into ways to clean the input which will allow safe html tags, while
removing all the evil stuff. I came across the tool bleach (
http://github.com/jsocol/bleach ), which seems to be easy to use.
I was just wondering if anyone has any experience or advice to offer.
Also, it seems to me that the way to go about this is to filter the
text with bleach upon input, and then store the cleaned text in the
database, marking it as safe upon output. Is that the correct way to
do this?
--
You received this message because you are subscribed to the Google Groups "Django users" group.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
No comments:
Post a Comment