|
| Home Community Mys-Script Creative Off-Topic |
|
|||||||
 |
|
|
Thread Tools | Display Modes |
|
|
|
#1
02-06-2011, 12:40 PM
|
|||
|
|||
Hello Arianna!
Thanks for the reply. Your approach is "bad" for a few reasons... 1) The site already manually protects variables, so the variables that are used, would be escaped twice. 2) You left out $_COOKIE 3) More information would be escaped than would be needed, so it is much slower, as are arrays in general. 4) What if, say for user profile input, you wanted to permit certain HTML tags or something (not BBCode)? Since the input is stripped already, there isn't much you can do. 5) Encourages bad practices; user who learned PHP from Mysidia, may leave the part out of the code, following their habit of simply putting it directly in queries. Make sense? NBS Last edited by nobackseat; 04-27-2011 at 02:43 PM. 
|
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Opinions Please | Tequila | Webmasters Area | 10 | 12-13-2012 05:00 PM |
| Opinions on Progress | RoconzaArt | Art Gallery | 9 | 01-20-2011 11:38 PM |
| Rename adoptables (Security issue fixed!) | kisazeky | Addons/Mods Graveyard | 23 | 10-15-2009 02:14 AM |
| What should I code next? Opinions Please! | BMR777 | Other Chat | 29 | 07-14-2008 05:15 AM |
What's New? |
What's Hot? |
What's Popular? |
Hybrid Mode
