Since I am firmly in the
expose, don't hide camp, I would like to bring up a
discussion about the fact the nodes on this site
are editable by third parties. Not only can text be added,
be used to grab things that should not be (e.g. cookie
info). How do we limit this? Nobody has a really malicious
home node or post that I know of right now (although some
log you out, which I find really rude), but it would
be fairly easy to create a simple link in a post that
would do Bad Things.
Perhaps we could limit HTML to simple things, like
A, LI, OL, UL, etc. and only allow more advanced and/or
easily abused things like FONT H1 SCRIPT to higher levels?