I think we should always sniff or never sniff, for simplicity.
Philip
On Wed, 08 Sep 2010 19:14:48 +0200, David Singer sin...@apple.com wrote:
what about don't sniff if the HTML gave you a mime type (i.e. a source
element with a type attribute), or at least don't sniff for the
purposes of
On Sep 9, 2010, at 00:47, Ian Hickson wrote:
On Fri, 3 Sep 2010, Henri Sivonen wrote:
When evaluating a parser-inserted script, there are three potential script
global objects to use:
1) The script global object of the document whose active parser the parser
that inserted the script is.
Hello,
I'm looking for a way to define valid partial HTML fragments that can
be included into other documents using a server-side language or
injected using AJAX. The current specification doesn't have any major
restrictions in this area but it always require the presence of a
TITLE tag which in
On Thu, Sep 9, 2010 at 6:06 PM, Rostislav Hristov
rostislav.hris...@gmail.com wrote:
Hello,
I'm looking for a way to define valid partial HTML fragments that can
be included into other documents using a server-side language or
injected using AJAX. The current specification doesn't have any
On Thu, Sep 9, 2010 at 9:06 AM, Rostislav Hristov
rostislav.hris...@gmail.com wrote:
Hello,
I'm looking for a way to define valid partial HTML fragments that can
be included into other documents using a server-side language or
injected using AJAX. The current specification doesn't have any
I'm actually looking into manually editing these in an authoring
environment and this is why I want them to be valid.
The parsing section looks fine but it doesn't help in this case.
Best,
Rostislav
Asual - Open software that
On Thu, Sep 9, 2010 at 6:37 PM, Rostislav Hristov wrote:
I'm actually looking into manually editing these in an authoring
environment and this is why I want them to be valid.
The parsing section looks fine but it doesn't help in this case.
Yes, sorry, I was thinking in terms of parse errors.
I saw the iframe element adds the attribute 'sandbox' in HTML5, which can
better protect users from malicious content.
so I want to know whether or not there are other changes, HTML5 can
(partially) solve some vulnerabilities in HTML4 ?
thanks.
I can't think why always sniffing is simple, or cheap, or desirable. I'd love
to get to never-sniff, but am not sanguine.
On Sep 9, 2010, at 0:07 , Philip Jägenstedt wrote:
I think we should always sniff or never sniff, for simplicity.
Philip
On Wed, 08 Sep 2010 19:14:48 +0200, David
Much of this discussion has focused on the careless server operator. What
about the careful ones?
Given the past history of content sniffing and security warts, it is useful
- or at least comforting - to have a path for the careful server to indicate
I know this file really is intended to be
On Sep 9, 2010, at 16:38 , Andy Berkheimer wrote:
Much of this discussion has focused on the careless server operator. What
about the careful ones?
Given the past history of content sniffing and security warts, it is useful -
or at least comforting - to have a path for the careful
11 matches
Mail list logo
