TL;DR : Don't naively use user input (AKA validate user input) (well.. duh! :) | Hacker News

Hacker News .hnnew | past | comments | ask | show | jobs | submit

		gizzlon on Dec 19, 2011 \| parent \| context \| favorite \| on: Attacking NoSQL and Node.js: Server-Side JavaScrip... TL;DR : Don't naively use user input (AKA validate user input) (well.. duh! :)

pygorex on Dec 19, 2011 [–]

Also: don't eval() user-supplied strings.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact