I'm debating whether to use the editor in an online web system I'm developing, which is somewhat similar to a web based forum (like this one)...

One thing I'm very concerned about is how safe it will be. For instance, this forum, and many others, disable HTML in the messages so users can't post any scripts that could be malicious....

A user could switch the editor to HTML mode, and post whatever they like. I guess I could disable the HTML button, but I'm not sure if that's safe enough...

Does anyone have any ideas or comments?

I suppose if it were truly safe, they'd be using it here, incorporated into the free snitz forum pages...

Thanks for any advice.....

MMCP

Edited by - dstoltz on 07 Feb 2005 23:33:28

Anyone? Anyone?....Bueler?....Bueler?

MMCP

it's as safe as any html editor you can get in my opinion. most allow the switch button for wysiwyg.

<BLOCKQUOTE id=quote><font size=1 face="Verdana, Arial, Helvetica" id=quote>quote:<hr height=1 noshade id=quote>I suppose if it were truly safe, they'd be using it here, incorporated into the free snitz forum pages.. <hr height=1 noshade id=quote></BLOCKQUOTE id=quote></font id=quote><font face="Verdana, Arial, Helvetica" size=2 id=quote>

have brought this up myself, but i suppose the snitz one does the job it's designed too, so no need to change it.

and u could always have a look into removing the html button feature, by commenting it out in the scripts.

regards

Dave Thomas
<b>DMX Zone Manager</b>