[Bug 6670] New: Allow unescaped &s, at least in attributes that accept URLs from bugzilla@wiggum.w3.org on 2009-03-09 (public-html-bugzilla@w3.org from March 2009)

From: <bugzilla@wiggum.w3.org>
Date: Mon, 09 Mar 2009 18:49:15 +0000
To: public-html-bugzilla@w3.org
Message-ID: <bug-6670-2486@http.www.w3.org/Bugs/Public/>

http://www.w3.org/Bugs/Public/show_bug.cgi?id=6670

           Summary: Allow unescaped &s, at least in attributes that accept
                    URLs
           Product: HTML WG
           Version: unspecified
          Platform: PC
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Spec bugs
        AssignedTo: dave.null@w3.org
        ReportedBy: ian@hixie.ch
         QAContact: public-html-bugzilla@w3.org
                CC: ian@hixie.ch, mike@w3.org, public-html@w3.org


Based on data from Google, requiring &s to be escaped in URL-heavy pages (like
most major sites) causes something like a 6% increase in file size. This error
seems more common than the error it is trying to catch (accidentally forgetting
the semicolon in an entity), but it would leave sites exposed to accidental
entities, e.g. in the case of:

   http://example.com?cut&copy;paste;color&style&bold


-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

Received on Monday, 9 March 2009 18:49:25 UTC