Re: RAW=T..Strange behaviour

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 28755
interpreted = N
texte = Consider it added to the wish list... Thanks! >Is there a reason that I'm not thinking of where adding &raw=t to a url >would be necessary? The reason I ask is that by adding it to a url, it >causes the page to break at the first [include] tag (for instance, >http://store.smithmicro.com/buy/results.tpl?cart=9525619682420456&raw=T). >It's not really a security issue, just that a command like that can be used >to make a site look really bad. So if there is no good reason to allow such >a command, can it be put on the wish list to make it work only as a context? > >MikeJay Van Vark *********************************** Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) 16855 West Bernardo Drive | Software & Site Development Suite 380 | http://www.smithmicro.com/isd San Diego, CA 92127 | ------------------------- 858.675.1106 | Formerly, Pacific Coast Software 858.675.0372 (fax) ***********************************NASDQ: SMSI ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Associated Messages, from the most recent to the oldest:

    
  1. Re: RAW=T..Strange behaviour (Jay Van Vark 2000)
  2. Re: RAW=T..Strange behaviour (JHowarth@smithmicro.com 2000)
  3. Re: RAW=T..Strange behaviour (Kenneth Grome 2000)
  4. RAW=T..Strange behaviour (Mike Davis 2000)
Consider it added to the wish list... Thanks! >Is there a reason that I'm not thinking of where adding &raw=t to a url >would be necessary? The reason I ask is that by adding it to a url, it >causes the page to break at the first [include] tag (for instance, >http://store.smithmicro.com/buy/results.tpl?cart=9525619682420456&raw=T). >It's not really a security issue, just that a command like that can be used >to make a site look really bad. So if there is no good reason to allow such >a command, can it be put on the wish list to make it work only as a context? > >MikeJay Van Vark *********************************** Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) 16855 West Bernardo Drive | Software & Site Development Suite 380 | http://www.smithmicro.com/isd San Diego, CA 92127 | ------------------------- 858.675.1106 | Formerly, Pacific Coast Software 858.675.0372 (fax) ***********************************NASDQ: SMSI ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Jay Van Vark

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Search all Fields in a db (1997) DataBaseHelper Flawed (1997) Moving Webcatalog folder? (2001) more [sendmail] woes.. (2000) [ot] g5 xserve drives (2004) Date Calulation (1997) Re2: frames & carts (1997) 2.0.1 new commands and contexts (1997) listfiles-looking for slick solution (1997) Frames and WebCat (1997) Bad cookie (1998) WCS Newbie question (1997) WebCat2 - [SendNews] (1997) determining plug-ins? (1998) Newbie Tax Question (1997) more trouble with [showif] in [search] = busted [shownext] (2000) Embedded [Search] Context Snippets (Very Useful) (1998) HTTP header line is too long? (1997) Shipping by order total (2003) WebCat2b13MacPlugIn - [showif][search][/showif] (1997)