[rt-devel] attachments

Christian Kurz Christian.Kurz at planNET.de
Mon Jan 22 08:32:06 EST 2001

On 01-01-18 Jesse wrote:
> Without print_html,  

> From: <jesse at fsck.com> would appear in your browser as From: 

> and users would be able to send javascript in their email which could
> be used to, among other things, attack RT.

Hm, and what would be a proper code to still get the URL highlighted as
Link but still use print_html to have a protecting against java-script?

Christian Kurz                                   http://www.planNET.de
planNET Systems GmbH                            mailto:info at planNET.de
Schoenfeldstr. 8                              Telefon: +49 721 66 36 0
D-76131 Karlsruhe                           Telefax: +49 721 66 36 199 

More information about the Rt-devel mailing list