Training, Open Source computer languages

PerlPHPPythonMySQLhttpd / TomcatTclRubyJavaC and C++LinuxCSS

Search our site for:
Print friendly page
Home Accessibility Courses Diary The Mouth Forum Resources Site Map About Us Contact
Don't expose your regular expressions
If you're writing an application, it's generally NOT a good idea to take a user input and slap it straight in to a regular expression for matching - quite simply because it's improbable that your user will be familiar with regular expressions and he / she will get all sorts of strange results if she / he puts any special characters into their search string.

Users do often require to enter various search patterns, and I recommend that you come up with a scheme that suits your own type of search; that might involve taking the user's input and using it to indirectly for a regular expression, or it might make for some totally different search.

I was talking about this yesterday to a Perl group, with a user community that's used to using * and ? in file name matching (know as globbing) and who want to do the same on data within Perl. It's a good example where the program shouldn't just pass through the data entered - rather, they should
1. Protect input special characters with a \
2. replace input ? characters with a .
3. replace input * characters with a .*
4. Add ^ and $ anchors

And that will give them the ability to wildcard in the good ole way they wish!
(written 2006-02-15 07:00:34)

 
Associated topics are indexed under
H107 - String Handling in PHP
P212 - Perl - More on Character Strings

Back to
On being British
 Previous and next
or
Horse's mouth home		 Forward to
Been on a course, but still not got it?

Some other Articles
Coming or going?
Look out for the motor cyclist
Need a hankie
Been on a course, but still not got it?
Don't expose your regular expressions
On being British
Train service from December
Design your day with a walk
Perl - multiprocess applications
PHP - setting sort order with an associative array
1637 posts, page by page
Link to page ... 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33 at 50 posts per page


This is a page archived from The Horse's Mouth at http://www.wellho.net/horse/ - the diary and writings of Graham Ellis. Every attempt was made to provide current information at the time the page was written, but things do move forward in our business - new software releases, price changes, new techniques. Please check back via our main site for current courses, prices, versions, etc - any mention of a price in "The Horse's Mouth" cannot be taken as an offer to supply at that price.

Link to Ezine home page (for reading).
Link to Blogging home page (to add comments).
Public Course Enquiry / Booking
Courses that run regularly at our UK training Centre.
[Schedule] - [About] - [Book]
Related short articles
Linux and Java Course in London
Norwich and London
Regular expression for 6 digits OR 25 digits
Please don't shout at me!
London Midland ... Merrymaker ... Percy Danks
I dont care - goodbye
Melksham - Swindon. Train v Bus v Car
The geometry of East London
Are nasty programs looking for security holes on your server?
Paging Martin Noke, who petitions for more trains from Trowbridge to Swindon
Flipping images on your web page
Next course - 7th January 2008, Regular Expressions
Tcl/Tk - updating your display while tasks are running
Market survey - to learn, to prove a point, or to sell your product?
Dont just convert to Perl - re-engineer!
Autumnal lighting on a London trip
Ignore case in Regular Expression
Flash - is it available to your web page?
Regular expressions made easy - building from components
Ensuring that our tutor answers YOUR questions
Commenting a Perl Regular Expression
Five of the best - pictures from London
Regular Express Primer
Save the Forum - A regular clean sweep
What shape is your shake?
Gordon Dodge, R.I.P.
Buffering output - why it is done and issues raised in Tcl, Perl, Python and PHP
B-2-B Networking, 20th April. Useful for YOUR business?
Science Museum - larger exhibits / store, Wroughton, Swindon
Injection attacks - safeguard your PHP scripts
PHP Regular expression to extrtact link and text
UK legal requirements for your commercial web site
Call for appropriate train services - Swindon, Bristol, Bath, West Wilts, Severn Beach etc
Learnt in London - Ruby, Martini, Coral and the Core
Tomorrow's keywords - London, Training, Course, PHP, Ruby.
Finding public writeable things on your linux file system
Setting your colour theme through PHP
Empty seats, Nodding Donkeys and buses
Coming from London to Melksham by train for a course
Matching within multiline strings, and ignoring case in regular expressions
Staying at your own hotel
Check your user is human. Have him retype a word in a graphic
New - Conditional expressions in Python 2.5
Tk - laying out your GUI with frames, pack and grid
Do not duplicate your code
Watch your Google profile
Looking ahead and behind in a Regular Expression
Evaluating arithmetic expressions in configuration files
Iterators - expressions tha change each time you call them
For any North and West Wilts and Swindon Readers
Name Services - telling your LDAP from your DNS
Keeping your regular expressions simple
Think about your design even if you don't use full UML
PHP - London course, Melksham Course, Evening course
What is your business latency and potential?
Perl - its up to YOU to check your file opened
Don't expose your regular expressions
Design your day with a walk
Storing a regular expression in a perl variable
Danny and Donna are getting married
Perl Regular Expressions - finding the position and length of the match
Saving a MySQL query results to your local disc for Excel
May all your screw-ups be big ones
''I don't know'' is sometimes a good answer
Looking for railway groups and users - Swindon, Salisbury, Southampton
Rail services under threat - Swindon, Melksham ... and Newquay and Bicester too
Commenting Perl regular expressions
Swindon - Chippenham - Melksham - Trowbridge - Westbury train service
Don't repeat code - use loops or functions
Reading a news or blog feed (RSS) in your PHP page
Central London Courses - Perl, PHP, Python, Tcl, MySQL
A word of admiration for the London cabbie
Wimbledon Neck
Automating regular manual procedures
We dont stand still
Getting your examples, my examples and the data files after your course
How to get the best from your supplier
YOUR application and YOUR data
Look after your staff and they'll look after you. AOL.
Allow for peak traffic on your web site
Your personal Google ranking
Public courses in London
Current cost in your local currency
London - Most expensive city??
What do you look for in your IT trainer?
Looking for a donkey
© WELL HOUSE CONSULTANTS LTD., 2008: Well House Manor • 48 Spa Road • Melksham, Wiltshire • United Kingdom • SN12 7NY
PH: 01144 1225 708225 • FAX: 01144 1225 707126 • EMAIL: info@wellho.net • WEB: http://www.wellho.net • SKYPE: wellho