Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I’m currently trying to secure my classic ASP application from XSS. I came across the AntiXSS from Microsoft on the net and I was wondering if this would work with a classic application?
If not do you have any ideas how I could go about sanitizing the strings?
To sanitize strings I would HTML encode all output, that way you don’t have to dink around with special characters or huge regex expressions
The two most important countermeasures to prevent cross-site scripting attacks are to:
via How To: Prevent Cross-Site Scripting in ASP.NET (i know i’ts not classic asp but there are similar principals)