shell variable security
Jacques B.
jjrboucher at gmail.com
Wed Oct 3 16:46:28 UTC 2007
I guess this is easier than using a temp variable (I know, I'm using a
condition - but I had missed that part of your question on my first
posting).
if [ "$name" !> "${name%%+(;|:)*}"
then
echo "Invalid character!"
fi
In the meantime I echo Jonathan's question. I also tested this and
was unable to make the exploit work. It simply echoed what I typed,
semi-colon and all.
Jacques b.
More information about the fedora-list
mailing list