executables

Hi how can I trap for stuff like this
if i have a call to a binary, such as traceroute

$name;
$trace=shell_exec("/usr/bin/traceroute $name ");
echo $trace;

now if you go to the page in a browser and type domain.com/test.php?name=yahoo.com;cat /etc/passwd

they get a list of my users I dont want this! how can i prevent this from happening?

In windows there is php.ini where you can disable functions so justs disable shell_exec function