| Author |
 Topic Search  Topic Options
|
suedechaser 
Groupie
Joined: 25 February 2006
Location: USA
Status: Offline
Points: 129
|
 Post Options
 Thanks(0)
 Quote  Reply
 Topic: HTML in post
Posted: 11 December 2006 at 5:43am |
|
Hello everyone,
Is it possible to somehow copy/paste html into a post - like a newsletter template - so it can be viewed like an emailed newsletter?
regards
suede
|
 |
iSec
Senior Member
Joined: 13 February 2005
Status: Offline
Points: 1140
|
Post Options
Thanks(0)
Quote Reply
Posted: 11 December 2006 at 6:57am |
You could enable the ALLOW HTML feature from the admin area but i don't recommend it due to obvious security issues... Can't you just copy the actual content (not the html code) of that page ... and paste it right away onto the RTE?
|
|
es0p0s
Newbie
Joined: 16 November 2006
Status: Offline
Points: 4
|
Post Options
Thanks(0)
Quote Reply
Posted: 11 December 2006 at 11:23am |
|
where is the ALLOW HTML feature to enable it ,don't worry about security issues it's my prob.
also a copy /paste of the html code will have the results of view as the page was posted on itself ?
Edited by es0p0s - 11 December 2006 at 11:34am
|
|
suedechaser
Groupie
Joined: 25 February 2006
Location: USA
Status: Offline
Points: 129
|
Post Options
Thanks(0)
Quote Reply
Posted: 11 December 2006 at 1:11pm |
|
Hi Info Tech,
If I understand you correctly, you say to copy the actual newsletter page into the forum - ie right click, select all, copy, paste - seems to work OK.
But isn't this copying the html code too? What about the security risk?
regards
suede
|
|
iSec
Senior Member
Joined: 13 February 2005
Status: Offline
Points: 1140
|
Post Options
Thanks(0)
Quote Reply
Posted: 11 December 2006 at 6:41pm |
es0p0s, I just checked teh admin area and found out that this feature is no longer available. I'm sure it was removed to reduce security risks, still there is always way to mod it if you know how to.
Suedechaser, yes, it is copying the HTML code too, but there is no security risk in that as you have already seen its output. If you allow HTML on your forum then someone might come in and post something malicious (which you do not have control over) that can cause problems.
|
|
suedechaser
Groupie
Joined: 25 February 2006
Location: USA
Status: Offline
Points: 129
|
Post Options
Thanks(0)
Quote Reply
Posted: 12 December 2006 at 1:32am |
|
Hi Info Tech,
Thanks for clarifying that. But how do I know that code I paste in, using this method, isn't already malicious? I don't have a really tight grasp on html, so please excuse if this is a simple question.
regards
suede
|
|
iSec
Senior Member
Joined: 13 February 2005
Status: Offline
Points: 1140
|
Post Options
Thanks(0)
Quote Reply
Posted: 12 December 2006 at 4:08am |
Well, if you look at the content which you would like to post, how does it behave? There is no risk if it is behaving normally like a regular web page. WWF also filters the content of the posted message to make sure it does not change the layout of the forum tables.
For the HTML, I remember a few years back I used to post at a php-based message baord made by infopop, I could post a code that messes up the entire site page. So having it enabled was a bad idea. Hopefully one day it will be so that admins can specifiy which group is permitted to use it rather than having it available to all.
But what are you trying to do exactly? Can you give more details or an example on how you want to do it?
Edited by Info_Tech - 12 December 2006 at 4:14am
|
|
es0p0s
Newbie
Joined: 16 November 2006
Status: Offline
Points: 4
|
Post Options
Thanks(0)
Quote Reply
Posted: 12 December 2006 at 9:20am |
|
well there is no risk the site is on a vpn with 7 subnets and about 200 users I know them personally :) I'll look for the mod you said
|
|
