it can be quite nice to get the client to run the display cruft while the server gets on with someone else.

Is it a closed environment where you have control over the clients? If not, I won't be able to view your site and a lot of other people won't either. Cause I don't usually enable JS - or am sometimes powered by lynx/links.

JS can also alow you to do much of the input validation on the client thus saving considerable effort in making the server reject malformed queries politely.

Yikes! What stops anyone from using a saved and edited HTML page or LWP or one of the million other possibilities to maliciously send you malformed input?

Don't Trust The Client.

Whatever you do, Don't Trust The Client.

Makeshifts last the longest.

---

---

• Are you posting in the right place? Check out Where do I post X? to know for sure.
• Posts may use any of the Perl Monks Approved HTML tags. Currently these include the following:

  <code> <a> <b> <big> <blockquote> <br /> <dd> <dl> <dt> <em> <font> <h1> <h2> <h3> <h4> <h5> <h6> <hr /> <i> <li> <nbsp> <ol> <p> <small> <strike> <strong> <sub> <sup> <table> <td> <th> <tr> <tt> <u> <ul>

• Snippets of code should be wrapped in <code> tags not <pre> tags. In fact, <pre> tags should generally be avoided. If they must be used, extreme care should be taken to ensure that their contents do not have long lines (<70 chars), in order to prevent horizontal scrolling (and possible janitor intervention).
• Want more info? How to link or How to display code and escape characters are good places to start.