It would be great to feellike there was something we could do about cross-site scripting on the browser end, however it's fundamentally a server configuration problem, and I think Ben's concerns are valid - a server-side library is a more robust solution which would cover all browsers, not just ours.
-Mitch
Ben Bucksch wrote:
IIRC, the argument on the www-html list was to make server-side libs.
