aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorjoshtriplett <joshtriplett@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>2007-03-26 21:39:18 +0000
committerjoshtriplett <joshtriplett@0fa5a96a-9a0e-0410-b3b2-a0fd24251071>2007-03-26 21:39:18 +0000
commitb24394c0ecf954f2fc0ee2e156d19cd6382f8b70 (patch)
treeafee92fab76771f1f8a382665a4224a99ed1e445
parenta7d595d2106593c1a48f828c14d51cd3782ea29b (diff)
downloadikiwiki-b24394c0ecf954f2fc0ee2e156d19cd6382f8b70.tar
ikiwiki-b24394c0ecf954f2fc0ee2e156d19cd6382f8b70.tar.gz
Note that enabling or disabling the htmlscrubber plugin also affects some other
HTML-related functionality, such as whether [[meta]] allows potentially unsafe HTML tags.
-rw-r--r--doc/plugins/htmlscrubber.mdwn4
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/plugins/htmlscrubber.mdwn b/doc/plugins/htmlscrubber.mdwn
index 8e37a5bd5..1255d7723 100644
--- a/doc/plugins/htmlscrubber.mdwn
+++ b/doc/plugins/htmlscrubber.mdwn
@@ -23,6 +23,10 @@ The web's security model is *fundamentally broken*; ikiwiki's html
sanitisation is only a patch on the underlying gaping hole that is your web
browser.
+Note that enabling or disabling the htmlscrubber plugin also affects some other
+HTML-related functionality, such as whether [[meta]] allows potentially unsafe
+HTML tags.
+
----
Some examples of embedded javascript that won't be let through when this