Email Security
Posted: Tue Dec 19, 2006 11:50 pm
Hello all,
I'm currently looking into email security with PHP. I cannot seem to find too much on it, all I can find is about PHP sending emails and not actually securing incoming ones. I'm looking to know some common exploits that I need to look for and how to handle HTML. I know I shouldn't allow javascript tags (obviously) but simple XSS tactics can be done in almost any tag. Is there any premade classes out there that handle this kind of stuff? I just need overall suggestions for what I should be doing before displaying emails on my website.
Also, I would like to not take away complete functionality of HTML, basics tabs like formatting and tables I want to stay. Thanks in advanced.
Cheers,
- Josh
I'm currently looking into email security with PHP. I cannot seem to find too much on it, all I can find is about PHP sending emails and not actually securing incoming ones. I'm looking to know some common exploits that I need to look for and how to handle HTML. I know I shouldn't allow javascript tags (obviously) but simple XSS tactics can be done in almost any tag. Is there any premade classes out there that handle this kind of stuff? I just need overall suggestions for what I should be doing before displaying emails on my website.
Also, I would like to not take away complete functionality of HTML, basics tabs like formatting and tables I want to stay. Thanks in advanced.
Cheers,
- Josh