Flash can be decompiled or you can write your own client. Or use a
MITM proxy to modify the data.
-dhs
Dean H. Saxe, CISSP, CEH
[EMAIL PROTECTED]
"[T]he people can always be brought to the bidding of the leaders.
This is easy. All you have to do is to tell them they are being
attacked, and denounce the pacifists for lack of patriotism and
exposing the country to danger. It works the same in every country."
--Hermann Goering, Hitler's Reich-Marshall at the Nuremberg Trials
On Aug 7, 2006, at 12:56 PM, Teddy Payne wrote:
Steven beat me to that one. I was just typing that.
Also, it depends on how you implement your form as well. If you
use HTML forms and non-flash form with regex validation, then you
have javascript that can be turned off. Now if you implement a
flash form, I believe the validation stays internal and not
rendered as javascript. I believe the flash form SWF valdiation
cannot be turned off from the browser's VM.
Correct me if I am wrong Dean.
Teddy
On 8/7/06, Steven Ross <[EMAIL PROTECTED]> wrote:
actually he would need this:
rereplace(string, "[^a-fA-F0-9]", "", all);
On 8/7/06, Dean H. Saxe < [EMAIL PROTECTED]>
wrote:rereplace(string, "[^A-F0-9]", "", all);
But if you're trying to do data validation, why wouldn't you throw
out any data that doesn't match the regex [A-F0-9]{min,max}?
-dhs
Dean H. Saxe, CISSP, CEH
[EMAIL PROTECTED]
"If liberty means anything at all, it means the right to tell people
what they do not want to hear."
-- George Orwell, 1945
On Aug 7, 2006, at 12:29 PM, Mischa Uppelschoten ext 10 wrote:
> I can figure out how to remove a number of disallowed characters
> from a string, but what if I want to include only a-f and 0-9 and
> discard everything else?
>
> so if a user supplies: E97152C6CF1DD198DE95C7F2C2EF5EA0, do nothing
> if a user supplies E97152C6CF1DD198DE9;hackcode;
>
> it is supposed to return: E97152C6CF1DD198DE9accde
>
> Is that possible with a single regex? Or will I have to cycle
> through the string, and replace every character that doesn't match
> [a-f]|[0-9] with nothing?
>
> Thanks!
> Mischa,
>
>
>
> -------------------------------------------------------------
> To unsubscribe from this list, manage your profile @
> http://www.acfug.org?fa
> For more info, see http://www.acfug.org/mailinglists
> Archive @ http://www.mail-archive.com/discussion%40acfug.org/
> List hosted by http://www.fusionlink.com
> -------------------------------------------------------------
>
>
>
>
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by http://www.fusionlink.com
-------------------------------------------------------------
--
Steven Ross
web application & interface developer
http://www.zerium.com
[phone] 404-488-4364
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by FusionLink
-------------------------------------------------------------
--
<cf_payne />
http://cfpayne.wordpress.com/
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by FusionLink
-------------------------------------------------------------
-------------------------------------------------------------
To unsubscribe from this list, manage your profile @
http://www.acfug.org?fa=login.edituserform
For more info, see http://www.acfug.org/mailinglists
Archive @ http://www.mail-archive.com/discussion%40acfug.org/
List hosted by http://www.fusionlink.com
-------------------------------------------------------------
