Chris Shiflett has a post today, Allowing HTML and Preventing XSS. The problem is how to allow users to format their contributed content without introducing security vulnerabilities. The answer is usually some sort of markup language or filtering and sanitization of HTML.
BBCODE was designed for this purpose. There is no actual standard, [...]
Professional PHP
PHP Programming, Web Development, PHP Advocacy and PHP Best Practices.
About
My name is Jeff Moore. I'm a PHP programmer living in San Francico and working for a startup.
Categories (Home)
- Agile Methods (14)
- Mac (14)
- Misc (17)
- Open Source (14)
- PHP (98)
- Software Design (29)
- Usability (14)
- Web Design (20)
Recent Comments
- Looking Towards the Cloud 23
Betty Saletta, Driver License, Jamel Sawyer [...] - Benchmarking PHP's Magic Methods 12
Article Marketing Strategy, Magento Development, Vance Lucas [...] - Improved Error Messages in PHP 5 32
Terry Nessel, css, Amsterdam [...] - Keywords and Language Simplicity 11
kim kardashian sex tape price, nokia, per Rechnung bestellen [...] - flickr case study 3
bookmarking demon software, php-trivandrum.org, Harry Fuecks - rsync to remote server via ssh 7
Burton Haynes, James, Mike [...] - Yahoo YUI wins JavaScript Library Wars 10
Lera Bride, Scott, Jeff [...] - OOP is Mature, not Dead 15
Avery Depew, Fernando, deltawing [...] - Ruby versus PHP or There and Back Again 10
Solar Pumps, Amsterdam, Hari K T [...] - ZendCon: Writing Maintainable PHP Code 8
IT Ninja, nicopico, Arif [...]
- Looking Towards the Cloud 23
Site
Search
Feed
Subscribe to this blog…