[Using Sakai] Anti-Samy filering: on or off
Sam Ottenhoff
ottenhoff at longsight.com
Mon Feb 9 08:39:11 PST 2015
The only justification for turning HTML filtering off would be that you
have complete trust in all of your users and that only authorized users are
able to post content to your Sakai instance. Maybe your instance is used
by a small group of professional collaborators and worrying about a user
modifying grade information via XSS attacks doesn't apply.
On Mon, Feb 9, 2015 at 11:34 AM, Adam Marshall <adam.marshall at it.ox.ac.uk>
wrote:
> Does anybody here not have Anti-Samy filtering turned on? If so how are
> you justifying this (you can reply off-list if you like).
>
> adam
>
> --
>
> ** Note change of email address to adam.marshall at it.ox.ac.uk **
>
> Dr A C Marshall, WebLearn Service Manager, University of Oxford.
> IT Services, 13 Banbury Rd, Oxford. OX2 6NN.
>
>
>
> _______________________________________________
> sakai-user mailing list
> sakai-user at collab.sakaiproject.org
> http://collab.sakaiproject.org/mailman/listinfo/sakai-user
>
> TO UNSUBSCRIBE: send email to
> sakai-user-unsubscribe at collab.sakaiproject.org with a subject of
> "unsubscribe"
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-user/attachments/20150209/59a7f839/attachment.html
More information about the sakai-user
mailing list