Posted by Jerry Stuckle on 03/11/06 20:58

Chung Leong wrote:
> Jerry Stuckle wrote:
>
>>And I wasn't interpreting it in the "worst of light". I was
>>interpreting it in the light of simple security.
>>
>>What he's proposing is false security - which is worse than no security
>>at all. At least with the latter you know you have potential
>>vulnerabilities.
>
>
> I really don't know what to say. The OP proposed a method for stopping
> one type of cross-site scripting attack and here you are insisting that
> it's crap because it doesn't stop bots.
>

And it doesn't stop what he's trying to stop!

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attglobal.net
==================

• Next in forum: Re: str_ireplace() for php4?
• Prev in forum: Date picture taken?
• Thread view: Re: Form Security

[Reply to this message]