develooper Front page | perl.beginners | Postings from March 2002

re: unallowed chars

Thread Next
From:
Teresa Raymond
Date:
March 28, 2002 14:46
Subject:
re: unallowed chars
Message ID:
p05100303b8c94d7d8a0f@[64.108.206.95]
Ok, and where are the recommended characters to disallow?  I have 
tested and I know which characters are going through but I would like 
to make sure I've included most of the recommended list.

>From: Teresa Raymond <traymond@mariposanet.com>
>
>>  Where in the Camel or other resource is the list of characters that
>>  we don't want people to type in.  I'm still collecting all the
>>  resources I lost from my logic board dying.  Thanks in advance.
>
>When testing data you should ALWAYS test whether the string
>contains only the allowed characters or is in the allowed format,
>never whether it contains some forbidden characters or contains
>something that you do not like.
>
>You may forget something that happens to be special in your case
>and you would open a security hole while thinking you are safe.
>
>While in the life I prefer "what is not forbidden, is allowed"
>in programming it should be the oposite.
>
>Jenda
>
>=========== Jenda@Krynicky.cz == http://Jenda.Krynicky.cz ==========
>There is a reason for living. There must be. I've seen it somewhere.
>It's just that in the mess on my table ... and in my brain
>I can't find it.
>					--- me
>
>--
>To unsubscribe, e-mail: beginners-unsubscribe@perl.org
>For additional commands, e-mail: beginners-help@perl.org


--
-------------------------------
-  Teresa Raymond             -
-  Mariposa Net               -
-  http://www.mariposanet.com -
-------------------------------
-- 

Thread Next


nntp.perl.org: Perl Programming lists via nntp and http.
Comments to Ask Bjørn Hansen at ask@perl.org | Group listing | About