On Thu, 6 Nov 2003 11:34:22 -0000, P.H.Lauke wrote: > You could process their input before committing it to file/database > to strip out rogue tags/attributes (for the former, something like > PHP's strip_tags function can come in handy > <http://uk.php.net/manual/en/function.strip-tags.php>) We do that as standard to produce valid XHTML. The problem is not what tags/attributes they use, but how they use it. Cheers, Julian Voelcker Cirencester, United KingdomReceived on Thursday, 6 November 2003 07:30:12 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 19 July 2011 18:14:13 GMT