Jim Vanderveen wrote: > >Can ARCHIVE_HTML_SANITIZER be set on a per-list basis? It seems to be >a global setting, but I just wanted to check with all the brains >behind Mailman before I pursue other options. > >BTW, we're running Mailman 2.1.2
No, it can't. At least one reason why not is setting it to allow unescaped HTML enables XSS attacks through the archives, and this is a choice that should be made by a site admin, not a list owner. -- Mark Sapiro <[EMAIL PROTECTED]> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
