use html purifier for sanitation

author: Bernhard Posselt <nukeawhale@gmail.com> 2013-05-04 00:15:41 +0200
committer: Bernhard Posselt <nukeawhale@gmail.com> 2013-05-04 00:15:41 +0200
commit: 10831dd274ff65d4852b47dbc398adae61845206 (patch)
tree: 9f9397bb7433fd53bfacf88d8c8b3cf2ef50e27d /3rdparty/htmlpurifier/README
parent: 7b628a3e4d105f2e571d0fe142d59f201d6a10d0 (diff)
1 files changed, 24 insertions, 0 deletions
diff --git a/3rdparty/htmlpurifier/README b/3rdparty/htmlpurifier/README
new file mode 100644
index 000000000..a05fdb7d1
--- /dev/null
+++ b/3rdparty/htmlpurifier/README
@@ -0,0 +1,24 @@
+
+README
+    All about HTML Purifier
+
+HTML Purifier is an HTML filtering solution that uses a unique combination
+of robust whitelists and agressive parsing to ensure that not only are
+XSS attacks thwarted, but the resulting HTML is standards compliant.
+
+HTML Purifier is oriented towards richly formatted documents from
+untrusted sources that require CSS and a full tag-set.  This library can
+be configured to accept a more restrictive set of tags, but it won't be
+as efficient as more bare-bones parsers. It will, however, do the job
+right, which may be more important.
+
+Places to go:
+
+* See INSTALL for a quick installation guide
+* See docs/ for developer-oriented documentation, code examples and
+  an in-depth installation guide.
+* See WYSIWYG for information on editors like TinyMCE and FCKeditor
+
+HTML Purifier can be found on the web at: http://htmlpurifier.org/
+
+    vim: et sw=4 sts=4
author	Bernhard Posselt <nukeawhale@gmail.com>	2013-05-04 00:15:41 +0200
committer	Bernhard Posselt <nukeawhale@gmail.com>	2013-05-04 00:15:41 +0200
commit	10831dd274ff65d4852b47dbc398adae61845206 (patch)
tree	9f9397bb7433fd53bfacf88d8c8b3cf2ef50e27d /3rdparty/htmlpurifier/README
parent	7b628a3e4d105f2e571d0fe142d59f201d6a10d0 (diff)