We are using a blogging tool that is tiny, reliable, and (I
expect) secure. It probably still has bugs. Hollis has checked it,
but heaven knows 150 monkeys typing on keyboards in 10 different
browsers can make many things happen. Bug reports go to Hollis who
will sort, reduce, and funnel them to the development team.
On WYSIWYG authoring in a web browser
Ha! That interface was surely written by children and tested by
no one. The blogging tool takes the approach that it is your
browser's problem if it doesn't do a decent job. I think IE,
Firefox, and webkit based browsers all work, but sometimes it can
get a bit maddening if say you are at the end of post and are stuck
in bold mode. Try clicking things. Some of the browsers toggle
modes, some don't. (When it works it is pretty cool. I can drag URLs
into an article and get the title as the text of the link. You may
not be able to do that. There is always HTML mode if you need
it.)
On Script Injection Attacks
You will probably get an error about illegal content at sometime
while posting. It means you (or your lying browser) used a tag or
attribute that is not allowed. Usually it is ok to have stripped
it. Check the content and proceed.