diff options
author | Simon McVittie <smcv@ http://smcv.pseudorandom.co.uk/> | 2008-11-18 10:29:16 +0000 |
---|---|---|
committer | Simon McVittie <smcv@ http://smcv.pseudorandom.co.uk/> | 2008-12-11 21:14:03 +0000 |
commit | ebe140201ed53ee4f8cf5998c69e20d5fef2ad16 (patch) | |
tree | 9efb1bef4eb2bbb347c7c890390aa7343165f258 /doc | |
parent | 57e40b9ce5345530f31f4d1b25a49ed18228a8dd (diff) |
comments: sanitize the body of each comment before posting it
This should ensure that users can't "break out" from the enclosing
<div>, making it impossible to forge comments (assuming htmlscrubber
is enabled, and so is either htmlbalance or htmltidy).
Diffstat (limited to 'doc')
0 files changed, 0 insertions, 0 deletions