Re: [wdvltalk] perl and linux,apache web server experts

[Galatek Webmaster]

One way you could do it is by using the perls string replace function to 
find any tag openings and replace them with something innocent like an 
asterisk (*) - this is a good way to stop HTML from being used to crash 
the guest book.

syntax could be something like this
--when the for is being parsed prior to storage
--$comment # or whatever the variable is that is assigned to the comment
$comment =~ s/</*/g # tells perl to replace all instances of "<" with 
"*" throughought the string

Probably not the most efficient method, but I hope it helps
Stephen thomas wrote:
hi,
everyone, i run a guest book with perl script but my guest book get
disturbed /hacked when a client enters <i frame width on the comments
section. The person who enters is not closing the arrow braces, as a result
the rest of the previous entries are vanished. can anyone provide a solution
for this. what can be done. what can be done _vti_conf files in the server.
stephen
____ • The WDVL Discussion List from WDVL.COM • ____
To Join wdvltalk, Send An Email To: mailto:[EMAIL PROTECTED] or
use the web interface http://e-newsletters.internet.com/discussionlists.html/
      Send Your Posts To: [EMAIL PROTECTED]
To change subscription settings or add a password:
http://intm-dl.sparklist.com/read/?forum=wdvltalk
________________  http://www.wdvl.com  _______________________
You are currently subscribed to wdvltalk as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
To unsubscribe via postal mail, please contact us at:
Jupitermedia Corp.
Attn: Discussion List Management
475 Park Avenue South
New York, NY 10016
Please include the email address which you have been contacted with.

 


____ • The WDVL Discussion List from WDVL.COM • ____
To Join wdvltalk, Send An Email To: mailto:[EMAIL PROTECTED] or
use the web interface http://e-newsletters.internet.com/discussionlists.html/
      Send Your Posts To: [EMAIL PROTECTED]
To change subscription settings or add a password:
http://intm-dl.sparklist.com/read/?forum=wdvltalk
________________  http://www.wdvl.com  _______________________
You are currently subscribed to wdvltalk as: unknown lmsubst tag argument: ''
To unsubscribe send a blank email to [EMAIL PROTECTED]
To unsubscribe via postal mail, please contact us at:
Jupitermedia Corp.
Attn: Discussion List Management
475 Park Avenue South
New York, NY 10016
Please include the email address which you have been contacted with.