[Webcom] New OSGeo Wiki Startpage proposal
Jason Birch
Jason.Birch at nanaimo.ca
Mon Jun 23 13:28:39 EDT 2008
I really like what you have done on that page, and support an enhanced
entry page. However, I have strong feelings against allowing use of raw
HTML in the Wiki for all users, purely from a security and reputation
perspective. To be clear, I am not worried about spam, but other kinds
of content.
Enabling raw HTML means that baddies get easy access to CSS attacks, and
can use our trusted domain to launch other kinds of attacks on our
users. This kind of activity, if not caught immediately, can also cause
our listings in Google to be flagged with messages informing the user
that the site may contain content harmful to their computer. In my
opinion, allowing this kind of content to remain on the site for even
the amount of time it takes for someone to notice the change and revert
it is not acceptable. If there was some additional step involved
(adding html-enabled users to a superuser group or something) I'd be OK
with it, or if you could only enable specific tags (divs), but as it
stands the potential for mischief is just too high.
Jason
-----Original Message-----
From: Markus Neteler
Subject: Re: [Webcom] New OSGeo Wiki Startpage proposal
To be honest: I find it rather frustrating that I spend quite some time
on
cleaning up the stuff and then I get blocked with some irrelevant Wiki
setting/-1 from a member here. Saying -1 is easy but then?
OSGeo is Do-ocracy for me. GTD.
I have polished the layout again: PLEASE TAKE A LOOK:
http://grass.osgeo.org/wiki/New_OSGeo_Wiki_Startpage
(don't care about the absent links as it's on a different wiki).
Can someone please enable <div> for the Wiki? I wasted also some
time to implement the francophone solution, it didn't work. Also, it's
not
that nice (sorry, guys). I am continuously monitoring recent changes,
the possibility that spam creeps in is pretty low. Like me, Mateusz,
and many others are watching changes in the Wiki. Tyler/Frank know
my Wiki activities statistics (top 4 or so in the entire OSGeo Wiki
space with 5000-6000 changes).
Quite energy consuming to fight this through... :( Don't feel that it's
a stupid idea to make the entry page more appealing.
More information about the Webcom
mailing list