I can not log in to your beta

June 14th, 2007 by Alistair MacDonald Leave a reply »

As someone who is interested in web developments I sign up for many beta programmes. I tend to use differing passwords, and many with non alphanumeric characters. It is rather frightening that on many occasions (yes, many) I have not been able to log in because I used these characters and the site creator needed to intervene manually. This is more frightening because I bet most times what I have typed has just been pasted in to an SQL query and is open to SQL injection. This is a personal request to all developers to always escapes special characters when accepting input form the user, and consider using OpenID for authentication.


Leave a Reply