Differences

This shows you the differences between two versions of the page.

--- config:htmlok [2022-05-06 21:31] – [Configuration Setting: htmlok] 50.4.142.24
+++ config:htmlok [2022-06-20 17:49] (current) – Added extra-comments from Andi in the forum gerardnico
@@ Line 3: / Line 3: @@
 Defines if embedding HTML using the ''%%<html>%%'' tags is allowed. This may break the layout and XHTML compliance if wrong HTML is inserted.
-:!: This is a big security risk when used on a freely accessible site because it enables anyone to embed arbitrary JavaScript in your wiki pages. This can be used to steal cookie and gain unauthorized privileged access to your wiki, leading to possibly escalated privileges which may allow to take over your server, steal personal information etc. Unless you know exactly what you're doing you should **never enable this option**.
+:!: You should **never enable this option**, unless:
+  * you are the only user with write permissions
+  * you know exactly what you're doing
+:!: This is a big security risk when used on a freely accessible site because it enables anyone to embed arbitrary JavaScript in your wiki pages. This can be used to steal cookie and gain unauthorized privileged access to your wiki, leading to possibly escalated privileges which may allow to take over your server, steal personal information etc.
   * Type: Boolean
@@ Line 9: / Line 17: @@
 {{:config:security.png  }} **Security Warning**: Changing this option could present a security risk.
 ===== See also =====