if(strstr($ua, 'msnbot') || stristr($ua, 'Googlebot') || stristr($ua, 'Yahoo! Slurp')){

I am not very familiar with PHP but what i understand is strstr is a validating method
tell me is this method a primitive one or one has to write it? Or is there any web service
offering this method?

And since you talking about hacking is CROSS SITE SCRIPTING by default is blocked by a PHP server
or do we have to write a script for checking that too.

Any ways i have not tested your scripts but its nice to see people talking about this things.

Originally Posted by pulseraiser

And since you talking about hacking is CROSS SITE SCRIPTING by default is blocked by a PHP server or do we have to write a script for checking that too.

that's really naive. PHP have done SOME fixes to do with XSS, for instance, error_reporting now escapes <script> </script> and the browser does not evaluate it (previously it had been possible to trigger a PHP error and have it repost the data, including any XSS vector).

as a rule of thumb, never trust any data from $_REQUEST insofar as printing on screen is concerned.

well thats nice i loved it

heh, is this forum still alive

awesome buddy thanks for sharing

thanks for the informations

hmm thats nice. i liked ur post. do keep on posting thanks

well whats this about?

well i didnt have any informations about security. anyway thanks for that.