> > "Purifier will not only remove all malicious code (better known as XSS) > with a thoroughly audited, secure yet permissive whitelist, it will also > make sure your documents are *standards compliant."* > Set it up how you want it. -- /James On Wed, May 14, 2008 at 4:38 PM, Robert Cummings <robert@xxxxxxxxxxxxx> wrote: > > On Wed, 2008-05-14 at 11:18 -0400, Eric Butera wrote: > > On Tue, May 13, 2008 at 4:07 AM, James Dempster <letssurf@xxxxxxxxx> > wrote: > > > http://htmlpurifier.org/ > > > > > > -- > > > /James > > > > > > > This is the only real solution. > > That depends... if I'm the webmaster and I want to input arbitrary HTML, > then htmlpurifier is unnecessary. > > Cheers, > Rob. > -- > http://www.interjinn.com > Application and Templating Framework for PHP > >
