[thelist] usability

Paul Bennett paul at teltest.com
Tue Dec 2 19:22:44 CST 2003


Dougal Campbell wrote:

>On Tue, 2 Dec 2003, Alida Ladak wrote:
>
>  
>
>>hi all,
>>
>>I'm working on a page where dates are displayed with the following format:
>>2-Dec-03.  The client wants a new feature that allows the user to input and
>>submit a date. The client is not willing to invest in validation of the
>>entry.         ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>>    
>>
>  ^^^^^
>Then the client will get what he pays for.
>
>Depending on what other error-checking occurs (or, more importantly,
>doesn't occur), they might open themselves up to easy site breakage by a
>bored cracker. Even if you use the three-dropdown method, it's simple
>enough to submit bogus form inputs. And if bogus inputs make it into
>the system, and aren't filtered at a later stage, the site can break.
>
amen - give us the url and maybe we can convince the client to shell out 
some more cash for a more secure application ;)

>
>Backend data validation is essential to any robust web app.
>
>  
>


-- 
 ------------------------------
	Paul Bennett						
	Internet Developer				
	Teltest Electronic Design		
 ------------------------------			
Email: paul at teltest.com				
Phone: 64 4 237 4557					
Web: http://www.teltest.com		
Wap: http://wap.teltest.com			




More information about the thelist mailing list