>I think my question could be restated to: What characters are potentially
>lethal in user input. I can do the regex. But don't know what to parse out
>of the strings.
>would removing \ / . do the trick?
Why whould you want to strip things? Check if the input meets a certain
requirement.. like US phone numbers should be something like 123-456-7890
So, anything else is NOT valid.
You could also check the length of the string send.
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]