On 2011-10-24 10:17, Tobias Gondrom wrote:
...
((Maybe this is another issue? I just wonder if the algorithm for "no
content-type" is the same, needs to be the same, as the algorithm for
"content-type via HTTP".)
I can imagine that the cases "no content-type given" and "wrong
content-type given" could be treated differently, but I am not sure
about it.
...
If you can define "wrong content-type" :-)
_______________________________________________
websec mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/websec
