Re: Little note to php coders
| От | Nigel J. Andrews |
|---|---|
| Тема | Re: Little note to php coders |
| Дата | |
| Msg-id | Pine.LNX.4.21.0210081106380.3248-100000@ponder.fairway2k.co.uk обсуждение исходный текст |
| Ответ на | Little note to php coders (Sir Mordred The Traitor <mordred@s-mail.com>) |
| Ответы |
Re: Little note to php coders
|
| Список | pgsql-hackers |
On Tue, 8 Oct 2002, Sir Mordred The Traitor wrote: > Check out this link, if you need something to laugh at: > http://www.postgresql.org/idocs/index.php?1' > > Keeping in mind, that there are bunch of overflows in PostgreSQL(really?), > it is > very dangerous i guess. Right? I'm not sure what list this really fits onto so I've left as hackers. The old argument about data validation and whose job it is. However, is there a reason why all CGI parameters aren't scanned and rejected if they contain any punctuation. I was going to say if they contain anything non alphanumeric but then I'm not sure about internationalisation and that test. -- Nigel J. Andrews
В списке pgsql-hackers по дате отправления: