Sent by aardvark on 18 July 2002 10:10
> From: "Earl Cooley" [EMAIL-REMOVED]>
> >
> > Client side security validation should never be relied on anyway, as
> > it can easily be overridden by a malicious user. It's great as a
> > non-essential usability aid ("You forgot to fill in this form field"
> > but it can only ever work as part of a validation system.
>
> So, do you think that CGI's like NMS (the next generation replacement
> for FormMail) are all ultimately futile and useless?
those are server-side solutions (perl)... not client-side script...
JavaScript in this context is client-side script...
client-side script is inherently insecure, and applications that rely
on it for security are, by syllogism, insecure...
we've wandered way off topic...
--
Read the evolt.org case study
Usability: The Site Speaks for Itself
http://amazon.com/exec/obidos/ASIN/1904151035/evoltorg02-20
ISBN: 1904151035
