We build. You grow.
Get best community software hereStart a social network, a fan-site, an education project with oxwall - free opensource community software
Embedding objects - serious security issue? | Forum
Derek
Sep 6 '12
Hi, just tried embedding a magazine from issuu via the video button below comments. This domain is not listed in my video domains plugin yet the issue magazine still showed. Does this mean anyone can embed flash objects via comments?? Is this a security issue?
The Forum post is edited by Derek Sep 6 '12
Team Alia
Sep 14 '12
Dear Derek, you are right, users can embed any flash objects via comments.
For security purposes, it is better to turn the ability to add custom HMTL/Javascript code by users off, since universal method for identifying malicious code doesn't exist. Oxwall cuts out most popular malicious codes, and we always improve this system. However, right now it is not possible to be 100 % protected.
For security purposes, it is better to turn the ability to add custom HMTL/Javascript code by users off, since universal method for identifying malicious code doesn't exist. Oxwall cuts out most popular malicious codes, and we always improve this system. However, right now it is not possible to be 100 % protected.
