Šta je novo?
Od:
Filteri

Cross site scripting na benchu

MostWanted

MostWanted

Cenjen
Učlanjen(a)
12.07.2013
Poruke
668
Poena
195
Moja oprema  
CPU & Cooler
Ryzen 5600 & BeQuiet Pure Rock Slim 2
Matična ploča
Asus B550-PRO
RAM
16GB DDR4 3200MHz Kingston
GPU
MSI Radeon 6700XT 12GB
Storage
1TB nvme SSD Kingston
Zvuk
Tannoy Gold 5
PSU
Fractal ION Gold 750W
Kućište
Cooler Master Silencio S600 + BeQuiet Silent Wings 3 120mm
Monitor
LG UltraGear 27'' 1440p 165Hz
Miš & tastatura
Logitech G Pro tastatura i mis
Naslov je malo clickbait, ali zanima me sledece: Kako i zasto BBCode na benchu i ostalim forumima kao mera zastite od xss-a. Pokusavam da razumem zasto je to preporucena opcija gde korisnici mogu da edituju svoj tekst, kako BBcode pomaze da se bench zastiti od xss-a? Zar ne bi mogao isti ovakav text editor da se implementira u html-u i da se samo ogranici da nema <div> atributa, <script> tagova i ostalog nepozeljnog? BB ce svakako biti konvertovan u HTML jer browser ne razume BB.
 
https://www.reddit.com/r/explainlikeimfive/comments/3k21a9/eli5_bbcode_vs_html/

Akcenat na:

"Pretty similar with one being a simplistic watered down version.

Now, as to where usage is important, basically BBcode is developed for user-response...",

i

"...BBcode is semi-outdated in my opinion, and isn't even free from its own exploits, so really it's all preference and whatever you're doing may support one or the other."

Prosto jer je jednostavnije običnom korisniku i eto da kažemo "navikli smo"
 
Poslednja izmena:
Morate se prijaviti ili registrovati da odgovorite ovde.
Nazad
Vrh Dno