Closed Thread Icon

Preserved Topic: I tell ya' there's sum'in to this UBB hooplah.. Pages that link to <a href="https://ozoneasylum.com/backlink?for=16647" title="Pages that link to Preserved Topic: I tell ya&amp;#039; there&amp;#039;s sum&amp;#039;in to this UBB hooplah.." rel="nofollow" >Preserved Topic: I tell ya&#039; there&#039;s sum&#039;in to this UBB hooplah..\

 
Author Thread
Petskull
Maniac (V) Mad Scientist

From: 127 Halcyon Road, Marenia, Atlantis
Insane since: Aug 2000

posted posted 06-23-2002 03:12

I bring this up in this forum because it's not a coding issue as much as it is an ethical one:

Would it be considered bad form to support UBB code in a script I'm writing and to make ammendments to it as I see fit?


Code - CGI - links - DHTML - Javascript - Perl - programming - Magic - http://www.twistedport.com
ICQ: 67751342

[This message has been edited by Petskull (edited 06-23-2002).]

Slime
Lunatic (VI) Mad Scientist

From: Massachusetts, USA
Insane since: Mar 2000

posted posted 06-23-2002 03:40

I doubt it. Every UBB-wannabe forum does it.

counterfeitbacon
Paranoid (IV) Inmate

From: Vancouver, WA
Insane since: Apr 2002

posted posted 06-23-2002 04:42

Slime: Doesn't the Aslylum?

Skaarjj
Maniac (V) Mad Scientist

From: :morF
Insane since: May 2000

posted posted 06-23-2002 04:54

Not that I've seen....bu then again. I couldn't say even if I had seen it with my own eyes. All I know is that no knew UBB code has been added in the two and a half years I've been interred here.

Koan 63, written on the wall of cell number 250:
Those who Believe
Can
Those who Try
Do
Those who Love
Live

Slime
Lunatic (VI) Mad Scientist

From: Massachusetts, USA
Insane since: Mar 2000

posted posted 06-23-2002 05:06

Well, I meant that every forum made to look like UBB copies the code. I don't know that they necessarily *add* to it.

You know what I'd recommend? Let them use specific HTML tags, like real HTML, such as

<a href="...">...</a>

What you'd want to do if you do that, is
1. check for those specific tags and re-implement them. (meaning, extract the important information, the URL and the text in the <a> case, and then re-make the tag.) Re-implementing the tags instead of just copying what the user puts inside them keeps things safe; for instance, it would prevent me from using onclick="" or whatever inside an <a> tag.
2. Make sure there aren't any javascript: URLs by restricting the things that a URL is allowed to start with (such as http://, news://, ftp://, and maybe some others).
3. replace any < or >'s in the text with &amp;lt; and &amp;gt;
4. replace any ampersands in the text with &amp;amp;

And that should keep things safe.

« BackwardsOnwards »

Show Forum Drop Down Menu