| 7:22 pm on Feb 20, 2001 (gmt 0)|
What is the default extension when a back up is created? I've decided this might be good research...:) and would like to see if some people indeed forgot to delete the back up.
Care to share? I'm still learning perl, or else I might actually know this one.
Or you could sticky mail me, if you don't want to post..after all, it wouldn't be good to start the revolution from one casual post, yes?
| 12:01 am on Feb 21, 2001 (gmt 0)|
It is fairly normal practice to strip out characters form input received from a form or elsewhere, the thinking being that potentially harmful characters are listed and removed. But it is far more secure to do the reverse, i.e. accept only characters expected from such input and discard the rest.
| 12:13 am on Feb 21, 2001 (gmt 0)|
For feedback form/order form type scripts, I had one client who specifically excluded replies from "free email" accounts, so you had to enter a valid ISP/paid webhost email address into the form. The thinking being, most people would not want to risk their internet access or webhosting by entering screwy things into the form or placing prank orders....
Not really something that would fall under stander precautions or practices, but a good option for some applications.
| 12:09 pm on Feb 21, 2001 (gmt 0)|
Probably worthwhile reading:
| 12:33 pm on Feb 21, 2001 (gmt 0)|
Hi Vittal, welcome to WmW
Nice link - plenty to chew on :)