[pmwiki-users] PmWiki default upload file formats
Petko Yotov
5ko at 5ko.fr
Mon Oct 31 18:37:43 CDT 2011
On Monday 31 October 2011 17:43:30, Patrick R. Michaud wrote :
> On Mon, Oct 31, 2011 at 04:44:03PM +0100, Eric Forgeot wrote:
> > and therefore more open format should be added by default:
> I have no problem with the notion of updating the list.
Added for the next version.
> Before adding any of the above to the defaults, let's be
> careful/certain that they don't add increased security risks.
The .svg format can contain scripting (JavaScript) but so can .html and .pdf
which are allowed. (Other possibly harmful but allowed formats like windows
executables and office documents normally are not opened inside the browser
and require user intervention.)
Petko
More information about the pmwiki-users
mailing list