This week’s episode has been hijacked by Girl Cynic.
After a high level discussion with her on what input validation is all about, she thought she could make a better episode on the topic. I gave her the example of blacklisting as sugar is blacklisted from being put into my bikes petrol tank. So she came up with the analogies of blacklisting shampoo from being swallowed or eating a baby! (don’t ask where she gets these ideas from).
Anyway, input validation is a good security principle based on your application looking at what’s being asked of it and deal in a secure manner. It’s not always fool proof, but goes a long way.
For more information on input validation and other good secure development principles, visit the awesome Security Ninja blog:http://www.securityninja.co.uk/secure-development/input-validation/