<< Delphi color conversion routines in GraphUtil.pas | Are you using DUnit to test your Delphi applications? >>

Blog comment attacks blocked by ASP.NET's ValidateRequest feature

December 25 2006 6:08AM

For several days now the logs for my blog are showing the ASP.NET error message "A potentially dangerous Request.Form value was detected from the client" which is ASP.NET's way of preventing potentially harmful postbacks that are coming from the comment form used here on my blog. This is probably one of those features that people love to hate but in this case I think it's quite effective. For more information see ValidateRequest.

ceb414e2-587f-448f-bb44-72071b44e833|0|.0

Tags: ASP.NET, Blogging

Permalink | Comments (1)

Moving from dasBlog to BlogEngine.NETIn addition to moving this blog to BlogEngine.NET (BE) I've recently moved my personal home blog fro...dasBlog provider for use with BlogEngine.NET I’ve used dasBlog since I first began hosting my own blog and previously considered a move to BlogE...Building my blog Part II: Selecting blog softwareFirst, I'll admit I got a bit ahead of myself in Part I since by the time I selected an ISP I'd alre...

Comments

12/26/2006 2:19:40 AM #

Of course, if you just cook all lesser and greater than signs into their ampersand equivalents, then there is zero problem and the system works as expected for everyone EXCEPT those trying to exploit the system. Which is, if I recall correctly, a option in asp.net, but I forget exactly where.

C Johnson

Add comment

Name*
E-mail* (Will show your Gravatar icon)
Website
Country Country flag

b i u quote

Comment
Preview

Notify me when new comments are added

Spam filtering provided by:

337 comments approved, 1525 spam caught since October 28, 2009

Disclaimer

Blog comment attacks blocked by ASP.NET's ValidateRequest feature