W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2012

Re: Introducing a Session header...

From: Poul-Henning Kamp <phk@phk.freebsd.dk>
Date: Fri, 20 Jul 2012 16:56:03 +0000
To: Roberto Peon <grmocg@gmail.com>
cc: Willy Tarreau <w@1wt.eu>, HTTP Working Group <ietf-http-wg@w3.org>, James Snell <jasnell@gmail.com>, Philippe Mougin <pmougin@acm.org>
Message-ID: <23396.1342803363@critter.freebsd.dk>
In message <CAP+FsNcWPw6j68Y9g9HfAWxZu-83W4p1cX0OTd4Fngky=PdvgA@mail.gmail.com>
, Roberto Peon writes:

>I don't want this to turn into TLS vs not TLS, just pointing out that
>generating a shared nonce securely is something we already know how to do.

It doesn't have to be secure, it doesn't even have to be unique, to
serve the role I'm looking for, all I want is that the user-agent
gives us a routeable id.


-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.
Received on Friday, 20 July 2012 16:56:28 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 20 July 2012 16:56:34 GMT