Forum OpenACS Q&A: Re: RFC: Security policy for OpenACS (Security hole in OpenACS 5.1!)

Collapse
2: Re: RFC: Security policy for OpenACS (Security hole in OpenACS 5.1!) (response to 1)
Posted by Ola Hansson on 05/28/04 07:16 PM
I couldn't agree more with you Jade. I'd prefer the toolkit to be as safe as possible by default. Since when is "high usability" equal to "low security"? We need "high" of both.

Also there was a discussion on a similar topic (allowing IMG tags and SRC attributes in postings) over here:
https://openacs.org/forums/message-view?message_id=182057