Re: CERT Advisory on malicious scripts

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 27024
interpreted = N
texte = At 7:14 PM 2/3/00, Kenneth Grome wrote: ... >> >> Yes, but it will also mess with other characters you probably don't want >>changed as they are displayed on the page ... >>Yeah.. I thought of that as soon as I suggested that temporary solution.What I'm wondering now is that if keeping HTML, particularly malicious HTML, out of visitor entered data is so important to do, how come no one on this list has ever mentioned it before? Does everyone just do this as a rule of thumb? Or doesn't anyone care and hope for the best? Or am I the only one that has data input by the general public? (I think not)___Joe____________________________________________________ Joseph D'Andrea JoeDan@West21.com WEST21.com Internet services for the 21st Century http://www.west21.com/ _________________________________________________ ------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Associated Messages, from the most recent to the oldest:

    
  1. Re: CERT Advisory on malicious scripts (Kenneth Grome 2000)
  2. Re: CERT Advisory on malicious scripts (Miguel Castaneda 2000)
  3. Re: CERT Advisory on malicious scripts (Kenneth Grome 2000)
  4. Re: CERT Advisory on malicious scripts (John Butler 2000)
  5. Re: CERT Advisory on malicious scripts (Joseph D'Andrea 2000)
  6. Re: CERT Advisory on malicious scripts (Kenneth Grome 2000)
  7. Re: CERT Advisory on malicious scripts (Joseph D'Andrea 2000)
  8. Re: CERT Advisory on malicious scripts (The Mooseman 2000)
  9. Re: CERT Advisory on malicious scripts (Alex McCombie 2000)
  10. Re: CERT Advisory on malicious scripts (Kenneth Grome 2000)
  11. CERT Advisory on malicious scripts (Joseph D'Andrea 2000)
At 7:14 PM 2/3/00, Kenneth Grome wrote: ... >> >> Yes, but it will also mess with other characters you probably don't want >>changed as they are displayed on the page ... >>Yeah.. I thought of that as soon as I suggested that temporary solution.What I'm wondering now is that if keeping HTML, particularly malicious HTML, out of visitor entered data is so important to do, how come no one on this list has ever mentioned it before? Does everyone just do this as a rule of thumb? Or doesn't anyone care and hope for the best? Or am I the only one that has data input by the general public? (I think not)___Joe____________________________________________________ Joseph D'Andrea JoeDan@West21.com WEST21.com Internet services for the 21st Century http://www.west21.com/ _________________________________________________ ------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Joseph D'Andrea

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Frames and WebCat (1997) serial number (1998) problems with 2 tags shakur (1997) list cookies and list http headers (1997) users.db (1999) Re1000001: Setting up shop (1997) A note for NT4 users (1998) PIXO (1997) WebDNA 6 (2004) international time (1997) Whats going on with my SERIAL NUMBER??? (1998) shipCost not working v2.1b4 (1997) Username for Admin Group (1997) [math] error (2000) FM PRO Compatibility Issue - Single Database w/o Conversions (1997) Bad Install... (2003) show all problem (1997) WebCat2 - [include] tags (1997) Testing (2003) WebCat2: Items xx to xx shown, etc. (1997)