Lars Aronsson wrote:
Platonides wrote:
If you come up with a solution, we'll be happy to hear about it.
Surely OpenOffice.org (Sun Microsystems) must be able to produce a validator in open source code?! Has this been asked of them? Why else do we try to use open formats?
Not that I am aware.
Or freely allow uploads but put these suspected objects in quaratine, that requires another trusted user to download with care and examine before the file is flagged as OK.
That breaks the wiki principle, and it would need special support from the software. Better to allow trusted users to bypass filetype checks and set some process for sending them for upload (after review) those files that "must be uploaded in X format".
Or would RTF work?
Those are much easier to validate :) At least they won't steal cookies. Still, we would need to check they don't have embedded objects.