xml-dev - Re: [xml-dev] Relax NG, Thoughts, etc.

Re: [xml-dev] Relax NG, Thoughts, etc.

[ Lists Home | Date Index | Thread Index ]

To: Norman Walsh <ndw@nwalsh.com>
Subject: Re: [xml-dev] Relax NG, Thoughts, etc.
From: Rich Salz <rsalz@datapower.com>
Date: Fri, 03 Dec 2004 13:06:17 -0500
Cc: xml-dev@lists.xml.org
In-reply-to: <87mzwv5na7.fsf@nwalsh.com>
References: <200411281458.iASEwla19622@smtp-bedford.mitre.org> <87mzwv5na7.fsf@nwalsh.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7b) Gecko/20040421

> <shrug/> Intelligent folks building real systems tell me that
> validation isn't actually something you do in production code

Those folks are asking for a world of pain once/if they move their 
application out of a tightly controlled environment.  Trust, but verify. 
  How many Web problems were caused by not validating HTML form data?

Anyhow, send those folks you mention over our way. :)

	/r$

-- 
Rich Salz, Chief Security Architect
DataPower Technology                           http://www.datapower.com
XS40 XML Security Gateway   http://www.datapower.com/products/xs40.html
XML Security Overview  http://www.datapower.com/xmldev/xmlsecurity.html

Follow-Ups:
- Re: [xml-dev] Relax NG, Thoughts, etc.
  - From: Norman Walsh <ndw@nwalsh.com>

References:
- Re: [xml-dev] Relax NG, Thoughts, etc.
  - From: Norman Walsh <ndw@nwalsh.com>

Prev by Date: RE: [xml-dev] The XML Backlash
Next by Date: XML Pipeline
Previous by thread: Re: [xml-dev] Relax NG, Thoughts, etc.
Next by thread: Re: [xml-dev] Relax NG, Thoughts, etc.
Index(es):
- Date
- Thread