October 12, 2008 - 10:10pm
This is a comment I submitted on my localhost site, with full HTML allowed for anonymous users. The fact that "XSS" came up in an alert means I'm vulnerable to attack.
If you want your skin to crawl more, visit the XSS Cheatsheet, which offers a number of techniques for XSS attacks. If you're ever in doubt, no better test than to attempt to hack yourself.
October 12, 2008 - 5:43pm
Reviewed Version: yui_editor-6.x-2.0
Depends on: Yahoo YUI
VERDICT: Outstanding! The only lovable Drupal WYSIWYG editor . Painless Installation, Great First Impressions, Easy to configure, image Uploading/insertion works out of the box, editor behavior solid and intuitive, and offers good security features.
In our last review of WYSIWYG editors, a certain editor won because it met my low expectations. Thanks to the tip from Sanjeev, I found an editor so good its off the charts.
Painless Installation, Great First Impressions
The moment after I installed YUI Editor I found this refreshing WYSIWYG smiling at me.
October 12, 2008 - 1:39am
Another amateurish sign: Todd Palin's outsize role in the mess. Branchflower said it was out of his jurisdiction to pass judgment on the First Gentleman, but his report paints an extralegal role for Todd Palin that would have made the Hillary Clinton of 1992 blush. In the report, the head of Gov. Palin's security detail says that Todd spent about half of his time in the governor's office — not at a desk (he didn't have one), but at a long conference table on one side of the office, with his own phone to make and receive calls. It became a shadow office, the informal Department of Getting Mike Wooten Fired.
Time on Palin
October 12, 2008 - 12:18am
I was doing a little SEO work for a friend. I thought the job would be simple enough... but that was before I knew of the iWeb. Even Dreamweaver, back in 2004's wysiwyg editor seems like a forward thinking, beacon of semantic markup compared to this monster.
But I'm getting ahead of myself... lets go back to why she had to pay me to do SEO work:
October 11, 2008 - 10:33pm
The hardest part about using drupal's javascript features is knowing where to begin: they remained an arcane mystery to me until today. After drinking a bit of whiskey, and studying how core was using Drupal.behavior, I learned it couldn't be simpler. If you don't know how to do this, take a moment:
Pages