Never ever assume in your server side program that processes the input of a web form that possible client side validation and restrictions, for example on the maximal length of the data, of the form elements have taken place. It is quite possible to call the server side program directly with faked data.
Read the rest of Web forms.
Note that your comment doesn't show up immediately. I review each comment before I add it to this site.
Check the Follow this page option if you want to receive an email each time a comment is posted to this page, including yours. A link to turn this option off will be included with each email.
Internet adresses will be converted automatically. You can use the following notation to specify anchor text for a link: [url=http://example.com/]example text[/url].