Re: FSD as a Git repository

[Adonay Felipe Nogueira]

Em 20-07-2021 15:36, Lorenzo L. Ancora via escreveu:
>> * As stated previously, although not applicable to our MediaWiki
>> instance as of now, you can also make server-side software build forms
>> with multiple steps by separating each of these generally with many
>> pages as needed, but also have a step which spans multiple-pages if it
>> accepts multiple repetitions or has some data constraints from that same
>> page.
> 
> The only way to secure this type of multi-page form is by using
> JavaScript and possibly PHP (or equivalent technology). Through JS
> client-side session storage, in these cases it is even theoretically
> possible to reduce server-side memory consumption by 90% and increase
> security by delaying data processing via POST at the last stage of the
> multi-page form. This technique is a very effective form of security
> hardening, especially if the processing is done by CGI and involves
> heterogeneous input data.

As an addendum, by the way, W3C also has XForms, which I think is way
safer for form submission, and seems to allow most of the flexibility I
described here, but with only one single form, and without relying on JS.


-- 
* https://libreplanet.org/wiki/User:Adfeno
* Ativista do software livre
  * Não sou advogado e não avalio: vide seção #Inativas no endereço
    acima para saber quem faz
* Diga não às drogas… e ao JavaScript empurrado nas páginas da Internet
* E-mails assinados com OpenPGP (anexo "signature.asc")
* Docs., planilhas e apresentações: use NBR ISO/IEC 26300:2008 e
  versões posteriores do OpenDocument
* Outros tipos de arquivos: vide endereço anterior
* Não assuma que eu tenho as mesmas fontes de texto que usas
* Mensagens secretas somente via
  * XMPP com OMEMO
  * E-mail criptografado com OpenPGP

signature.asc
Description: OpenPGP digital signature