1
0
mirror of https://github.com/vichan-devel/vichan.git synced 2024-11-30 10:14:37 +01:00
vichan/inc/lib/htmlpurifier-4.5.0/docs/enduser-security.txt

19 lines
534 B
Plaintext
Raw Normal View History

2014-09-24 01:25:04 +02:00
Security
Like anything that claims to afford security, HTML_Purifier can be circumvented
through negligence of people. This class will do its job: no more, no less,
and it's up to you to provide it the proper information and proper context
to be effective. Things to remember:
1. Character Encoding: see enduser-utf8.html for more info.
2. IDs: see enduser-id.html for more info
3. URIs: see enduser-uri-filter.html
4. CSS: document pending
Explain which CSS styles we blocked and why.
vim: et sw=4 sts=4