durusmail: quixote-users: Adding magic to PTL, Or: how to stop worrying about XSS holes
Adding magic to PTL, Or: how to stop worrying about XSS holes
2002-10-01
Neil Schemenauer
Adding magic to PTL, Or: how to stop worrying about XSS holes
2002-10-01
Nicola Larosa
Adding magic to PTL, Or: how to stop worrying about XSS holes
2002-10-01
Neil Schemenauer
Adding magic to PTL, Or: how to stop worrying about XSS holes
2002-10-02
Nicola Larosa
2002-10-01
Greg Ward
2002-10-01
Neil Schemenauer
2002-10-01
Jonathan Corbet
2002-10-01
Titus Brown
2002-10-01
Neil Schemenauer
2002-10-01
Titus Brown
Adding magic to PTL, Or: how to stop worrying about XSS holes
Nicola Larosa
2002-10-01
> Greetings gentle Quixote users,
>
> I have come up with a new feature I would like to add to PTL and would
> appreciate feedback from the Quixote user community.
 > ...
> Personally, I think some speed hit would be worth the convenience and
> security benefits.
>
> Comments?

All of this thoroughly makes sense, so much that I can't find anything to
criticize. It's obvious you spent some time thinking about this.

I had been wondering about the best approach to this problem, and agree the
"under cover, but reversable" one is the best compromise. Security and
convenience are well worth a small (and shrinkable) performance penalty.

A definite "Go ahead!" from me, and thanks!


--
"The competent programmer is fully aware of the strictly limited size of
his own skull; therefore he approaches the programming task in full humi-
lity, and among other things he avoids clever tricks like the plague."
   E. J. Dijkstra, 1972 Turing award lecture

Nicola Larosa - nico@tekNico.net
reply