--- Comment #3 from Derk-Jan Hartman <> 2010-11-12 17:11:51 
UTC ---
I think this could be solved by simply adding the header:

Access-Control-Allow-Origin: *

to all requests ? Unless we have non-public data that comes
from that server, but I doubt that such data uses the bits server, because it
would not be cache-able.

Geoiplookup has a similar security issue I guess, but that does carry sensitive
data, and thus needs specific Origin targeting (API has this I believe).

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are on the CC list for the bug.

Wikibugs-l mailing list

Reply via email to