. Shell Programming and Scripting

Delete all log files older than 10 day and whose first string of the first line is "MSH" or "<?xml"

Dear Ladies & Gents, I have a requirement to delete all the log files in /var/log/test directory that are older than 10 days and their first line begin with "MSH" or "<?xml" or "FHS". I've put together the following BASH script, but it's erroring out: for filename in $(find /var/log/test... (2 Replies)
Discussion started by: Hiroshi
2 Replies

LEARN ABOUT DEBIAN

themole

THEMOLE(1)						      General Commands Manual							THEMOLE(1)

NAME

       themole - automatic SQL injection exploitation tool

SYNOPSIS

       themole [ -h ] [ -u url ] [ -n needle ] [-t num_threads]

DESCRIPTION

       The Mole is a command line interface SQL Injection exploitation tool.  This application is able to exploit both union-based and blind bool-
       ean-based injections.

       Every action The Mole can execute is triggered by a specific command.  All this application requires in order to exploit a SQL Injection is
       the URL(including the parameters) and a needle(a string) that appears in the server's response whenever the injection parameter generates a
       valid query, and does not appear otherwise.

OPTIONS

       -h     Shows the help message and exits.

       -u url Sets the url of the mole's instance to url.

       -n needle
	      Sets the needle of the mole's instance to needle. It must be a string that appears when the injection returns  true  and	disappears
	      when the injection is false.

       -t threads
	      Sets the max number of concurrent requests that the mole will be making.	Cannot be changed at runtime.

SEE ALSO

       The program provides interactive documentation, refer also to the official README file.

AUTHOR

       This manual page was written by Santiago Alessandri <salessandri@nasel.com.ar>

								 November 24 2011							THEMOLE(1)
All times are GMT -4. The time now is 12:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy