Re: Verify entry into a text field

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 62353
interpreted = N
texte = The email javascript is just used to kick them in the pants for a proper format email address. If successful, great, if not I tried ..... so with the [raw] .... would I do this?? [showif [url][pass][/url]=[raw][pass][/raw]] Error!
Enter a Password

Try Again
[math show=f]OK=0[/math] [/showif] I should also add some to those pages leading to the forms and the forms themselves forms although that probably won't be bulletproof. --- John Peacock wrote: > Lester wrote: > > This morning someone was able to submit that form > with > > all fields blank, which caused > > [user] > > [pass] > > [email] > > [secretword] > > It may have been a spider, not a user, FWIW. > Garbage like that is > normally caused by pages being submitted without > form variables (which > is how some spiders operate). You should also test > fields with code > like this: > > [user]=[raw][user][/raw] > > which will only be true if they didn't submit a form > variable by that name. > > You should also [URL] all fields when testing the > contents with [showif] > (since they could put characters in like '!' which > are signficant to > WebDNA comparisons), not just for your password > field. > > Lastly, checking [email] by using a Javascript is > easily defeated by > turning off Javascript in the browser, so you should > be aware of that. > Depending on your site, you may want to mandate > Javascript in order to > fully participate on the site, in which case you > should really validate > all field entries before even allowing the page to > be submitted. > > HTH > > John > > -- > John Peacock > Director of Information Research and Technology > Rowman & Littlefield Publishing Group > 4501 Forbes Boulevard > Suite H > Lanham, MD 20706 > 301-459-3366 x.5010 > fax 301-429-5748 > > ------------------------------------------------------------- > This message is sent to you because you are > subscribed to > the mailing list > . > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: > http://webdna.smithmicro.com/ >  __________________________________ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Verify entry into a text field ( Donovan Brooke 2005)
  2. Re: Verify entry into a text field ( Lester 2005)
  3. Re: Verify entry into a text field ( Donovan Brooke 2005)
  4. Re: Verify entry into a text field ( John Peacock 2005)
  5. Re: Verify entry into a text field ( Lester 2005)
  6. Re: Verify entry into a text field ( John Peacock 2005)
  7. Verify entry into a text field ( Lester 2005)
The email javascript is just used to kick them in the pants for a proper format email address. If successful, great, if not I tried ..... so with the [raw] .... would I do this?? [showif [url][pass][/url]=[raw][pass][/raw]] Error!
Enter a Password

Try Again
[math show=f]OK=0[/math] [/showif] I should also add some to those pages leading to the forms and the forms themselves forms although that probably won't be bulletproof. --- John Peacock wrote: > Lester wrote: > > This morning someone was able to submit that form > with > > all fields blank, which caused > > [user] > > [pass] > > [email] > > [secretword] > > It may have been a spider, not a user, FWIW. > Garbage like that is > normally caused by pages being submitted without > form variables (which > is how some spiders operate). You should also test > fields with code > like this: > > [user]=[raw][user][/raw] > > which will only be true if they didn't submit a form > variable by that name. > > You should also [url] all fields when testing the > contents with [showif] > (since they could put characters in like '!' which > are signficant to > WebDNA comparisons), not just for your password > field. > > Lastly, checking [email] by using a Javascript is > easily defeated by > turning off Javascript in the browser, so you should > be aware of that. > Depending on your site, you may want to mandate > Javascript in order to > fully participate on the site, in which case you > should really validate > all field entries before even allowing the page to > be submitted. > > HTH > > John > > -- > John Peacock > Director of Information Research and Technology > Rowman & Littlefield Publishing Group > 4501 Forbes Boulevard > Suite H > Lanham, MD 20706 > 301-459-3366 x.5010 > fax 301-429-5748 > > ------------------------------------------------------------- > This message is sent to you because you are > subscribed to > the mailing list > . > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: > http://webdna.smithmicro.com/ >  __________________________________ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Lester

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

OT Weird Messenger Service message (2002) Reserved word? (2005) math on date? (1997) Shopping Carts (2000) SendTo more emails (1998) Where is f2? (1997) Multiple fields on 1 input (1997) RE: IIS 4 (1998) encrypted query string trouble on OSX (2001) WebCat2: Items xx to xx shown, etc. (1997) WebCatalog Hosting (1996) [WebDNA] Quick Grep question (2009) PIXO (1997) Formulas.db not working (2006) Multi-processor Mac info ... (1997) Execute Applescript (1997) [WebDNA] Fails from http:// but works from file:/// (2009) Pipes instead of tabs (1998) [WebDNA] WebDNA 8.6 announced - New features (2018) Searching for (field1 OR field2) AND field3 (2000)