On Jul 27, 2011, at 10:26 AM, Jelle Scholtalbers wrote:
Wouldn't it be better to at least validate e-mail addresses of new users on the main instance? This would probably resolve most issues related to unwanted content on the server?
Not in our experience, valid email addresses are trivial to fake.
Furthermore I agree with Peter, that if you want to block certain file types on your own instance, they should be removed from the datatypes_config.xml and thereby disabling them.
We still support these formats on main for everything other than upload (some tools generate PNG plots for example). A config option that disables the upload restrictions for valid users seems like a good idea, especially for sites with more stringent account policies. However I think we would still have to keep the restrictions in place on main.