PHP - security etc

Dominic Mitchell dom at
Thu Mar 8 14:32:14 GMT 2007

On Wed, Mar 07, 2007 at 01:22:56PM -0800, Paul Makepeace wrote:
> This didn't work nearly as well in practice as it appeared from
> reading the tin. Have you actually used it in anger or is this a copy
> & paste solution from another thread? The conclusion I got from
> reading between lines on catalyst, templates, and is that
> Perl just doesn't have decent HTML+template+escaping yet either.

Mason works great for me:

  % $foo = "<b>@</b>";
  <% $foo %>            # &lt;b&gt;@&lt;/b&gt;
  <% $foo |n %>         # <b>@</b>

Yes, you still have to configure it this way, which sucks.  But once
done, it makes it much easier.


More information about the mailing list