Re: [URL] around a [sendmail] recipient?

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 27989
interpreted = N
texte = >So then I guess this implies that an email address can never contain an & char?And while we're on this topic, I want to ask more questions to understand more deeply...I have a db that stores user input account data. I give them the chance to 'login'. On the next page I search the db using their name and passwerd (which they just input)-[Search db=some.db&eqAccountNumdatarq=[AccountNum]&eqPasswerddatarq=[URL][Passwerd][/URL]&max=1]so here's a case of where you would say I DO NOT need to [URL]ize the passwerd since it is coming out of the db (rather than going in)?? But what if I haven't taken steps to prevent the user from using an & in his passwerd? If there was a & in there, wouldn't that break the search?And if after logging in, I gave him the chance to do a different search on the db (via form; , etc.) and on the next results page I have a [shownext] with a hypertext link inside which uses- ?command=search&[searchstring]... and passwerd is in the [searchstring] because I passed it along with the other hidden inputs when the user submit his form-based search, then aren't I asking for problems if I have allowed illegal URL chars in passwerd? Assuming I need to allow non-URL chars there, then wouldn't I need to wrap [searchstring] with [URL]?Thanks for your time! :-)-John > > > No, you should only [url] stuff that's going INTO a database -- you don't have to [url] it on the way out ... ------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Associated Messages, from the most recent to the oldest:

    
  1. Re: [URL] around a [sendmail] recipient? - SEARCHING: command vs. context (Kenneth Grome 2000)
  2. Re: [URL] around a [sendmail] recipient? - SEARCHING: command vs. context (John Butler 2000)
  3. Re: [URL] around a [sendmail] recipient? (Kenneth Grome 2000)
  4. Re: [URL] around a [sendmail] recipient? (John Butler 2000)
  5. Re: [URL] around a [sendmail] recipient? (John Butler 2000)
  6. Re: [URL] around a [sendmail] recipient? (Kenneth Grome 2000)
  7. Re: [URL] around a [sendmail] recipient? (Kenneth Grome 2000)
  8. [URL] around a [sendmail] recipient? (John Butler 2000)
>So then I guess this implies that an email address can never contain an & char?And while we're on this topic, I want to ask more questions to understand more deeply...I have a db that stores user input account data. I give them the chance to 'login'. On the next page I search the db using their name and passwerd (which they just input)-[Search db=some.db&eqAccountNumdatarq=[AccountNum]&eqPasswerddatarq=[url][Passwerd][/URL]&max=1]so here's a case of where you would say I DO NOT need to [url]ize the passwerd since it is coming out of the db (rather than going in)?? But what if I haven't taken steps to prevent the user from using an & in his passwerd? If there was a & in there, wouldn't that break the search?And if after logging in, I gave him the chance to do a different search on the db (via form; , etc.) and on the next results page I have a [shownext] with a hypertext link inside which uses- ?command=search&[searchstring]... and passwerd is in the [searchstring] because I passed it along with the other hidden inputs when the user submit his form-based search, then aren't I asking for problems if I have allowed illegal URL chars in passwerd? Assuming I need to allow non-URL chars there, then wouldn't I need to wrap [searchstring] with [url]?Thanks for your time! :-)-John > > > No, you should only [url] stuff that's going INTO a database -- you don't have to [url] it on the way out ... ------------------------------------------------------------- Brought to you by CommuniGate Pro - The Buzz Word Compliant Messaging Server. To end your Mail problems go to .This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to John Butler

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Date search - yes or no (1997) Nested tags count question (1997) Unix webcat perms & multiple versions of same db in cache issue (2000) WebDNA maxing out processor (2008) New commands in Final candidate (1997) searchable list archive (1997) 2.0 Info (1997) syntax question, not in online refernce (1997) [writefile] (1997) Merging databases (1997) [WriteFile] problems (1997) WebDNA vs PHP (2003) Secure server question (1997) html in a database (1998) Search results templates (1996) Getting total number of items ordered (1997) Shownext problems (1999) Re1000001: Setting up shop (1997) PCS Frames (1997) Rendering out a page (1997)