--- Shaun <[EMAIL PROTECTED]> wrote: > Is there a way to filter metacharacters from all $_POST values sent from > pages on my site in an effort to eliminate the majority of XSS attacks?
Yes, but it's probably more important that you understand what XSS is and what methods people use to protect against such attacks. You can download a free article on the topic here: http://www.phparch.com/sample.php?mid=16 Hope that helps. Chris ===== My Blog http://shiflett.org/ HTTP Developer's Handbook http://httphandbook.org/ RAMP Training Courses http://www.nyphp.org/ramp -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
