]> sipb.mit.edu Git - ikiwiki.git/blobdiff - doc/news/sanitization.mdwn
sipb-www / ikiwiki.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
oops
[ikiwiki.git] / doc / news / sanitization.mdwn
diff --git a/doc/news/sanitization.mdwn b/doc/news/sanitization.mdwn
new file mode 100644 (file)
index 0000000..6ce2541
--- /dev/null
+++ b/doc/news/sanitization.mdwn
@@ -0,0 +1,7 @@
+ikiwiki's main outstanding security hole, lack of [[HtmlSanitization]] has
+now been addressed. ikiwiki now sanitizes html by default.
+
+If only trusted parties can edit your wiki's content, then you might want
+to turn this sanitization back off to allow use of potentially dangerous
+tags. To do so, pass --no-sanitize or set "sanitize => 0," in your
+[[ikiwiki.setup]].
wiki compiler