On 12/08/16 11:01, Peter Lind wrote: > On 12 August 2016 at 11:54, Rowan Collins <rowan.coll...@gmail.com> wrote: > >> On 12/08/2016 10:21, Lester Caine wrote: >> >>> Many of my systems run on secure intra-nets and much of the 'safety >>> concerns' that have been brought up recently as 'essential' simply don't >>> apply. >> >> There's always rogue employees / students / visitors with temporary >> access... But yes, IF you trust your users 100% to be non-malicious, >> non-curious, and uninfected, THEN you can trust your user input. :) >> > You forgot non-clumsy. Typos also happen and can have problematic results. > > You cannot trust user input. End of discussion.
That someone puts in Joens rather than Jones is a fact of life, and will result in records that can't be matched. But a UK formatted date validated in the browser makes checking it's in a valid range easier in the PHP end. It's simply a matter of just what you can test and where, and if needs be the system keeps track of who is making mistakes in data entry and their supervisor deals with them. THAT is a report my CMS systems have had from day one :) But if they have stolen someone else’s access card then all bets are off. But there is no 'delete' function on the data so all changes are recorded. -- Lester Caine - G8HFL ----------------------------- Contact - http://lsces.co.uk/wiki/?page=contact L.S.Caine Electronic Services - http://lsces.co.uk EnquirySolve - http://enquirysolve.com/ Model Engineers Digital Workshop - http://medw.co.uk Rainbow Digital Media - http://rainbowdigitalmedia.co.uk -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
