[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

Re: [mv] javascript filter

To: <minivend-users@minivend.com>
Subject: Re: [mv] javascript filter
From: "Eran Binyamin Zeitoun" <eran_zeitoun@karmail.com>
Date: Fri, 23 Jun 2000 00:28:34 +0200
References: <NCBBKKCDKCGEGHHAACBIIEGDHFAA.tech@khouse.org> <877lbho5mc.fsf@snowflake.linuxia.de>
Reply-To: minivend-users@minivend.com
Sender: owner-minivend-users@minivend.com

******    message to minivend-users from "Eran Binyamin Zeitoun" <eran_zeitoun@karmail.com>     ******

Its not nonsense... its truth... and its everywhere....
Using a filter is quite a problem.... since sometimes we use
charcters which supposed to be filterd... such as i use in most of my
password
$ & ^ which should be filtered.....

Minivend does not filter the user input..., but you can
use HTML Decode & Encode to solve the javascript
/ asp tricks whenever u save a user input that will
be later displayed on the screen....

Eran
----- Original Message -----
From: "Stefan Hornburg" <racke@linuxia.de>
To: <minivend-users@minivend.com>
Sent: Thursday, June 22, 2000 9:52 PM
Subject: Re: [mv] javascript filter

******    message to minivend-users from Stefan Hornburg <racke@linuxia.de>
******

"Russ Mann" <tech@khouse.org> writes:

> Hello,
>
>
>
> The recent security reports indicate that javascript being allowed in form
> fields on ecomm sites is bad news.

Please give us curious people the URLs to these reports. Many
nonsense is floating around, so one may check it for himself.

> Does minivend filter out Javascript in
> form fields? how can i make that happen?

As MiniVend developer you doesn't need to use Javascript.
MiniVend has to check the return values for the form fields
to be sane anyway.

Ciao
        Racke

--
LinuXia Systems && Cobolt NetServices, eCommerce and more
Shop- und Datenbanklösungen mit MiniVend, Firewalls auf Debian-Basis
http://www.linuxia.de - http://www.cobolt.net
-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to
Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

References:
- [mv] javascript filter
  - From: "Russ Mann" <tech@khouse.org>
- Re: [mv] javascript filter
  - From: Stefan Hornburg <racke@linuxia.de>

Prev by Date: Re: [mv] [item-price]
Next by Date: [mv] Virtual Servers Solution...
Prev by thread: Re: [mv] javascript filter
Next by thread: Re: [mv] javascript filter
Index(es):
- Date
- Thread