Re: [Clarification] input validation and persistency module for (mod_perl) web apps?
- From: security.department@xxxxxxxx (John Doe)
- Date: Fri, 28 Oct 2005 09:06:33 +0200
John Doe am Donnerstag, 27. Oktober 2005 17.12:
[...]
> Some of the tasks always to be solved in an interactive webapp:
>
> a) validate/sanitize user input
> b) differentiate between persistent parameter values and "volatile" ones
> (the latter meaning a value only used along one request/answer)
>
> My idea is to have these points solved at one place in an (mod_perl) app,
> and then using something analogue to Apache::Request without the necessity
> of caring about a) and b) any more.
> No parameter value should be accessible without being defined and
> validated.
[...]
For clarification:
I already have implemented this in various was, but I try to find a better,
more structured and more reliable strategy, either by an existing or an own
module.
thanks,
joe
.
- References:
- Prev by Date: Die without textoutput?
- Next by Date: Re: Die without textoutput?
- Previous by thread: input validation and persistency module for (mod_perl) web apps?
- Next by thread: Re: input validation and persistency module for (mod_perl) web apps?
- Index(es):
