Login or Register to Ask a Question and Join Our Community


Shell Programming and Scripting

Help with use of `` vs exec

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums Shell Programming and Scripting Help with use of `` vs exec
# 1  
Old 04-03-2009
Help with use of `` vs exec
Hi all,
I had an issue regarding use of `` or exec in perl . `` are considered to be unsafe. Why? In my case an user would be giving some parameters as input and I will form an command of it and execute it using ``. It is important to capture output as i have to parse the output. As well as I need to know success or failure of command. There are many such commands so use of open() to execute the command wont help.
I am clearing the input parameters if they contain following metacharacters:
$cmd =~ s/&|;|\`|\"|\*|\?|~|\(|\)|\[|\]|\n|\r/-/g;
Is this a good solution. I assume this is what taint mode does.
If I have to use exec and pass command as array as well as capture output, how can I do that?

Thanks,
Akshay
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Script Variables Inquiry, Values Okay in Standalone Exec, No-Show in Cron Exec

I have the following bash script lines in a file named test.sh. #!/bin/bash # # Write Date to cron.log # echo "Begin SSI Load $(date +%d%b%y_%T)" # # Get the latest rates file for processing. # d=$(ls -tr /rms/data/ssi | grep -v "processed" | tail -n 1) filename=$d export filename... (3 Replies)
Discussion started by: ginowms
3 Replies

2. UNIX for Advanced & Expert Users

Using -exec with and without -name

Hi, I need to delete the last N days file using find. I am trying to use find . -mtime -10 -print which lists down required files. but when i use find . -mtime -10 -exec ls -lrt {} \; it gives me all files in the directory including the required files but the required files... (7 Replies)
Discussion started by: v_m1986
7 Replies

3. UNIX for Dummies Questions & Answers

exec

Hi, i don't understand this part of one script exec >> $Log_File 2>&1 (1 Reply)
Discussion started by: messi777
1 Replies

4. Ubuntu

Find and exec

Hello, I am a linux newbe. I want to install a program. I can download it only with wget command from internet. As far as i know this wget command does not transfer the exacutable flags. Because of that i wanted to find all configure files and change their mod to 744. I found this... (1 Reply)
Discussion started by: disconnectus
1 Replies

5. UNIX for Advanced & Expert Users

-exec cp

Hi, on AIX 6.L I want to copy the result of grep -v to test directory then : `hostname`@oracle$ls -l | grep -v RINT -exec cp {} test grep: can't open -exec grep: can't open cp grep: can't open {} test:°`. Can you help me ? Thank you. (3 Replies)
Discussion started by: big123456
3 Replies

6. Shell Programming and Scripting

exec in tcl

Hello; I have a console application who shown a output in every iteration, now i create a small GUI to call the application with button etc..., but what must i do to follow showing the output in the screen? Advanced thanks, Pablo (0 Replies)
Discussion started by: pablodecastillo
0 Replies

7. Shell Programming and Scripting

exec tclsh

As a part of learning shell scripting I was just going through some already created scripts there I found- exec tclsh "$0" $(1+"$@") Here I was able to find what exec ,tclsh does & o/p of same but I could not find usage & output of $(1+"$@"). Can anybody pls expalain me usage details of it? (5 Replies)
Discussion started by: rediffmail
5 Replies

8. UNIX for Advanced & Expert Users

exec

I have read that exec "replaces the current process with a new one". So I did $ exec ls and after this executed, my shell disappeared. I am assuming that my shell had PID xyz, and when I did exec ls, this ls got pid xyz, and when it terminated, there was no more shell process running, and... (5 Replies)
Discussion started by: JamesByars
5 Replies

9. Shell Programming and Scripting

exec

In exec function say when i would like to remove the files exec rm{}\; Why is this "\" needed immediately after {} and what if i dont give it? TIA, Nisha (1 Reply)
Discussion started by: Nisha
1 Replies
Login or Register to Ask a Question

LEARN ABOUT BSD

exec

exec(1) 							   User Commands							   exec(1)

NAME

       exec, eval, source - shell built-in functions to execute other commands

SYNOPSIS

   sh
       exec [argument...]

       eval [argument...]

   csh
       exec command

       eval argument...

       source [-h] name

   ksh
       *exec [arg...]

       *eval [arg...]

DESCRIPTION

   sh
       The  exec  command specified by the arguments is executed in place of this shell without creating a new process. Input/output arguments may
       appear and, if no other arguments are given, cause the shell input/output to be modified.

       The arguments to the eval built-in are read as input to the shell and the resulting command(s) executed.

   csh
       exec executes command in place of the current shell, which terminates.

       eval reads its arguments as input to the shell and executes the resulting command(s). This is usually used to execute commands generated as
       the result of command or variable substitution.

       source  reads  commands	from name. source commands may be nested, but if they are nested too deeply the shell may run out of file descrip-
       tors. An error in a sourced file at any level terminates all nested source commands.

       -h	Place commands from the file name on the history list without executing them.

   ksh
       With the exec built-in, if arg is given, the command specified by the arguments is executed in place of this shell without creating  a  new
       process.  Input/output arguments may appear and affect the current process. If no arguments are given the effect of this command is to mod-
       ify file descriptors as prescribed by the input/output redirection list.  In this case, any file descriptor numbers greater than 2 that are
       opened with this mechanism are closed when invoking another program.

       The arguments to eval are read as input to the shell and the resulting command(s) executed.

       On this man page, ksh(1) commands that are preceded by one or two * (asterisks) are treated specially in the following ways:

       1.  Variable assignment lists preceding the command remain in effect when the command completes.

       2.  I/O redirections are processed after variable assignments.

       3.  Errors cause a script that contains them to abort.

       4.  Words,  following a command preceded by ** that are in the format of a variable assignment, are expanded with the same rules as a vari-
	   able assignment. This means that tilde substitution is performed after the = sign and word splitting and file name generation  are  not
	   performed.

EXIT STATUS

       For ksh:

       If  command is not found, the exit status is 127. If command is found, but is not an executable utility, the exit status is 126. If a redi-
       rection error occurs, the shell exits with a value in the range 1-125. Otherwise, exec returns a zero exit status.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       csh(1), ksh(1), sh(1), attributes(5)

SunOS 5.10							    17 Jul 2002 							   exec(1)