Dotable - Dot your Domains™ - View Single Post

foobic · 14th March 2008, 09:32 AM

I wouldn't ever call server-side validation "extraneous coding". There's a simple principle here: trust nothing you get from the user.

Hidden fields can be changed too - not quite as easily as clicking a checkbox but it's not hard to do.

14th March 2008, 09:32 AM	#5 (permalink)
foobic Member Join Date: Jun 2006 Posts: 63	I wouldn't ever call server-side validation "extraneous coding". There's a simple principle here: trust nothing you get from the user. Hidden fields can be changed too - not quite as easily as clicking a checkbox but it's not hard to do. __________________ Chris :: ClonePanel: Open source backup \| monitoring \| dns failover for resellers.