This is crap! Someone who deliberately inserts malicious code into data does not deserve to see his data saved in the correct way.
Sanitization must happen before data gets saved into the DB. Maybe someday you will forget to escape a field, and BOOOM it blows all over you. -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
