Ya heard!

Sir Tyler Robots, Inanimate

The Great Gatsby Movie Review

Jay-Z’s soundtrack killed the movie, literally. Love you, but if my best shit is your worst shit then, fuck, …I suck.

Spoiler Alert: Ghostwriter ends the movie.

But it’s okay if you like Leonardo DiCaprio.

The Hammer and Sir Tyler Robots make it nasty
at the Riverwest Public House March 21st.
TONIGHT!!!
815 E Locust ST.

The Hammer and Sir Tyler Robots make it nasty

at the Riverwest Public House March 21st.

TONIGHT!!!

815 E Locust ST.

#Proof: If you shake it more than twice you are playing with it.

#Proof: If you shake it more than twice you are playing with it.

center-center:

CENTER beanie hats are now available!

center-center:

CENTER beanie hats are now available!

"

It’s a common misconception that user input can be filtered. PHP even has a (now deprecated) “feature”, called magic-quotes, that builds on this idea. It’s nonsense. Forget about filtering (Or cleaning, or whatever people call it).

What you should do, to avoid problems is quite simple: Whenever you embed a string within foreign code, you must escape it, according to the rules of that language. For example, if you embed a string in some SQL targeting MySql, you must escape the string with MySql’s function for this purpose (mysqli_real_escape_string).

Another example is HTML: If you embed strings within HTML markup, you must escape it with htmlspecialchars. This means that every single echo or print statement should use htmlspecialchars.

A third example could be shell commands: If you are going to embed strings (Such as arguments) to external commands, and call them with exec, then you must use escapeshellcmd and escapeshellarg.

And so on and so forth …

The only case where you need to actively filter data, is if you’re accepting preformatted input. Eg. if you let your users post HTML markup, that you plan to display on the site. However, you should be wise to avoid this at all cost, since no matter how well you filter it, it will always be a potential security hole.

"
"

Once I laughed when I heard you saying
That I’d be playing solitaire
Uneasy in my easy chair
It never entered my mind

And once you told me I was mistaken
That I’d awaken with the sun
And ordered orange juice for one
It never entered my mind

You had what I lack, myself
Now I even have to scratch my back myself
Once you warned me that if you scorned me
I’d say the maiden’s prayer again

And wish that you were there again
To get into my hair again
It never entered my mind
It never entered my mind

"
Miles Davis