CategoryProject

Introduction

All of the pages produced by my MovableType installation are processed by PHP. This allows me to do many nifty things that combine BakedPages and FriedPages. Unfortunately, this also has allowed others to post comments that can do not-so-nifty things, such as embed arbitrary PHP code. That's a BadThing?. And then there's the full array of nasty javascript exploit things people have tried on each other. I've not experienced an exploit via PHP code in comments, or via javascript in comments, but the danger had presented itself to me with the discovery of a bug.

Rather than wait until something bad happens, I made a filtering tag plugin for my comments. I happened to have the source code for LiveJournal laying around, and they filter comments, so I figured what the hell? Their filtering code should be somewhat mature, banged upon, and usable.

So, I dug it out, and stole it, and beat into shape for use in MovableType. It seems good so far - let me know if you find any problems with it!

ShareAndEnjoy, and give your thanks to Brad.

Downloads

• Current Version:
  • mt-cleanhtml-20020927.tar.gz - Corrected directory name "extdir" to "extlib"

• Archived Versions:
  • mt-cleanhtml-20020926.tar.gz - Initial release

Documentation

Installation

1. Download the above tarball.
2. Create a directory called extlib in your MovableType directory, if necessary.
3. Unpack the tarball in your MovableType directory.

Usage

• Use MTCleanHTMLComment tags to surround comments when you display them in your templates.

License

This software is provided as-is. You may use it for commercial or personal use. If you distribute it, please keep this notice intact.

Basically: Do what you want with it as long as you acknowledge who wrote what, and don't blame me if you poke your eye out with it.

Attachment	Action	Size	Date	Who	Comment
mt-cleanhtml-20020926.tar.gz	manage	5.7 K	26 Sep 2002 - 04:26	TWikiGuest
mt-cleanhtml-20020927.tar.gz	manage	5.7 K	27 Sep 2002 - 17:02	LesOrchard