Reply to Re: [PHP] [Q] mail() & security

Your name:

Reply:


Posted by Josip Dzolonga on 04/05/05 02:03

Eric Gorr wrote:

> Shouldn't strip_tags be enough? What dangerous/annoying things might
> happen if I replaced htmlentities with strip_tags in the above
> function and then passed the body text to the mail() function?

Nothing, but with htmlentities() you can be sure if the user has tried
to inject something malicious :-).

--
Josip Dzolonga
http://josip.dotgeek.org

jdzolonga[at]gmail.com

[Back to original message]


Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация