Need help? Check out our Support site, then


Allow Embedded Files!

  1. Actually I stand corrected. The right side of the post box has gone missing yet again. :(

  2. Well,I am just curious because the article shown says that Myspace had problems with a flash file.In order to modify such a thing(the flash file) it would have had to be hosted at Myspace.Hosting the file and embedding it are two very different things.Embedding is much like linking in that the file is not actually hosted where the embed code it.It is on a different server.

    So while, I can see that it would be unwise to host these files, I cannot see how embedding them would be the same or a danger.

    AXE

  3. Embeding in not just like linking to a file. It puts it into the browser.

    IE has has security concerns with the embed tag in the past as well.

  4. Yes, but the original source file it still on another server and that is what was modified(given the virus).

    I was stating what was fairly obvious that the article you held up as your reason why WP.com does not allow embeding is not even about embedded files.It was about hosted files.

    It is like saying"My friend dies yesterday from a bad plum, so from here on out, I am not going to eat any Apples."

    When you present that kind of logic to people it is no small wonder that they leave.Like it or not every person who posts in here is a potential future customer.

    Anyway, I am done talking with the doorknob.

    AXE

  5. So glad I took the time to try and help you.

  6. Yes, he's a charmer, ain't he?

  7. >>If you're really that insistent on leaving then can I suggest that >>you get some hosting and download the WP software? You get the best >>of all worlds then. WordPress, embedding whatever you like, complete >>control over the themes and you don't have to use blogger or >>MySpace!

    for my case, I like to have a local copy for my blog in my machine.
    But Im NOT able to import the exported xml of my live blog into my local blog.

    http://wordpress.com/forums/topic.php?id=3583&replies=13
    http://wordpress.org/support/topic/85101?replies=4

    Thanks.

  8. There's a comment on Scobleizer that I thought explained it well. It reads:

    Blogs are served from {name}.wordpress.com. The WordPress cookie is delivered to any site that ends in wordpress.com. Any Javascript on the page is legitimately allowed to look up cookies that would be sent to the domain it’s served from.

    This means that if you can run Javascript on a hosted WordPress page, you can retrieve the login cookie from another WordPress user, and then pass it to an external site. (Generally by creating an image reference that includes the encoded login cookie.)

    This is just a basic part of the underlying technology of the web browser, and it’s required for sites like gmail, Yahoo!, and others to operate.

    There are ways a site can avoid this problem (generally by constantly changing the login cookie data with EVERY response, and invalidating the old ones immediately), but they require more horsepower on the backend than the blogging sites are really able to provide, and there’s still usually a small window of opportunity.

    This is why Livejournal, WordPress, and most other hosted sites disallow Javascript on their pages.

  9. Sorry, I get a little nasty when people are not explaining something to me and just giving me a standard answer or as the case may be, a answer that does not make sense. The comment that was on Scobe's blog did explain it much better than anything I saw here.

    Lesson to be learned from this...Don't answer questions if you don't really know the real answer.

    AXE

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags