[dokuwiki] disableactions and searchsnippets
- From: Andreas Gohr <andi@xxxxxxxxxxxxxx>
- To: dokuwiki@xxxxxxxxxxxxx
- Date: Thu, 21 Sep 2006 15:10:20 +0200
Hi all!
I just thought about the new disableactions feature. If someone disables the
source view he'd probably expect that this would protect the raw source of
pages completely (eg to do some crazy stuff like embedding php and putting
passwords in it) however using the search could reveal parts of this source
through the snippets again.
What do you think? Do we need to care for this or should we simply make it
clear that this is not a real security feature?
And if we care, how do we do it? even if we disable search snippets when
viewsource is disabled, one could probably gather info by the pure fact if
search produces a hit or not...
Andi
--
DokuWiki mailing list - more info at
http://wiki.splitbrain.org/wiki:mailinglist
- Follow-Ups:
- [dokuwiki] Re: disableactions and searchsnippets
- From: Chris Smith
Other related posts:
- » [dokuwiki] disableactions and searchsnippets
- » [dokuwiki] Re: disableactions and searchsnippets
- [dokuwiki] Re: disableactions and searchsnippets
- From: Chris Smith