02-04-2008, 07:30 PM
|
#12 (permalink)
|
|
The Acquainted
Join Date: Nov 2007
Posts: 166
Thanks: 0
|
Quote:
Originally Posted by Tanax
Erh, yes.. any problems?  |
I'd highly recommend not doing that. Lots of people look at that to see what the link is to see if it contains XSS or anything suspicious. If I mouse over a link and get nothing then that raises a red flag.
Hiding the link made me think you were trying to hide an XSS attack. That's why I asked my cryptic question.
To check javascript you can do something like this
Code:
<script type="text/javascript">
<!--
document.write('<a href="mylink">link</a>');
//-->
</script>
<noscript>
<a href="page.php?redir=mylink">link</a>
</noscript>
The first link is written to the screen only if JS is enabled. The second gets written if there is no javascript.
__________________
Eric
|
|
|
|