NEOERR *cgi_url_validate (const char *buf, char **esc);
ARGUMENTSbuf - a 0 terminated string
DESCRIPTIONcgi_url_validate will check that a URL starts with one of the accepted safe schemes. If not, it returns "#" as a safe substitute. Currently accepted schemes are http, https, ftp and mailto. It then html escapes the entire URL so that it is safe to insert in an href attribute.
RETURN VALUEesc - a newly allocated string