Posted: Fri Apr 28, 2006 8:06 pm
well,im coming here to lean also 
A community of PHP developers offering assistance, advice, discussion, and friendship.
http://forums.devnetwork.net/
I think that hits the nail right on the head. Design your app to "just work" no matter what the user does, or how they choose to interact with it.Maugrim_The_Reaper wrote:To be honest your application should not care how a user chooses to send input. So long as it filtered effectively they can fake all the POST requests they want... As a quick rule - if a URI on your app does not expect any POST data, then your input filter should simply discard any such data immediately.