urosm
/
ikiwiki
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

response

master
Joey Hess 2010-03-12 15:40:47 -05:00
parent afa930a9c4
commit 08485ec444
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
doc/todo/finer_control_over___60__object___47____62__s.mdwn
View File

@ -27,6 +27,13 @@ For Ikiwiki, it may be nice to be able to restrict [URI's][URI] (as required by
[[wishlist]] [[wishlist]]
> SVG can contain embedded javascript. The spec that you link to contains
> examples of objects that contain python scripts, Microsoft OLE
> objects, and Java. And then there's flash. I don't think ikiwiki can
> assume all the possibilities are handled securely, particularly WRT XSS
> attacks.
> --[[Joey]]
## See also ## See also
* [Objects, Images, and Applets in HTML documents][objects-html] * [Objects, Images, and Applets in HTML documents][objects-html]