TalkPHP - View Single Post - How would I use Email and password validation?

Wildhoney · 12-20-2007, 12:27 PM

XSS isn't really an issue if you're getting the stuff sent directly to your email address. XSS is prevalent on such forms as comment forms - you should always strip the HTML tags beforehand. Which information are you worried they may get a hold of? If it's your e-mail address then so as long as it's hard-coded into the PHP file, then you shouldn't have any issues unless the entire website is wide-open to attacks. XSS is often masked using images, as a call to download an image is identical to that of a call to download a website HTML page, and so you see the potential security implications with that.

If you let us know further about what you're trying to stop people from doing, then we'll be able to assist even more

!

12-20-2007, 12:27 PM	#8 (permalink)
Wildhoney La Vida es Sueño Join Date: Sep 2007 Location: Oldham Posts: 2,280 Thanks: 90	XSS isn't really an issue if you're getting the stuff sent directly to your email address. XSS is prevalent on such forms as comment forms - you should always strip the HTML tags beforehand. Which information are you worried they may get a hold of? If it's your e-mail address then so as long as it's hard-coded into the PHP file, then you shouldn't have any issues unless the entire website is wide-open to attacks. XSS is often masked using images, as a call to download an image is identical to that of a call to download a website HTML page, and so you see the potential security implications with that. If you let us know further about what you're trying to stop people from doing, then we'll be able to assist even more ! __________________ The man who comes back through the Door in the Wall will never be quite the same as the man who went out.