this is a very simple html tag strip routine I dont understand what security you had in mind .. so I take it you're not a fan of dojo or GWT? M-- ----- Original Message ----- From: "Ian Barwick" <barwick@xxxxxxxxx> Cc: "Scott Marlowe" <scott.marlowe@xxxxxxxxx>; "pgsql-general" <pgsql-general@xxxxxxxxxxxxxx> Sent: Wednesday, November 14, 2007 7:21 PM Subject: Re: stripping HTML, SQL injections ... > Martin, > > 2000/11/15, Martin Gainty <mgainty@xxxxxxxxxxx>: > > Scott- > > > > In JavaScript > > http://www.java2s.com/Tutorial/JavaScript/0520__Regular-Expressions/StripHTM > > L.htm > > I don't remember what the consensus was back in 2000 (your mail's > timestamp), but in 2007 it's Not A Good Idea to rely on client-side > validation for security-related operations ;). > > > Regards > > Ian Barwick > > > -- > http://sql-info.de/index.html > > ---------------------------(end of broadcast)--------------------------- > TIP 6: explain analyze is your friend > ---------------------------(end of broadcast)--------------------------- TIP 6: explain analyze is your friend
