@scragarOct 27.2007 — #everything is accepted unless you use some validation to block it, although depending on your charset some characters could come out weird if you echo them.
@NogDogOct 27.2007 — #By default the browser should limit itself to the character set specified in the "Content-Type" HTTP header or meta tag. You can override that default by specifying an [url=http://www.w3.org/TR/html4/interact/forms.html#adef-accept-charset]accept-charset[/url] attribute for your form tag. Of course, since that is all client-driven, you can not depend on it 100%, so if there are certain characters you do not want to allow, it is still your server-side script's responsibility to validate the input and either reject the input or filter out illegal characters (such as with preg_replace()) if any unwanted characters are in the input.
@JavajoobauthorOct 27.2007 — #Well yes it gets a bit messy when validation comes in and you want to allow letters and certain other characters. And with this charset you can specify personally which letters you want to allow into your form input (client side at least)?