Sanitize user input: Difference between revisions

Line 5:

;Task:

Create a function that takes a list of 20 first and last names, and copies them to a record or struct. ~~The list~~ of ~~names~~ ~~won't~~ be ~~provided~~ ~~here~~, ~~because exploits like the Bobby Tables one are often language-specific~~. ~~Try~~ to ~~show~~ ~~an example~~ of a ~~"Bobby Tables" style input in your list of names~~ and ~~how~~ ~~your~~ ~~function~~ ~~prevents~~ it ~~from~~ ~~being~~ ~~executed~~ at ~~runtime.~~ ~~For~~ ~~example,~~ ~~create~~ a ~~filter~~ that ~~prevents~~ ~~input~~ ~~that~~ ~~looks~~ ~~like~~ ~~your~~ ~~language's~~ ~~instructions from being entered, or escape it with the appropriate escape characters.~~

Create a function that takes a list of 20 first and last names, and copies them to a record or struct. Ten of them must be typical input, (i.e. consist of only letters of the alphabet and punctuation), but the other ten must be deliberately chosen to cause problems with a program that expects only letters and punctuation. A few examples:

* ASCII control codes such as NUL, CR, LF

* Code for the language you are using that can result in damage (e.g. -rm -rf, delete System32, DROP TABLE, etc.)

* Numbers, symbols, foreign languages, emojis, etc.

(There were already solutions provided before the requirement that ten names are "normal" and ten are potentially harmful was added. Those answers satisfied the task requirements at the time they were submitted.)

;Related tasks