Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:63189 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 22244 invoked from network); 20 Sep 2012 09:54:43 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 20 Sep 2012 09:54:43 -0000 Authentication-Results: pb1.pair.com header.from=padraic.brady@gmail.com; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=padraic.brady@gmail.com; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.160.42 as permitted sender) X-PHP-List-Original-Sender: padraic.brady@gmail.com X-Host-Fingerprint: 209.85.160.42 mail-pb0-f42.google.com Received: from [209.85.160.42] ([209.85.160.42:42060] helo=mail-pb0-f42.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id CB/94-15057-2E7EA505 for ; Thu, 20 Sep 2012 05:54:43 -0400 Received: by pbbrp8 with SMTP id rp8so4657802pbb.29 for ; Thu, 20 Sep 2012 02:54:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=7srSS9v2GK8E8Zaw74/H0bkqi2lXeojohP0nHl6TbLE=; b=J5CsHAOZrTVNgzx876CpP6KDwvQJRGbkYhoR6cREGY/5+Or8OHsd8fyYyop7yDADPv Y9vok14kcePYWyxwaaOcHUeUdXL+G3ZskzUX55Tsa/uJV4U5OyBMhIFJKG2Mav0BiK0v aPHTkoqayNVTPqMZ6LW4TRYSGSX2qjpfZc1lXPmIJNL//cSop89AJRxgVSLg9lpZD92e eUChtzQiglfTrYpm+RKcWwUTxD5Q/W/JV9VhxPGaUjluWkw82a52gvBaUL1UnhUhBe4b /ZYtR/MX4hhGW8GHabqaP3USzzd3iM6qUibxc8XfvXzSXfzkKNtil6T9WIwaQZww7sOE ZuWg== MIME-Version: 1.0 Received: by 10.66.88.5 with SMTP id bc5mr3838367pab.83.1348134880247; Thu, 20 Sep 2012 02:54:40 -0700 (PDT) Received: by 10.66.73.42 with HTTP; Thu, 20 Sep 2012 02:54:40 -0700 (PDT) In-Reply-To: References: <011201cd95c7$33d43c30$9b7cb490$@org> <011901cd95ce$bfea0900$3fbe1b00$@org> <003201cd96d6$8db96e40$a92c4ac0$@org> Date: Thu, 20 Sep 2012 10:54:40 +0100 Message-ID: To: Anthony Ferrara Cc: "Bryan C. Geraghty" , internals@lists.php.net Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable Subject: Re: [PHP-DEV] RFC: Implementing a core anti-XSS escaping class From: padraic.brady@gmail.com (=?ISO-8859-1?Q?P=E1draic_Brady?=) Hi al >> In any case, I=92m not here to carry on an endless flame war. I just wan= t to >> make sure that we=92re doing what=92s necessary to mitigate the number o= ne >> vulnerability in web applications. >> > > I don't think this discussion is a flame war. I think it's a very good an= d > constructive point that needs to be made. It's at least a whole lot more > important and relevant than the last 40 posts on OOP vs Procedural names.= .. > > Anthony I wouldn't categorise this as a flamewar either. I'm remaining silent simply because everyone is making points and I have other emails to respond to ;), but any debate of this nature around the RFC appears to have relevance. Flame away :P Paddy --=20 P=E1draic Brady http://blog.astrumfutura.com http://www.survivethedeepend.com Zend Framework Community Review Team