Preserved Topic: I tell ya' there's sum'in to this UBB hooplah.. (Page 1 of 1) $Pages that link to <a href="https://ozoneasylum.com/backlink?for=16647" title="Pages that link to Preserved Topic: I tell ya&#039; there&#039;s sum&#039;in to this UBB hooplah.. (Page 1 of 1)" rel="nofollow" >Preserved Topic: I tell ya' there's sum'in to this UBB hooplah.. <span class="small">(Page 1 of 1)</span>\$

Petskull Maniac (V) Mad Scientist From: 127 Halcyon Road, Marenia, Atlantis Insane since: Aug 2000	posted 06-23-2002 03:12 I bring this up in this forum because it's not a coding issue as much as it is an ethical one: Would it be considered bad form to support UBB code in a script I'm writing and to make ammendments to it as I see fit? Code - CGI - links - DHTML - Javascript - Perl - programming - Magic - http://www.twistedport.com ICQ: 67751342 [This message has been edited by Petskull (edited 06-23-2002).]
Slime Lunatic (VI) Mad Scientist From: Massachusetts, USA Insane since: Mar 2000	posted 06-23-2002 03:40 I doubt it. Every UBB-wannabe forum does it.
counterfeitbacon Paranoid (IV) Inmate From: Vancouver, WA Insane since: Apr 2002	posted 06-23-2002 04:42 Slime: Doesn't the Aslylum?
Skaarjj Maniac (V) Mad Scientist From: :morF Insane since: May 2000	posted 06-23-2002 04:54 Not that I've seen....bu then again. I couldn't say even if I had seen it with my own eyes. All I know is that no knew UBB code has been added in the two and a half years I've been interred here. Koan 63, written on the wall of cell number 250: Those who Believe Can Those who Try Do Those who Love Live
Slime Lunatic (VI) Mad Scientist From: Massachusetts, USA Insane since: Mar 2000	posted 06-23-2002 05:06 Well, I meant that every forum made to look like UBB copies the code. I don't know that they necessarily add to it. You know what I'd recommend? Let them use specific HTML tags, like real HTML, such as <a href="...">...</a> What you'd want to do if you do that, is 1. check for those specific tags and re-implement them. (meaning, extract the important information, the URL and the text in the <a> case, and then re-make the tag.) Re-implementing the tags instead of just copying what the user puts inside them keeps things safe; for instance, it would prevent me from using onclick="" or whatever inside an <a> tag. 2. Make sure there aren't any javascript: URLs by restricting the things that a URL is allowed to start with (such as http://, news://, ftp://, and maybe some others). 3. replace any < or >'s in the text with &lt; and &gt; 4. replace any ampersands in the text with &amp; And that should keep things safe.

Preserved Topic: I tell ya' there's sum'in to this UBB hooplah.. (Page 1 of 1) $Pages that link to <a href="https://ozoneasylum.com/backlink?for=16647" title="Pages that link to Preserved Topic: I tell ya&#039; there&#039;s sum&#039;in to this UBB hooplah.. (Page 1 of 1)" rel="nofollow" >Preserved Topic: I tell ya' there's sum'in to this UBB hooplah.. <span class="small">(Page 1 of 1)</span>\$

Petskull
Maniac (V) Mad Scientist

From: 127 Halcyon Road, Marenia, Atlantis
Insane since: Aug 2000

posted 06-23-2002 03:12

I bring this up in this forum because it's not a coding issue as much as it is an ethical one:

Would it be considered bad form to support UBB code in a script I'm writing and to make ammendments to it as I see fit?

Code - CGI - links - DHTML - Javascript - Perl - programming - Magic - http://www.twistedport.com
ICQ: 67751342

[This message has been edited by Petskull (edited 06-23-2002).]

Slime
Lunatic (VI) Mad Scientist

From: Massachusetts, USA
Insane since: Mar 2000

posted 06-23-2002 03:40

I doubt it. Every UBB-wannabe forum does it.

counterfeitbacon
Paranoid (IV) Inmate

From: Vancouver, WA
Insane since: Apr 2002

posted 06-23-2002 04:42

Slime: Doesn't the Aslylum?

Skaarjj
Maniac (V) Mad Scientist

From: :morF
Insane since: May 2000

posted 06-23-2002 04:54

Not that I've seen....bu then again. I couldn't say even if I had seen it with my own eyes. All I know is that no knew UBB code has been added in the two and a half years I've been interred here.

Koan 63, written on the wall of cell number 250:
Those who Believe
Can
Those who Try
Do
Those who Love
Live

Slime
Lunatic (VI) Mad Scientist

From: Massachusetts, USA
Insane since: Mar 2000

posted 06-23-2002 05:06

Well, I meant that every forum made to look like UBB copies the code. I don't know that they necessarily *add* to it.

You know what I'd recommend? Let them use specific HTML tags, like real HTML, such as

<a href="...">...</a>

What you'd want to do if you do that, is
1. check for those specific tags and re-implement them. (meaning, extract the important information, the URL and the text in the <a> case, and then re-make the tag.) Re-implementing the tags instead of just copying what the user puts inside them keeps things safe; for instance, it would prevent me from using onclick="" or whatever inside an <a> tag.
2. Make sure there aren't any javascript: URLs by restricting the things that a URL is allowed to start with (such as http://, news://, ftp://, and maybe some others).
3. replace any < or >'s in the text with &lt; and &gt;
4. replace any ampersands in the text with &amp;

And that should keep things safe.