pass $_SERVER array through php exec function

Question

Possible Duplicate:
Safe executing shell scripts; escaping vars before execution

I want to pass $_SERVER data through php exec() function to run another script for background process.
to pass a simple parameter I do it like this:

exec("/usr/bin/php -f bg.php parameter1 > /dev/null &");

But I think it is impossible to directly pass an array to this function. So I tried serialize($_SERVER) . but now there's a bigger problem. Characters like quotations, semicolons and many others break down the shell command and it doesn't work properly.

So what's the solution to solve this problem?

have you tried simply enclosing the serialized array in quotes? this strategy has worked for me: `exec("/usr/bin/php -f bg.php '".serialize($_SERVER)."' parameter2 > /dev/null &");` — D.Tate, Oct 16 '13 at 15:53

score 3 · Accepted Answer · answered Oct 25 '12 at 21:09

3

Maybe what you are looking for is: http://php.net/manual/en/function.escapeshellarg.php

answered Oct 25 '12 at 21:09

pebbo

581
5
15

you mean I should use it after serialize($_SERVER) ? – Aliweb Oct 25 '12 at 21:13
1

yes, the serialized string should be passed to it. – pebbo Oct 25 '12 at 23:09

pass $_SERVER array through php exec function

1 Answers1

Linked