I like to have fun. I don’t like being told I can’t do something.
Barry‘s implemented a sort of discussion board on his site, allowing people to post thoughts and stuff. It’s similar to Dena’s Ranter that I wrote like two years ago but she never uses. He’s using mySQL to store all of this. As a computer science guy, I thought I’d try to see what’s allowable, as far a types of char data is concerned. My test? Try to see if I could run JavaScript stuff from the dicussion. Here’s how it went down:
Barry
June 19, 2003, 9:20 am
Hi there and welcome to the new discussion board. Here we can all discuss issues of the day like gays in the army and the crack of my butt.
You can input any HTML you might want to add into the form but be wary off special characters. I havent coded it to test for double quotes and stuff. I look forward to hearing from all of you in discussion. Anyone with a discussion topic?
Oh if you havent seen it yet the reply button is in the top right of the discussion window.
Lori Lue
June 19, 2003, 9:38 am
Tu pues du cul!
Patrick Byck
June 19, 2003, 10:07 am
Will you publish everything some random dingbat has to say, even if it involves heavy slander? I may not be that random dingbat, but they do exist, my friend!
Patrick Byck
June 19, 2003, 10:11 am
BTW, your timer is off. It is clearly not the a.m. anymore, unless I am experiencing a massive amount of hallucinations.
Barry
June 19, 2003, 10:14 am
Yes I realize the timer is off. It will be fixed at another time. No pun. And any dingbat is allowed to write whatever they want. Chris Bellini should be along any minute to prove that.
Chris Bellini
June 19, 2003, 10:42 am
Le premier, Barry ne me voudra pas a le JS, et maintenant il enleve ma merde. Osti!
Barry
June 19, 2003, 10:51 am
Yes Chris, Mr. Elite Programmer guy. The form can accept JavaScript if you know how to make mysql handle double quotes.
Patrick Byck
June 19, 2003, 11:12 am
Yes, I agree about limiting the size of posts, but some of us tend to spout off for no good reason except for the fact that there is a forum for us to do so. Which reminds me of a great story………
z
June 19, 2003, 11:13 am
Test
Chris Bellini
June 19, 2003, 11:15 am
Monsieur Z tue votre website avec le JS 😉
RUSKULL
June 19, 2003, 11:18 am
?
Chris Bellini
June 19, 2003, 11:19 am
Je suis Mr. Elite Programmer Guy parce que je sais que le mySQL a besoin de double _quotes_ 😛
RUSKULL
June 19, 2003, 11:19 am
Impossible to post correctly.
q
June 19, 2003, 11:25 am
?Ca va?
Here was my last post as q in action, before Barry removed all traces of it.
After one failed attempt, he mocked me, “Yes Chris, Mr. Elite Programmer guy. The form can accept JavaScript if you know how to make mysql handle double quotes.”. I didn’t know how mySQL handled quotes, since I never touch mySQL, but I did know that programming languages and environments usally have escape sequences in the case of special chars like quotes. Would the C-esque “\” work? Nope. How about the VB-like double-quote system? Probably not, so I guess third time’s a charm. Hello…VB-style double quotes work. Ok, two cracks at it was all that was needed.
He’s since stripped specials chars out of the posts and consequently any ability to post HTML as well, so I guess I made him modify his plans a bit. He could’ve just blocked JavaScript calls instead of special characters…but if he wants to nuke HMTL-ability in posts, so be it. I must be honest, the discussion looks good. Nice work, mon chum.
But a code war? Dude. Seriously. You don’t wanna go there 😉 If you do, come join us on Top Coder and show us your shtuff 😉
