Inserting Smileys - PHPIDS

Ok, I know we have discussed this before and how PHPIDS just LOVES smileys. So here is my question. How do we get our sites to allow smileys without having to bump our impact levels to 100+ ? My daughter posting a blog regarding how she was doing in college and I believe she added a smiley in it as well. This blocked her completely and send me an email with a total impact of 98..

Oh yeah, I also should mention that she was logged in using her Facebook credentials.

If it's disabling the ability to add smileys, then fine, but I would prefer a fix. If we are going to allow editors that will give the member an option to insert a smiley, then we should allow it without a PA email AND block.

Chris

As an option it is possible to disable PHPIDS at all, by settings all security impacts to -1

If the security impact has to be set so high for routine member interactions with the site, how will PHPIDS ever know what a real attack is?

A smiley involves nothing more than an img tag, and I've never heard of a hacker clever enough to take a site down with the img tag.  There has got to be something fundamentally wrong with the way PHPIDS is integrated.

I understand that we can disable PHPIDS by changing the values to a -1 (negative) value, however is this the only way to fix this? I kinda like the fact that it will block actual spammers.

Chris

It would be nice if it could tell the difference between spammers and legit members.

Oh I totally agree HoustonLively, I mean as I stated before, if we are going to allow the members to do something, then let them do it. No need to block it.

Is there no other option besides PHPIDS that can help secure Dolphin without disabling some of its "normal" features?

Chris