Andrew's Security Filter(s) v5.62 (May 10, 2009)

[z12]

Kye-U Wrote:$STOP() is still needed as it prevents the filter from going into an infinite loop.

ahhh...I see.
I have an end filter that does the same. Don't know why that didn't occur to me.

Kye-U Wrote:If the page has no tags to remove, then the js is not injected on the page

Makes sense. The $GET(bypassing) is what got me wondering.
It's been awhile since I looked at the js.

FYI, I found a page where a mouseEvent got passed \son[a-z]+=.
There was no space after the preceding attribute, just the closing quote character.
I'm now using [^a-z] instead of \s.
Haven't noticed any speed degradation.

z12