On Wed, 30 Aug 1995, Shel Kaphan wrote: > Brian Behlendorf writes: > ... > > This assumes "server" is a contiguous authority - not true, there are many > > servers out there where one group putting pages might be antagonistic to > > another group on the same server. > > How about this: on the client side, caches and user agents just need > to check that it's from the same server. > > On the server side, servers should be configurable to allow or > disallow Location headers from parts of themselves to other parts of themselves. > At least this puts authority and responsibility in the right places. > > Yes, this is some work for server writers that makes this all somewhat > less attractive. But I personally think it's worth it. Then the server *has* to make sure it parses the headers of every object, making "nph" scripts impossible. Of course, HTTP-NG (and even HTTP keepalives) make nph scripts difficult to support anyways, so maybe that's a piece of server functionality with a limited life span as it is. Brian --=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-- brian@organic.com brian@hyperreal.com http://www.[hyperreal,organic].com/Received on Wednesday, 30 August 1995 21:27:43 EDT
This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:31:27 EDT