html Archives - AWS Managed Services by Anchor

A dev’s guide to safely escaping and encoding URLs

By | Technical | One Comment

A lot of the support work that we do here at Anchor involves looking at websites. You could say that we’ve seen a few websites in our time. Something we come across pretty frequently is inadequate protection when it comes to handling user-submitted form data and URLs. This might not seem like a big deal, but it has some pretty big security implications, mostly relating to cross-site scripting. These problems can enable malicious activity like leaking of private data. The short version is that user-supplied data can never be trusted, and you need to carefully escape and format the data to make it safe for the intended use, such as printing it on a webpage. A very simple example Let’s say you run a site that accepts news tips from…

Read More


By | Technical | No Comments

A colleague found a rather cute pop culture spoof recently that’s worth sharing. If you develop web content on a regular basis then I think this’ll really touch a nerve: http://www.elliottkember.com/ie.html (contains some contextually-appropriate coarse language) Did you notice the little peel-away flap in the top-left corner? 🙂

Read More