Use this administration tool to declare HTML tags you do not wish to allow as an option on your site where users enter text. If the user attempts to enter a 'disallowed' tag, it will simply be removed with no replacement. The tags with an asterisk (*) are strongly recommended to be marked as 'disallowed'. This is because the potential for a user to enter malicious code exists with the tags we have identified with an asterisk.

Also note there may be inadvertant tags disallowed if you use the wysiwyg within your place a listing process. The wysiwyg does not have the ability to represent flash or dynamic content within it. So even if you allowed the <param>, <object>, …etc tags to display this content within the wysiwyg the wysiwyg itself may remove the tags. The wysiwyg seems to correct html according to what it can display. So if your clients want to use dynamic object tags within their description and you allow their use make sure those clients know they will need to use the textarea box to enter their content instead of the wysiwyg.