|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: whitelisting HTML tags
From: Tim (tim-security
sentinelchicken.org)
Date: Wed Nov 02 2005 - 10:17:33 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> This is exactly the sort of thing I'm looking for. Anyone know of any
> libraries (preferably in Java) that already do this?
I personally feel it is a bad idea to allow any HTML, but if it is a
requirement, you might be best off requiring users use XHTML tags. That
way you can create a restrictive XML DTD for them, and there are plenty
of tools out there that can enforce that.
tim
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]