From: Earnie B. <ea...@us...> - 2007-05-24 12:10:11
|
Quoting Keith Marshall <kei...@us...>: > > But, am I missing something here? Haven't I seen an option to make this > choice on an individual page by page basis? > Depends on the role access rights of the user. I chose ``Filtered HTML'' as the ``Input Format'' because ``Full HTML'' provides for XSS opportunities. If you feel that we can control XSS sufficiently we can allow ``Full HTML'' for the Static Page Maintainer. Earnie |