CODE AREA ***************************************************************** ********** | hacker_error stops the script display if illegal chars have been found by check_vars ***************************************************************************< /MVCOMMENT> Errors in data

Please use your "Back" button to return to the form and correct the form

 Well, as you see, I like dense coding, so please excuse that I changed your original script accordingly. I removed few redundant things - for example the trailing comma is not necessary, gettoken() does not need a separator after the last separator. I also add the DEFAULTMACROENCODING, that should be used in EVERY script. The first gettoken() gets the variable name from the list. The second one trims out any forbidden characters from the variable name (without any warning message). The third one checks the variable value for forbidden character and shows a warning if found. I removed completely the check_var() function. You may simply add characters to the forbidden variable (or remove some) to make the function more or less strict. Normally, if you program carefully, it is not necessary to make so strong restrictions on variable values. One more recommendation - correctly taken you should check also the global and system variables. It's far not so complicated as you could think to inject malicious code to these areas too. Change the 2nd line accordingly: You may use and modify the function as you need and please post it to the list too, that people do not install the old one - that's really dangerous. I would be happy if you keep my comments and credits.