Chris Shiflett has a post today, Allowing HTML and Preventing XSS. The problem is how to allow users to format their contributed content without introducing security vulnerabilities. The answer is usually some sort of markup language or filtering and sanitization of HTML.
BBCODE was designed for this purpose. There is no actual standard, [...]
The Problem with Markup Languages
March 14th, 2007Harry Fuecks, PHP Patterns and Dynamically Typed
November 4th, 2005I was reading this post over at Dynamically Typed and I was thinking to myself, this looks like something that Harry Fuecks would write. A glance at the top of the page confirmed my suspicions. Harry has been writing a few new blog posts over there. That and the resurrection of the [...]
A WordPress bug fix
September 27th, 2005I upgraded WordPress to 1.5.2 this weekend. This version fixed some bugs that made it necessary to edit WordPress itself in order to get my BBCode plugin to work. That editing is one reason I put off upgrading for so long. I am grateful that my plugin can now exist on its [...]
Changes to my blog (and feeds)
September 26th, 2005I’ve made some changes to my blog.
When i started blogging, I didn’t know quite what to expect. Over time, two main topics emerged: PHP and Politics. I’ve decided that the two topics should really be two separate blogs. This blog will continue to focus on PHP, software design, web design, agile methods [...]
WordPress Search Engine Spam
March 31st, 2005In light of the reports of WordPress search engine spamming, I have removed my link to the WordPress web site. The default WordPress theme has a “is proudly powered by WordPress” tag line with a link. I thought proudly was overkill in the first place and certainly not true now, so I have [...]
Upgraded to WordPress 1.5
February 19th, 2005Well, I upgraded to WordPress 1.5 today. Everything seems to have gone well. The upgrade from 1.2 to 1.5 was much less error prone than the upgrade from 1.02 to 1.2. The upgrade process is very well done. My BBCode plugin seems to work without modification (so far).
The new features in [...]
WordPress BBCode Plugin
May 26th, 2004I made a download page for my WordPress BBCode Plugin. Please post any bug reports or comments on the plugin as comments or trackbacks to this post.
Upgraded to WordPress 1.2
May 26th, 2004Well, I upgraded to WordPress 1.2 today. Things did not go without a hitch. The cookie format changed, so I had to remove my cookies before I could log back in to the admin section. My feeds were down for part of the day until I realized I had to update my [...]