[Bug 14700] New: Point out that Access-Control-Allow-Origin:* is safe for servers not behind a firewall from bugzilla@jessica.w3.org on 2011-11-05 (public-webappsec@w3.org from November 2011)

From: <bugzilla@jessica.w3.org>
Date: Sat, 05 Nov 2011 16:48:25 +0000
To: public-webappsec@w3.org
Message-ID: <bug-14700-4874@http.www.w3.org/Bugs/Public/>

http://www.w3.org/Bugs/Public/show_bug.cgi?id=14700

           Summary: Point out that Access-Control-Allow-Origin:* is safe
                    for servers not behind a firewall
           Product: WebAppsSec
           Version: unspecified
          Platform: PC
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: CORS
        AssignedTo: annevk@opera.com
        ReportedBy: annevk@opera.com
         QAContact: dave.null@w3.org
                CC: mike@w3.org, public-webappsec@w3.org


In the eventual "How to use CORS" section point out that you can use
Access-Control-Allow-Origin:* safely on servers not behind a firewall.

-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

Received on Saturday, 5 November 2011 16:48:31 UTC