|
|
Watch out for HTML tags
What I've done instead is modified the comment plugin to replace [code]<[/code] and [code]>[/code] with their HTML character entities instead... that's *much* safer. People can do very bad things to your site with the ability to submit arbitrary HTML.
Watch out for HTML tags
I'd be quite happy to do this too -- but note that permitting HTML tags in comments/writebacks is the default with Blosxom, not anything I've added. The problem is that Blosxom treats all comments as pure HTML, so people who write in with multiple paragraphs (separated by control-Ms) are annoyed to see their un-editable comments go up as one big block of text. Just trying to provide a quick fix for that. Altering how the writebacks plugin handles input goes well beyond my range. I agree, though, that it would be a very helpful addition.
Update: Watch out for HTML tags
I tried Fletcher Penney's Writebackplus plugin, available through the Blosxom plugin registry, and it does a wonderful job of stripping out HTML tags. Can also be configured in a straightforward way, i.e., even by me. It has a few nice features as well, for example, adds the time/date to a comment posting. Thanks for the heads-up. |
SearchFrom our Sponsor...Latest Mountain Lion HintsWhat's New:HintsNo new hintsComments last 2 daysLinks last 2 weeksNo recent new linksWhat's New in the Forums?
Hints by TopicNews from Macworld
From Our Sponsors |
|
Copyright © 2014 IDG Consumer & SMB (Privacy Policy) Contact Us All trademarks and copyrights on this page are owned by their respective owners. |
Visit other IDG sites: |
|
|
|
Created this page in 0.06 seconds |
|