I have some rather sad knowledge about the security of web applications, and now I'm trying to make out the topic of form protection.
So far I know what I need: - to protect from re-sending - from CSRF (you can sort of combine with the previous one) - from spam - from incorrect / harmful data such as incorrect email addresses or sql injections
What else can I add? What should a person think about when deciding to provide form safety?
