]> sipb.mit.edu Git - ikiwiki.git/blobdiff - doc/news/sanitization.mdwn
* Removed --sanitize and --no-sanitize, replaced with --plugin htmlscrubber
[ikiwiki.git] / doc / news / sanitization.mdwn
index 6ce2541572cc7a0c8a551066ff6c26a028387822..419d589c94edbb8c9b085b43e9efc88d00b008f4 100644 (file)
@@ -1,7 +1,8 @@
-ikiwiki's main outstanding security hole, lack of [[HtmlSanitization]] has
-now been addressed. ikiwiki now sanitizes html by default.
+ikiwiki's main outstanding security hole, lack of html sanitization, has
+now been addressed. ikiwiki now sanitizes html by default, using the
+[[plugins/htmlscrubber]] plugin.
 
 If only trusted parties can edit your wiki's content, then you might want
 to turn this sanitization back off to allow use of potentially dangerous
-tags. To do so, pass --no-sanitize or set "sanitize => 0," in your
-[[ikiwiki.setup]].
+tags. To do so, pass --disable-plugin=sanitize or edit the plugins
+configuration in your [[ikiwiki.setup]].