[eluser]BigErnMcCracken[/eluser]
I recently came across an issue where when I would hit my site, I would get the 'Disallowed Key Character' error message. I tracked it down to the _clean_input_keys() function in the Input library. It does a regex on the key which was failing because my cookie name has an exclamation point in it.
Is there a reason why I shouldn't have a ! in my cookie name? It's easy enough for me to change the regex to allow it, I was just wondering if I would be opening up a security hole somewhere.
Thanks for any information.
