Note: You are currently viewing documentation for Moodle 3.3. Up-to-date documentation for the latest stable version of Moodle is probably available here: report/security/report security check embed.

report/security/report security check embed

From MoodleDocs
Revision as of 07:29, 28 November 2016 by Helen Foster (talk | contribs) (explanation)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.

Allowing ordinary users to embed Flash and other media in their texts (e.g. forum posts) can be a problem because those rich media objects can be used to steal admin or teacher access, even if the media object is on another server.

Thus it is recommended that the setting 'Allow EMBED and OBJECT tags' in 'Site policies' is left unticked.

See also