[thelist] usability
Paul Bennett
paul at teltest.com
Tue Dec 2 19:22:44 CST 2003
Dougal Campbell wrote:
>On Tue, 2 Dec 2003, Alida Ladak wrote:
>
>
>
>>hi all,
>>
>>I'm working on a page where dates are displayed with the following format:
>>2-Dec-03. The client wants a new feature that allows the user to input and
>>submit a date. The client is not willing to invest in validation of the
>>entry. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>>
>>
> ^^^^^
>Then the client will get what he pays for.
>
>Depending on what other error-checking occurs (or, more importantly,
>doesn't occur), they might open themselves up to easy site breakage by a
>bored cracker. Even if you use the three-dropdown method, it's simple
>enough to submit bogus form inputs. And if bogus inputs make it into
>the system, and aren't filtered at a later stage, the site can break.
>
amen - give us the url and maybe we can convince the client to shell out
some more cash for a more secure application ;)
>
>Backend data validation is essential to any robust web app.
>
>
>
--
------------------------------
Paul Bennett
Internet Developer
Teltest Electronic Design
------------------------------
Email: paul at teltest.com
Phone: 64 4 237 4557
Web: http://www.teltest.com
Wap: http://wap.teltest.com
More information about the thelist
mailing list