PhSoftware

[Boris]

Philnate,

Thanks alot for your wpids, you're really a hard-coder

Now i've another problem: all html tags/attribute like i, strike, strong, href, strong, etc.. still appear (ONLY) on my comment area (NOT on post/article area) and these html tags can't be convert to usual html output. But it resolved by giving the comment on one line in wpids.php file =>

Code: Select all

/* add_filter('preprocess_comment', 'wpld_filter_html'); */

So my question, is that way can decrease the security feature of wpids? ..and can you tell me another method without do

Code: Select all

/* add_filter('preprocess_comment', 'wpld_filter_html'); */

so that all html tags on comment area can be convert to usual html output?

[Philnate]

Currently there's no other way to get HTML Tags within comments, any way the loss of protection should be minimal. We're working on a newer version which will be out soon, who will use some other application to keep Posts and Comments clean and safe. So upto the next bigger release you can use it, after the next version is released which contains HTMLPurifier you should update as this will allow it you to post HTML within your Comments, and it's granted that these HTML is mostly save(as you know 100% safety is never given, except you avoid something totally).

[Boris]

Philnate, thanks a million for your reply, and i'm still always waiting the next bigger release of wpids. Btw, i'm currently using HTML Purifier, but that plugin still can't post HTML tags within my Comments !

Thanks

[Philnate]

Sorry Boris, but I can't really follow you. You're using HTMLPurifier within your WordPress install? In order to be able to post HTML comments you'll need to do the steps you've applied before by deactivating some parts of WPIDS. Could you give me maybe some example of what HTML comment gets blocked?