Comments on: Secure UTF-8 Input in Rails http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/ A goal is a dream with a deadline. Fri, 04 Jul 2008 03:03:55 +0000 http://wordpress.org/?v=2.5.1 By: Ilya Grigorik http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-66868 Ilya Grigorik Thu, 06 Sep 2007 13:39:26 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-66868 Antti, thanks for the correction. You're right, I swept some details under the rug when I talked about ISO8859-1. :) Antti, thanks for the correction. You’re right, I swept some details under the rug when I talked about ISO8859-1. :)

]]> By: antti http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-66365 antti Tue, 04 Sep 2007 18:32:45 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-66365 Um, everything is *not* valid by default in ISO8859-1. The range 0x80-0x9f is invalid. The reasons for this concern legacy terminals and programs: they could drop the 8th bit and interpret those as control characters. Perhaps you were thinking of code page 1252, aka windows-1252, the bane of many Unix users out there. Um, everything is *not* valid by default in ISO8859-1. The range 0×80-0×9f is invalid. The reasons for this concern legacy terminals and programs: they could drop the 8th bit and interpret those as control characters.

Perhaps you were thinking of code page 1252, aka windows-1252, the bane of many Unix users out there.

]]> By: links for 2007-05-25, or so says Harry Love http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-39772 links for 2007-05-25, or so says Harry Love Fri, 25 May 2007 16:21:49 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-39772 [...] Secure UTF-8 Input in Rails - igvita.com (tags: rubyonrails security unicode utf8) [...] [...] Secure UTF-8 Input in Rails - igvita.com (tags: rubyonrails security unicode utf8) [...]

]]> By: Ilya Grigorik http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-36117 Ilya Grigorik Sat, 05 May 2007 13:44:16 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-36117 Yep, that's the plan, Ruby should be unicode safe as of next big release. In fact, oniguruma is taken directly out of 1.9/2.0. My only worry is, nobody seems to know when to expect 1.9/2.0. Yep, that’s the plan, Ruby should be unicode safe as of next big release. In fact, oniguruma is taken directly out of 1.9/2.0. My only worry is, nobody seems to know when to expect 1.9/2.0.

]]> By: Ilya Radchenko http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-36053 Ilya Radchenko Sat, 05 May 2007 05:43:46 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-36053 So is there any word on ruby 1.9/2.0 being Unicode-safe? Or would you say this "flaw" should still be addressed? So is there any word on ruby 1.9/2.0 being Unicode-safe? Or would you say this “flaw” should still be addressed?

]]> By: Ilya Grigorik http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-32359 Ilya Grigorik Sat, 14 Apr 2007 04:11:47 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-32359 jCris, glad to be of help! Chuck, that's a great add-on for Apache. Especially relevant for anyone using page caching. One suggestion though, I would recommend sticking that code into your main config (httpd.conf). Otherwise Apache is forced to read .htaccess on every access, which makes a dent on overall performance. jCris, glad to be of help!

Chuck, that’s a great add-on for Apache. Especially relevant for anyone using page caching. One suggestion though, I would recommend sticking that code into your main config (httpd.conf). Otherwise Apache is forced to read .htaccess on every access, which makes a dent on overall performance.

]]> By: Chuck Bergeron http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-32308 Chuck Bergeron Fri, 13 Apr 2007 18:27:50 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-32308 Wow, great post on very relevant and usable stuff. Thanks! One thing I also had to do when serving up UTF8 content on my shared hosting provider: > .htaccess AddDefaultCharset OFF AddType text/html;charset=UTF-8 html AddType text/plain;charset=UTF-8 txt Cheers! Wow, great post on very relevant and usable stuff. Thanks!

One thing I also had to do when serving up UTF8 content on my shared hosting provider:

> .htaccess
AddDefaultCharset OFF
AddType text/html;charset=UTF-8 html
AddType text/plain;charset=UTF-8 txt

Cheers!

]]> By: jChris http://www.igvita.com/2007/04/11/secure-utf-8-input-in-rails/#comment-32289 jChris Fri, 13 Apr 2007 16:36:09 +0000 http://www.igvita.com/blog/2007/04/11/secure-utf-8-input-in-rails/#comment-32289 Thanks for the clear and encouraging take on the black art of character encoding! I've got tthis url in my bug tracker for future reference. Thanks for the clear and encouraging take on the black art of character encoding! I’ve got tthis url in my bug tracker for future reference.

]]>