#23: spec should mention proposed "nosniff" headers in HTTP even if not adopting
them
There have been some implementations which have attempted to add a header
for saying "I really mean it" for the content-type.
Even if this isn't supported by the standard sniffing algorithm, a
reference and even an analysis of why it doesn't work belongs here (lest
we repeat the discussion over and over.)
--
------------------------+--------------------------------------------
Reporter: masinter@… | Owner: draft-ietf-websec-mime-sniff@…
Type: defect | Status: new
Priority: minor | Milestone:
Component: mime-sniff | Version:
Severity: - | Keywords:
------------------------+--------------------------------------------
Ticket URL: <http://trac.tools.ietf.org/wg/websec/trac/ticket/23>
websec <http://tools.ietf.org/websec/>
_______________________________________________
websec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/websec
