Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Options

How to enable iframes in posts?!

I am still looking for any way to get a HTML 5 videos from youtube instead of flash embed; see also my discussion http://vanillaforums.org/discussion/22914/need-html5-iframed-video-support/p1

  • May be I should rephrase my question and ask - How to enable iframes in posts?!

I'm using:

  • Barcode plugin
    -Firefox with disabled Flash plugin

Comments

  • Options

    Carte Blanche in post is a good way to get hacked.

    Good example of where need overrides common sense.

    If it was just admins there is a raw html plugin.

    grep is your friend.

  • Options

    I don't care for security, all I need is a Video from Youtube in proper format, which I can get anywhere except Vanilla forum!

  • Options

    Example : here I CAN see youtube videos, but there seems like something customized...http://minelord.com/discussion/152

    But if I put the same link in my or this forum - it doesn't work and asks for flash.....

    I'm getting mad for a moth, and you tell me - security....

  • Options
    x00x00 MVP
    edited March 2013

    I'm getting mad for a moth, and you tell me - security....

    Get mad all you want it is people who take initiative who get things done, those that wait around for others to do it for them wait...

    You don't care for security, this is your problem not mine.

    grep is your friend.

  • Options

    ok, you may take care for security, I'll wait for some answer who doesn't.
    I'm not a coder and most peoples don't, and it is not a basic thing.

  • Options

    If you want to make your site insecure (potential for compromise of all user emails addresses, user private conversations,etc., etc. - which can occur if your site is hacked).
    Just go to the htlmlawed plugin - read the readme and remove the iframe from the disallowed list). but your on your own from here.

    I may not provide the completed solution you might desire, but I do try to provide honest suggestions to help you solve your issue.

  • Options

    @peregrine said:
    If you want to make your site insecure (potential for compromise of all user emails addresses, user private conversations,etc., etc. - which can occur if your site is hacked).
    Just go to the htlmlawed plugin - read the readme and remove the iframe from the disallowed list). but your on your own from here.

    Sounds better.
    So, can I do an exclusion for only youtube iframes?!

    I don't know what you mean with this security - most users are not coders to be able to use those insecurities, and who is able to hack can hack almost anything; it's like viruses in windows are allowed just to sell more antiviruses.

  • Options

    Once again, I suggest looking at the htmllawed plugin readme. As far as who is going to hack or who is not. I'm not even going there or debating it. I can't answer any further questions related to this.

    I may not provide the completed solution you might desire, but I do try to provide honest suggestions to help you solve your issue.

  • Options
    vrijvlindervrijvlinder Papillon-Sauvage MVP

    most users are not coders to be able to use those insecurities, and who is able to hack can hack almost anything; it's like viruses in windows are allowed just to sell more antiviruses.

    Sadly, people don't need to be coders to be hackers or even do it accidentally by copying and posting a script they don't know what it does.

    All you need is google search and you have all the tools to be a hacker.This link is not for teaching how to hack, it is for understanding how hacking is done and how to avoid it.

    http://html-xhtml-css.wonderhowto.com/how-to/hack-websites-using-cross-site-scripting-xss-160706/

Sign In or Register to comment.