Home/ Questions/Q 609437
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-13T17:34:01+00:00

I want to make sure that I delete required files. I have code something

  • 0

I want to make sure that I delete required files.
I have code something like

dir="/some/path/"
file = "somefile.txt"
cmd_rm= "rm -rf "+dir + file
os.system(cmd_rm)

The dir and file values are fetched from a database. How can I make sure I never end up running rm -rf /?

What things should I check before doing rm -rf?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Don’t use the -r switch if you just want to remove a single file. Also, there could be spaces in the file name.

    Better use the functions in Python’s os module instead:

    dirname = "/some/path/"
filename = "somefile.txt"
pathname = os.path.abspath(os.path.join(dirname, filename))
if pathname.startswith(dirname):
   os.remove(pathname)

    Normalizing the path with abspath and comparing it against the target directory avoids file names like “../../../etc/passwd” or similar.

    • 0