W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > November 2010

[Bug 11235] Support a rel attribute that restricts cookie transmission

From: <bugzilla@jessica.w3.org>
Date: Wed, 10 Nov 2010 14:47:25 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1PGBxN-0005hZ-4s@jessica.w3.org>
http://www.w3.org/Bugs/Public/show_bug.cgi?id=11235

--- Comment #10 from Anne <annevk@opera.com> 2010-11-10 14:47:24 UTC ---
No need to join. And you are wrong as to how cross-origin XMLHttpRequest
operates. It makes the request directly for simple GET requests. And this
already works in Firefox/Safari/Chrome. And also works in Internet Explorer
when using XDomainRequest. So I sort of think that vulnerability is already
inherent to the platform.

-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
Received on Wednesday, 10 November 2010 14:47:26 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 10 November 2010 14:47:27 GMT