[cgiapp] Persistence

[Ron Savage]

On Wed, 2008-02-06 at 17:16 -0500, Michael Peters wrote:

Hi Michael

> This is why escaping any data that could potentially come from a user is so
> important.

Not just escaping. OP should be warned that server code cannot just rely
on Javascript-base validation. Someone might disable Javascript and
sumbit something nasty. That means the validation should be duplicated
on the server too. And yes, that's a PITA.
-- 
Ron Savage
ron at savage.net.au
http://savage.net.au/index.html