ons 2006-12-20 klockan 17:24 -0800 skrev Paul Leach: > Authentication protocols that provide integrity protection can rely on > the original wording to mean that they can include fields that proxies > aren't allowed to modify in the integrity check. Are you sure? I very much doubt thats the reason to the specific wording about the Server header.. Have always read that part as that the proxy have no business mucking around with the Server header to advertise itself, it MUST use the Via header for this purpose. The Server header is supposed to advertise the software version of the products making up the server, not as a communication channel or capability indication. Is it really true that proxies is not allowed to clean up LWS in Server headers? I have always considered folding/unfolding, LWS cleanup and and list merging to be safe operations on all headers. Regards HenrikReceived on Thursday, 21 December 2006 15:03:43 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 6 June 2008 08:04:30 GMT