Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:72908 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 92476 invoked from network); 3 Mar 2014 10:58:23 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 3 Mar 2014 10:58:23 -0000 Authentication-Results: pb1.pair.com smtp.mail=petercowburn@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=petercowburn@gmail.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.216.54 as permitted sender) X-PHP-List-Original-Sender: petercowburn@gmail.com X-Host-Fingerprint: 209.85.216.54 mail-qa0-f54.google.com Received: from [209.85.216.54] ([209.85.216.54:38534] helo=mail-qa0-f54.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 3A/01-16913-E4064135 for ; Mon, 03 Mar 2014 05:58:23 -0500 Received: by mail-qa0-f54.google.com with SMTP id w8so3219137qac.41 for ; Mon, 03 Mar 2014 02:58:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=wciUiD6ogxtVXTc9FbtKSSDdsSqCGLuMV6hbhY8tvhE=; b=VORzBYIy2hdOSoG4pUkSEW9K8oylvJJU9SGWK4E330PdG5wOeT+M43YERnd/5YhrXu bPHPAcY6icqjbdTTVmXjzIYWxcXkVnZ2+dX+Cuxl2NREZrvHRwPcWrmJs4BXBBM3P2wx F3dUEkPNYVzDRuqb0VcqHb3CZbLTu7mNxKP3x56Van8PYh0yjcrSoSREWL34HD02MD7u 7f8q/fR9ZqZaayrd4QYr8C1/IQ7dhy495f8tGyv5q//wRLfy6TsxzkECccJHE6itGeFv Z761ee1qHrLmpMFVXEVQe+RFVXcIrrm4CxejlCW+A30Diwipohcg/ERyVdhRhAXTZsfc NPcQ== X-Received: by 10.224.25.195 with SMTP id a3mr22250839qac.83.1393844300544; Mon, 03 Mar 2014 02:58:20 -0800 (PST) MIME-Version: 1.0 Received: by 10.96.234.143 with HTTP; Mon, 3 Mar 2014 02:57:40 -0800 (PST) In-Reply-To: References: Date: Mon, 3 Mar 2014 10:57:40 +0000 Message-ID: To: Ferenc Kovacs Cc: Yasuo Ohgaki , "internals@lists.php.net" Content-Type: multipart/alternative; boundary=047d7bdca04c681a3004f3b1aad3 Subject: Re: [PHP-DEV] [VOTE] Improve HTML escape From: petercowburn@gmail.com (Peter Cowburn) --047d7bdca04c681a3004f3b1aad3 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 24 February 2014 09:27, Ferenc Kovacs wrote: > On Mon, Feb 17, 2014 at 5:10 AM, Yasuo Ohgaki wrote: > > > Hi all, > > > > This RFC for improving HTML escape by confirming OWASP recommendation. > > PCI DSS suggests to follow their guidelines. > > > > https://wiki.php.net/rfc/secure-html-escape > > > > It makes escape OWASP recommended chars always. > > It simplifies coding a little, too. > > > > Thank you for voting! > > > > -- > > Yasuo Ohgaki > > yohgaki@ohgaki.net > > > > > I've updated the voting end date to today from 22th, as the minimum votin= g > period required by the voting RFC is one week. > Is this vote still in-progress? The end date, mentioned on the RFC page, for voting has been and gone. > > -- > Ferenc Kov=E1cs > @Tyr43l - http://tyrael.hu > --047d7bdca04c681a3004f3b1aad3--