[Esapi-user] Esapi-user Digest, Vol 20, Issue 12

Dan Cornell dan at denimgroup.com
Thu Jul 28 09:30:34 EDT 2011


I agree 100%, Jeff. All encoders are important for intrusion detection and canonicalization. I was *only* commenting on my desire to see dev's use query parameterization over manual encoding.

Sorry for the mix up.

What is the best way to communicate that to developers so that the Codecs aren't misused?  The Javadocs  for the database codecs could be updated and that might help.  Any other ideas?

Thanks,

Dan

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/esapi-user/attachments/20110728/6d89d5b4/attachment.html 


More information about the Esapi-user mailing list