On the edge of release, but I need some input/suggestions |
[eluser]awpti[/eluser]
I'm on the edge of going "public" with http://ignitedjobs.com/ My problem lies within my "Post a Job" form. I can see significant mis-usage of the site due to the 'open' nature of it. I have global XSS filtering turned on. My form validation for each of the fields is 'required|xss_clean' except for the email field which is 'required|valid_email'. Should I strip HTML? What things do you strip off in your input forms? I'm assuming xss_clean is going to protect me from most, if not all attempts to inject javascript/other questionable html. Examples of what you do/have done would be highly appreciated. I can't wait to go live with this! (Last thing left after the above is taking the time to re-color the site to be more "on fire". )
[eluser]hvalente13[/eluser]
Hi awpti, If I can make a suggestion, in your case i'd place a captcha script on that form. I think that there's one plugin for CI! Good luck for your project! |
Welcome Guest, Not a member yet? Register Sign In |