DISQUS

One of the problems is the fact that there is no decent HTML editing support in HTML. Eveyrthing has to be built from scratch and that's where the vulnerabilities come from. This sort of thing should come from the browser and provide for disallowing things like script blocks in anything the user types. In the end that's what it comes down to - ridding the code of script blocks.

John, this is pretty cool. Actually I didn't realize you could extend selector filters at all, but that makes sense.

FWIW, some time ago I updated the component you reference above and have an option to auto generate ALL clientIds on the object. As you mention the downside there is that it sends all those ids to the client when the page is loaded but you do end up with a single object with properties. (serverVars.txtNameId for example) without having to modify server code specifically to add controls. I've used this quite a bit and it works and is worth the overhead on all but really huge forms with tons of controls.

Ultimately though I've come to prefer marking up controls with pseudo classes rather than IDs. That makes it much easier:

$(".txtName").blah()

Still an extra step but an easy and also very explicit one.

Rob - I share jim's sentiment. I'm thouroughly bummed out at the moment after spending the last couple months reading around the financial meltdown and also some of the energy and geopolitical issues facing the world and especially this country and the lack of any sort of policy to address any of these issues (including from the two presidential wanna-bes).

It's freaking scary and things are going to change one way or another whether we want it or not as so many things come to a head in the next few years. One part of me says - just forget it and go on with live, but the other says gotta make a difference somehow. Can't just let it all get steam rolled and sitting idly by - that makes a collaborator...

But making a difference is still something that eludes me. Attitude and even a blog post is good for getting conversation going but conversation is not enough. More political activism is needed but it's pretty tough (at least to me) to see where and how to apply that energy. It all seems so futile in the face of big money that controls our democracy.

Yeah I remember watching this movie a couple of years ago and just thinking to myself how incredible scary this is. And even scarier that there was relatively little public discussion about this either in the private sector and certainly not at the political level.

In a way it's comical - this type of corruption would be expected in a third world country. Ironically if this were happening in some South American country the US would condemn the government for fraudulent voting practices. Here? It's just business as usual with a slap on the wrist (or more likely a high five by those rigging the system)...

It's our own fault. Too few people give a shit these days to make a difference... and even if you do it seems the voices of reason are lost in the mass of apathy.