On 24 Jan 2005 Richard Lynch wrote:
> Assuming you are authenticating them correctly so that a Bad Guy can't
> change the HTML out from under them, it seems reasonable to me -- Not much
> point to cross-site vandalism on one's own site, eh?
Exactly, that was my thought as well ...
--
Tom
--
PH
> Do these methods seem reasonably secure? Am I missing something? The
> risk is minimized by the fact that the HTML the user enters is
> displayed to their own customers, whom they presumably don't want to
> attack (and if they did they could just do it on their own web site).
> But I still want
[EMAIL PROTECTED] wrote:
I am a consultant developing a PHP-based site (fully operational now,
we're adding some new features).
One thing I need to do is allow resellers of my client's services to
edit HTML which will then be used on the web pages their customers see.
In other words they get to
I am a consultant developing a PHP-based site (fully operational now,
we're adding some new features).
One thing I need to do is allow resellers of my client's services to
edit HTML which will then be used on the web pages their customers see.
In other words they get to customize the appearance
4 matches
Mail list logo
