[EMAIL PROTECTED] wrote: >> Do you agree that *if* your project is the only one, or part of a small >> group that not support/use link fingerprinting, that your users might >> see this as a weak point? Wouldn't that, eventually, make people >> believe that you don't care, or that your work is not so safe after all? >> Might be a risk to install? > > Why haven't they been picked up by a non-partisan standards organization > (e.g., IEEE, ISO, W3C, OASIS, etc)? > Has Gerv proposed an RFC or similar document? All I know about is > http://www.gerv.net/security/link-fingerprints/
Not to my knowledge, no, but they are referring to this RFC: http://www.ietf.org/rfc/rfc2396.txt which BTW is already obsoleted by this one: http://www.ietf.org/rfc/rfc3986.txt -- Michael Vincent van Rantwijk - MultiZilla Project Team Lead - XUL Boot Camp Staff member - iPhone Application Developer _______________________________________________ Project_owners mailing list [email protected] http://mozdev.org/mailman/listinfo/project_owners
