Security Update
December 25th, 2006
I noticed today that passing the email address through the URL could be a bad idea. It would leave all of the email addresses exposed for anyone viewing your weblog’s source code. To fix this issue, I have decided that email addresses must be hashed (md5) before getting passed in. If you are not familiar with md5 hashing, please read what PHP.net has to say about it. I am going to go back to my last post that explained how to retrieve avatar images and show the new changes throughout the post.
Entry Filed under: Blogatar
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed