Sanitizing and Untainting

By Michael Morin, About.com Guide

See More About

security
ruby basics

(Continued from Page 2)

If you can verify that the string from user input is safe, or can remove the offending parts, you can untaint the object. The following method will remove any characters other than lowercase letters, untaint the string and return it. It can then be safely passed to the safe_resize method without fear of mischief.

 def sanitize_input(string)
   safe_string = string.gsub(/[^a-z]/, '')
   safe_string.untaint
   return safe_string
 end

Overlooking Input and Output? Using the Input / Output Methods in Ruby
String Substitution in Ruby
Literal

Python String Methods: Built-in Methods for Handling Strings in Python
String Advanced Method Reference
Getting and Printing Strings
Unobtrusive JavaScript - Strings
Python String Module - Constants of Python Strings

Michael Morin
Ruby Guide

Sign up for My Newsletter

Headlines
Forum

Top Related Searches input string lowercase letters string string mischief fear

Ruby

About.com
Computing
Ruby
Advanced Ruby
Sanitizing and Untainting

Advertise on About.com
Our Story
News & Events
SiteMap
All Topics
Reprints
Help

Write for About
Careers at About
User Agreement
Ethics Policy
Patent Info.
Privacy Policy
Your Ad Choices

Sanitizing and Untainting

Suggested Reading