Difference between revisions of "AntiSamy Version Differences"

From OWASP
Jump to: navigation, search
m
m
 
Line 1: Line 1:
 
This page shows the different AntiSamy features and whether or not its available in a given port.<br>  
 
This page shows the different AntiSamy features and whether or not its available in a given port.<br>  
  
{| width="828" cellspacing="3" cellpadding="3" border="1" align="left" summary="Shows the capability and feature differences amongst AntiSamy versions." style=""
+
{| width="828" cellspacing="3" cellpadding="3" border="1" align="left" style="" summary="Shows the capability and feature differences amongst AntiSamy versions."
|+<br>  
+
|+ <br>  
 
|-
 
|-
 
! scope="col" | Feature<br>  
 
! scope="col" | Feature<br>  
Line 14: Line 14:
 
| align="left" | '''Can parse and validate CSS instead of removing it'''<br>''Does this version of AntiSamy allow users to provide cascading style sheets as well as HTML without accepting any dangerous data that could allow phishing or other visual attacks?''<br>  
 
| align="left" | '''Can parse and validate CSS instead of removing it'''<br>''Does this version of AntiSamy allow users to provide cascading style sheets as well as HTML without accepting any dangerous data that could allow phishing or other visual attacks?''<br>  
 
| align="center" | Yes<br>  
 
| align="center" | Yes<br>  
| align="center" | Yes<br>
+
| align="center" | Mostly<br>
 +
|-
 +
| align="left" | '''Allows advanced processing options'''<br>''Does this version of AntiSamy support "directives", which can be used to implement advanced functionality and usability?''
 +
| align="center" | Yes
 +
| align="center" | No
 
|}
 
|}
  
 
<br>
 
<br>

Latest revision as of 21:51, 19 October 2009

This page shows the different AntiSamy features and whether or not its available in a given port.


Feature
AntiSamy (Java)
AntiSamy (.NET)
Safely parses HTML
Does this version of AntiSamy allow users to provide HTML input that will filter out any dangerous data, including any JavaScript?
Yes
Yes
Can parse and validate CSS instead of removing it
Does this version of AntiSamy allow users to provide cascading style sheets as well as HTML without accepting any dangerous data that could allow phishing or other visual attacks?
Yes
Mostly
Allows advanced processing options
Does this version of AntiSamy support "directives", which can be used to implement advanced functionality and usability?
Yes No