CSS: notice images no wider than 100%

We should actually not allow remote images to be given in the src attribute
because they can be used for tracking and other nasty stuff without being
seen by the enduser.

Also, allowing remote images linked like this won't work for users who run
plugins like RequestPolicy etc. anyway. A better method would be to make
them listed as attachments instead. Then we can use that subsystem for
making thumbnails to store locally, hotlinking sources and whatnot.

diff --git a/theme/base/css/display.css b/theme/base/css/display.css
index cfc644d96be160774339f4bf2b900338776b4bfa..7d28cee8df4d387a70a48d262692e0d81e990389 100644 (file)
--- a/theme/base/css/display.css
+++ b/theme/base/css/display.css
@@ -713,6 +713,10 @@ font-style:italic;
     overflow-y: auto;
 }
 
+.notice .e-content img {
+    max-width: 100%;
+}
+
 .notice-options {
     margin-bottom: 7px;
     margin-top: 12px;