On Wed, Jul 22, 2009 at 8:43 PM, Adrien de Croy<adrien@qbik.com> wrote: > my issue is that there will never be any incentive for sites to clean > themselves up as long as browsers ignore the problems (This particular > problem is not helped either by IIS5 not enforcing compliance of script > output). > > This then puts pressure on proxy vendors to follow the lead of the browsers, > and basically ignore / work around the problems, or attempt to clean up the > response. > > This is the spawning ground of security problems. Indeed. In the alternative, one could produce an HTTP spec that contained detailed error recovery instructions. This approach would save the next proxy vendor from having to relearn these lessons the hard way. AdamReceived on Thursday, 23 July 2009 04:07:18 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:38:39 GMT