I want to allow all URI chars... am I really insane?

I want to allow all URI chars... am I really insane?

El Forum
Guest

#11

03-02-2009, 02:23 PM

[eluser]TheFuzzy0ne[/eluser]
[quote author="dtrenz" date="1236046131"]If you are escaping all queries and writing smart code, can you probably get away with turning this off? Yes.[/quote]

Uhm, actually, no. For the many reasons mentioned above. The problem isn't just with SQL injection attacks, it's also to do with how servers handle URI characters.

Messages In This Thread

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:25 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:29 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:37 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:38 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:44 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 01:56 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:01 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:08 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:12 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:21 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:23 PM

I want to allow all URI chars... am I really insane? - by El Forum - 03-02-2009, 02:28 PM