Quick question. Is data read in from a MySQL table considered tainted? Also do I need to untaint a variable that is included in the body of an email?
The email structure is addresses from the mySQL table (untainted when the data is stored) and data which could, if someone really wanted to, be tainted in the body of the email. I was hoping to get away with a size limit on the body data since the variable to be included in the mail text could legitimately contain code.
Dave
-- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
