Martin E. Koss wrote:
This issue has probably been discussed more than I've been able to find
in the archive, so I'm sorry if I'm going over old ground.
I'm trying to make sure my email form cannot be used for spam or
injecting additional code and addresses in any way.
So far I'm able to remove bcc, cc, to, etc but unable to remove \n & \r.
If I could do that I'd consider it fairly secure. As you'll see below,
I've been trying various ways of doing it.
strtr() works good for me.
http://de2.php.net/strtr
Barry
--
Smileys rule (cX.x)C --o(^_^o)
Dance for me! ^(^_^)o (o^_^)o o(^_^)^ o(^_^o)
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
