Thanks Paul for your constructive advice there. Will check it out, I am always keen to increase my knowledge in PHP and more robust coding.
Thanks again. On Fri, Sep 10, 2010 at 10:08 AM, Paul Bennett <[email protected]> wrote: > Possibly something like this: > > http://en.wikipedia.org/wiki/Code_injection#HTML-script_injection_.28cross-site_scripting.29 > > I think what Berend is referring to is that fact that making scripts more > 'flexible' like you're suggesting actually opens you up to allowing users to > arbitrarily inject data into your application using common injection > techniques. > > Years ago I found OWASP's information very helpful > http://www.owasp.org/index.php/Main_Page > > Unfortunately application security (to my knowledge) isn't widely taught in > any tertiary comp sci or dev course I'm aware of... It's something we need to > learn as simple best practice. > > Paul > > -- > NZ PHP Users Group: http://groups.google.com/group/nzphpug > To post, send email to [email protected] > To unsubscribe, send email to > [email protected] -- Kind Regards, Brendan Brink SMS Marketing Consultant | Manager Sell2Cell Ltd. 021 0246 1646 | [email protected] | www.sell2cell.co.nz We provide customized, cost-effective SMS & Web Solutions Need a website? Need to integrate text-messaging into your business or website? Contact us today for a free no-obligation quote! VISIT OUR ASSOCIATED WEBSITES: textvouchers.com | textguru.co.nz WARNING This email contains information which is CONFIDENTIAL and may be subject to LEGAL PRIVILEGE. If you are not the intended recipient, you must not peruse, use, disseminate, distribute or copy the email or attachments. If you have received this in error, please notify us immediately by return email, facsimile, or telephone (call us collect). -- NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [email protected]
