Forum:Malicious JavaScript

Forums: Index &rarr; General discussion

This is going to be important. I notice that the Orain staff places important limitations on wiki admins to keep them in line with Orain intent and to protect user privacy. While it gives less freedom, it is important for protecting user privacy. In order to protect this, there needs to be some way to make sure that malicious JavaScript is not inserted into wikis or user JS pages. We need to make sure that sysop accounts are not hacked or that admins are not manipulated into inserting malicious scripts. If we have a form of review or automated detection whenever JavaScript is added, we need to make sure that any included files are inspected, since they could be used to store the malicious code outside of the wiki to avoid detection. Inquisitor Sasha (talk) 14:42, 16 March 2014 (UTC)