W3C home > Mailing lists > Public > public-appformats@w3.org > February 2008

Re: CSR and Mozilla - Clarifying HTTP Header Filtering

From: Anne van Kesteren <annevk@opera.com>
Date: Thu, 21 Feb 2008 16:51:25 +0100
To: "Mark Baker" <distobj@acm.org>, "Jonas Sicking" <jonas@sicking.cc>
Cc: public-appformats@w3.org
Message-ID: <op.t6vszzpj64w2qv@annevk-t60.oslo.opera.com> 

On Thu, 21 Feb 2008 16:40:54 +0100, Mark Baker <distobj@acm.org> wrote:
>> When you use curl you will not be able to include the auth headers or
>> cookies of other users. You will also not be able to use curl to  
>> connect to websites inside firewalls.
>
> But Anne was concerned about existing sites, viz a viz his Amazon
> example. So which is it?

curl is not able to target any sites using cookie information or HTTP  
authentication from the end user. (Unless the end user did it himself, but  
in that case there's no issue.) curl is also not able to target intranet  
servers. Both are an issue.


-- 
Anne van Kesteren
<http://annevankesteren.nl/>
<http://www.opera.com/>
Received on Thursday, 21 February 2008 15:47:25 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 21 February 2008 15:47:25 GMT