security « Form « JSP-Servlet Q&A

1. Form security by replacing '>', '<' characters

i create a web form with JSP, and for preventing attacks I do the following:

input.replace("<", "something else");
input.replace(">", "something else");
so a user cannot add HTML or other tags inside a form. Is this ...

2. Form based login on HTTPS fails with browser error that it couldn't connect the server

I'm trying to implement a simple form-based login for my web application deployed with Tomcat. loginPage.html has j_username and j_password as fields, and the form method is j_security_check, as specified. /Actions ...

3. JSP Form Security

4. forms & security

6. Trouble using j_security form