Re: [htmltmpl] option to turn ESCAPE=HTML on by default
Brought to you by:
samtregar
Menu
▾
▴
Re: [htmltmpl] option to turn ESCAPE=HTML on by default
|
From: Sam T. <sa...@tr...> - 2005-10-14 17:05:39
|
On Fri, 14 Oct 2005, Mark Stosberg wrote: > I'm curious about what other people think about an option to > turn ESCAPE=HTML on default, to protect against cross script scripting > practices by default. Sure, sounds reasonable to me. -sam |
