Re: requiredfields

This WebDNA talk-list message is from

2002


It keeps the original formatting.
numero = 40673
interpreted = N
texte = Grant:Shouldn't security alerts be uppercased and wrapped in double asterisks for added safety to children? >Security alert: be *very* careful when using [interpret] in situations that accept arbitrary text from browsers. Remember that a hacker can create their own custom
with variables and values of their choosing -- so when you wrap [interpret] around that text, you are opening yourself up to hackers being able to execute any arbitrary WebDNA on your server. This is a bad thing, and should be avoided at all costs. >-- >______________________________________________________________________________ >Grant Hulbert | Internet Software Inventor | http://www.hulbertfamily.com/ > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >Web Archive of this list is at: http://search.smithmicro.com/-- --------------------------------- John A. Hill Oak Hill Software Website Development/Consulting john@oakhillsoftware.com------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: requiredfields (John Hill 2002)
  2. Re: requiredfields (Grant Hulbert 2002)
  3. Re: requiredfields (Kenneth Grome 2002)
  4. Re: requiredfields (Rob Marquardt 2002)
  5. Re: requiredfields (Joseph D'Andrea 2002)
  6. Re: requiredfields (Rob Marquardt 2002)
  7. Re: requiredfields (Ron Ceballos 2002)
  8. Re: requiredfields (Rob Marquardt 2002)
  9. Re: requiredfields (Ron Ceballos 2002)
  10. Re: requiredfields (Donovan 2002)
  11. Re: requiredfields (John Peacock 2002)
  12. requiredfields (Ron Ceballos 2002)
  13. requiredfields HELP!! (Celeste Paul 2001)
  14. Re: requiredfields HELP!! (Paolo Coppo 2001)
  15. Re: RequiredFields (Rob Marquardt 2000)
  16. Re: RequiredFields (Kenneth Grome 2000)
  17. RequiredFields (Dennis J. Bonsall, Jr. 2000)
  18. Re: RequiredFields and MacOS X Server? (WebDNA Support 2000)
  19. Re: RequiredFields and MacOS X Server? (Kenneth Grome 2000)
  20. RequiredFields and MacOS X Server? (Parker 2000)
  21. Re: RequiredFields parameter (Johann Weber 1998)
  22. Re: RequiredFields parameter (Brian Drum 1998)
  23. Re: Re requiredFields parameter (PCS Technical Support 1998)
  24. Re requiredFields parameter (Johann Weber 1998)
  25. Re: RequiredFields template (Glenn Davis 1997)
  26. Re: RequiredFields template (Trevor Crist 1997)
  27. Re: RequiredFields template (Glenn Davis 1997)
  28. RequiredFields template (Trevor Crist 1997)
  29. Re: RequiredFields template (Kenneth Grome 1997)
  30. Re: RequiredFields template (Grant Hulbert 1997)
  31. Re: RequiredFields template (Glenn Davis 1997)
  32. Re: RequiredFields template (Kenneth Grome 1997)
  33. Re: RequiredFields template (Grant Hulbert 1997)
  34. Re: RequiredFields template (Grant Hulbert 1997)
  35. Re: RequiredFields template (Kenneth Grome 1997)
  36. Re: RequiredFields notes ... (grichter@panavise.com (Gary Richter) 1997)
  37. RequiredFields notes ... (Kenneth Grome 1997)
Grant:Shouldn't security alerts be uppercased and wrapped in double asterisks for added safety to children? >Security alert: be *very* careful when using [interpret] in situations that accept arbitrary text from browsers. Remember that a hacker can create their own custom with variables and values of their choosing -- so when you wrap [interpret] around that text, you are opening yourself up to hackers being able to execute any arbitrary WebDNA on your server. This is a bad thing, and should be avoided at all costs. >-- >______________________________________________________________________________ >Grant Hulbert | Internet Software Inventor | http://www.hulbertfamily.com/ > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >Web Archive of this list is at: http://search.smithmicro.com/-- --------------------------------- John A. Hill Oak Hill Software Website Development/Consulting john@oakhillsoftware.com------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ John Hill

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Locking up with WebCatalog... (1997) InternetWeek E-Commerce article (1998) customer info (2001) TRAINING videos - Prove IT. (1998) PIXO support (1997) Exclamation point (1997) Multiple prices (1997) W* 3.x & WebCat + WebMerchant (1998) Saving Text Areas with Orders (1997) using showpage and showcart commands (1996) forming a SKU (1999) How to Sort Summ data ? (1997) form data submission gets truncated (1997) Need help with emailer- 2 issues (1997) [ShowNext] feature in 2.0 (1997) showing *all* name/value pairs with [search] (2003) Pref settings? (1998) [WebDNA] WebDNA Store (2017) WebCatalog2 Feature Feedback (1996) Re:Change WebDNA-Talk Mail due to no digest for 1wk (1997)