This project has moved. For the latest updates, please go here.
2

Resolved

Error: A potentially dangerous Request.Form value was detected from the client

description

I just installed a fresh installation of Graffiti 1.3 Beta 2 on XP Pro with ASP.NET 4.0
 
The installation went fine, but when I try to publish a post I get a server error: "A potentially dangerous Request.Form value was detected from the client"
 
Researching a bit on the internet I find a solution which is to include <httpRuntime requestValidationMode="2.0" /> in the web.config file as described here:
http://www.a2zmenu.com/Blogs/AspNet/A-potentially-dangerous-Request-Form-value-was-detected.aspx
 
This solution worked for me, but I would like to know if this is bad practice with regards to security?

comments

jkillebrew wrote May 11, 2013 at 6:31 AM

this option is included in the latest source and will be in the next release, though commented out by default since it would cause an error on any lower version of .NET than 4.0.

wrote May 11, 2013 at 6:31 AM

wrote May 16, 2013 at 9:38 AM

wrote May 16, 2013 at 9:38 AM

wrote Jun 14, 2013 at 7:16 AM