0- don't serve arbitrary content except as attachments
1- serve it within the standard domain (trust it not to be malicious)
2- serve it from a different domain (with --raw-prefix)
With this and it's dependency merged, what's the default, 0 or 1? I hope it's 0 and you need to opt in to 1.
That looks good, and it's a nice clean fix.
iirc, there are now 3 options
0- don't serve arbitrary content except as attachments
1- serve it within the standard domain (trust it not to be malicious)
2- serve it from a different domain (with --raw-prefix)
With this and it's dependency merged, what's the default, 0 or 1? I hope it's 0 and you need to opt in to 1.