So many fucking developers don't understand email... Quick check: enter your username in lowercase and your domain in uppercase. If they mail you like that, they are not sanitising input
Technically no, sanitization doesn't necessarily mean lowercasing the mail id
@email.com;rm -rf /*;
Technically no. But if you're not lowercasing the email, chances are you're not sanitising correctly, and you know it. Both overly aggressive sanitisation that breaks standards (for example only allowing alphanumeric, only the @ symbol once, and TLDs with a length of 3 characters) as well as sloppy sanitisation are harmful to the Internet ecosystem.
Chances are, but not necessary
btw, once you login, the entire email is converted to lowercase
Обсуждают сегодня