Question / Suggestion

how are [tr] and [td] a security risk?
Also why in the hell would it substitute HTML tags in the first place?

 

Because there is a difference between putting text into a pre-designed HTML plugin box and putting code between two html tags.

Large difference.

 

What? That doesn't annswer either question.

Anyways, I know HTML, and there are only a couple of tags that can cause security problem, and those are linking tabs, the security risk comes from directing you to another site. Table tags only control presentation, they can't cause security problems.

Putting CODE between the tags is different as well, thats CODE, has nothing to do with HTML at all, and to my knowledge, putting scripts in the posts won't acually run them.

 

BoP what kind of damage do you think would happen to the layout if I made a post that simply said "</tr>" and it was with HTML active?

 

Incorrect. Anything that can save text within an HTML code can access the server.

I'm not going to discuss this with you.

There are more dangers than <script> and <iframe>. For instance, a user could make a never-ending page with a simple css script.

 

Well, at least my quistion got awnsered. Thanks Jon. Looking forward to seeing this implemented. The forum will be even better without those nasty advertisers.

Locked.