Re: form validation [OT]
Re: form validation [OT]
- Subject: Re: form validation [OT]
- From: has <email@hidden>
- Date: Thu, 14 Mar 2002 11:37:03 +0000
John W Baxter wrote:
>
And client side validation *most assuredly* should not be done the way Bell
>
Atlantic did it.
>
>
[...]Server sent back a JavaScript page which would validate
>
your access to that number's information. Included was *all the
>
information*. [my emphasis]
OMG! And they pay these designers the big bucks for... WHAT, exactly??
LOL :p
>
So anyone who knew the URL could *still* access other people's data.
BTW, you forget to mention the next bit:
In order to stop this page being used for such _nefarious_ purposes, "they"
urgently lobby federal government to enact a new "anti-terrorism" bill
whereby anyone found even _mentioning_ the existence of this page will be
rounded up by a squad of fearsomely armed G-men and summarily executed for
high treason.
Meanwhile the original page remains in situ for months to come, happily
providing 15 year-old hackers the world around with hours of amusement and
private personal details, until it's _finally_ deleted when a new intern
accidentally overwrites the relevant cgi directory with their secret stash
of pirated MP3 files and totals the thing for good.
My advice: stick to semaphore for all your communication requirements. And
don't mention the "You-Know-What" ever again either, for you never know who
might be listening in...
has ;)
http://www.barple.connectfree.co.uk/ -- The Little Page of Beta AppleScripts
_______________________________________________
applescript-users mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/applescript-users
Do not post admin requests to the list. They will be ignored.