Chris Shiflett has a post today, Allowing HTML and Preventing XSS. The problem is how to allow users to format their contributed content without introducing security vulnerabilities. The answer is usually some sort of markup language or filtering and sanitization of HTML.
BBCODE was designed for this purpose. There is no actual standard, [...]
Professional PHP
PHP Programming, Web Development, PHP Advocacy and PHP Best Practices.
About
My name is Jeff Moore. I'm a PHP programmer living in San Francico and working for a startup.
Categories (Home)
- Agile Methods (14)
- Mac (14)
- Misc (17)
- Open Source (14)
- PHP (98)
- Software Design (29)
- Usability (14)
- Web Design (20)
Recent Comments
- Programming Language Trends via Google 19
Craigslist pva, jessica, Scott [...] - Looking Towards the Cloud 35
bentonville multiple listing, cosmetic dental, Sam Brodish [...] - PHP versus ASP 8
Marhta Blight, Ravi, Ryan Brooks [...] - How to Transfer Mac OS X Application Data between Computers 59
Website Migration, harry the computer support guy, Dotty Salvage [...] - Working with PHP 5 in Mac OS X 10.5 (Leopard) 157
lehuuphuc, Robert Parthemer, Lingerie Intimate [...] - PHP Games 25
jessica, Tennille Cranor at Chilli Plants, Lucas Ortell [...] - un-PEAR-ing 5
jessica, Eugene Panin, Arnaud [...] - The Legality of Republishing RSS Feeds 23
kevinxiao, Marissa Miscovich, Quick Student Loans [...] - Faster Page Loading 4
jessica, angular cheilitis, Aaron Rosenfeld [...] - PDO versus MDB2 15
jessica, kevinxiao, Gavin [...]
- Programming Language Trends via Google 19
Site
Search
Feed
Subscribe to this blog…