enclosing variable in quotes
Bill Campbell
bill at celestial.com
Wed Feb 14 12:10:07 PST 2018
On Tue, Feb 13, 2018, scooter6--- via Filepro-list wrote:
>If I'm wanting to pass my variable with double quotes included, why does
>processing not like this?
As a general rule, any variable that may result from user input
should NEVER be enclosed in double quotes as the variable may
contain malicious code (e.g. "; rm -rf $HOME;").
Bill
--
INTERNET: bill at celestial.com Bill Campbell; Celestial Software LLC
URL: http://www2.celestial.com/ PO Box 820; 6641 E. Mercer Way
Mobile: (206) 947-5591 Mercer Island, WA 98040-0820
Fax: (206) 232-9186 Skype: jwccsllc
When the customer has beaten upon you long enough, give him what he asks
for, instead of what he needs. This is very strong medicine, and is
normally only required once.
-- The Consultant's Curse:
More information about the Filepro-list
mailing list