* Larry Masinter wrote: >Going back to the "scope" question, should the mimesniff document cover >sniffing in contexts other than browsers, e.g., by web servers during >file upload, by proxies or firewalls or gateways, by spiders or search >engines, etc.?
I note that the current draft does not seem to address web browser up- loads (if a browser uploads a GIF as image/jpeg, and the server echoes data and label back verbatim, and then the browser treats that as a GIF even though it just said it's a JPEG, that would seem to be bad), but more generally I would rather have a "web browser only" specification soon and then talk about what other components might be relevant and how to address those, than try and address all of it at once. -- Björn Höhrmann · mailto:[email protected] · http://bjoern.hoehrmann.de Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de 25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/ _______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
