html filtering
Thomas A. Bryan
tbryan at python.net
Tue Dec 26 01:46:40 EST 2000
QdlatY wrote:
>
> Hello!
>
> Moshe Zadka wrote:
> >
> > On Mon, 25 Dec 2000, QdlatY <qdlaty at wielun.dhs.org> wrote:
> >
> > > Big problem in writeing message boards is filtering html tags. I use
> > > very simple method: Each occurence of "<" sign or ">" sign I replace
> > > with < and >. Is this safe method? Maybe You've got better ideas?
> >
> > Well, it is safe as long as you remember to replace every "&" with
> > "&" *before* you replace < and >.
>
> Yes! Thanks. I forget about ampersands;)).
Then again, you could use cgi.escape and save yourself the trouble. :)
always-check-your-library-before-you-write-a-book-ly yours
---Tom
More information about the Python-list
mailing list