comment on

Hi,

I didn't say there are cross-site scripting issues known right now, but I think in accepting information from 'untrusted' sources, one can't be paranoid enough. My point is that we don't know how harmful any given tag is because we can't be sure there are no bugs in the browser implementations (<insert rant about non open-sourced software here>). And even open-sourced browsers might contain bugs. Given the fact that in the past even simple things like <img>-tags have been exploitable in certain browsers, makes me think one can not be careful enough. Be prepared for the unexpected.

And I also am not totally against adding (some of) these tags (after all I don't have to do the coding), I just wanted these thoughts taken into consideration.

In reply to Re: Re: Re: Re: Re: Proposal: Adding to Approved HTML Tags by eXile
in thread Proposal: Adding to Approved HTML Tags by Belgarion

Posts are HTML formatted. Put <p> </p> tags around your paragraphs. Put <code> </code> tags around your code and data!

Titles consisting of a single word are discouraged, and in most cases are disallowed outright.

Read Where should I post X? if you're not absolutely sure you're posting in the right place.

Please read these before you post! —

Posts may use any of the Perl Monks Approved HTML tags:

a, abbr, b, big, blockquote, br, caption, center, col, colgroup, dd, del, details, div, dl, dt, em, font, h1, h2, h3, h4, h5, h6, hr, i, ins, li, ol, p, pre, readmore, small, span, spoiler, strike, strong, sub, summary, sup, table, tbody, td, tfoot, th, thead, tr, tt, u, ul, wbr

You may need to use entities for some characters, as follows. (Exception: Within code tags, you can put the characters literally.)

	For:		Use:
	&		`&`
	<		`<`
	>		`>`
	[		`[`
	]		`]`

Link using PerlMonks shortcuts! What shortcuts can I use for linking?

See Writeup Formatting Tips and other pages linked from there for more info.