public-webappsec@w3.org from January 2014 by thread

referrer directive expressiveness David Bruant (Thursday, 30 January)

• Re: referrer directive expressiveness Anne van Kesteren (Thursday, 30 January)
  • Re: referrer directive expressiveness David Bruant (Thursday, 30 January)
    • Re: referrer directive expressiveness Anne van Kesteren (Thursday, 30 January)
      • Re: referrer directive expressiveness David Bruant (Thursday, 30 January)

Processing of meta element David Bruant (Thursday, 30 January)

• Re: Processing of meta element Mike West (Thursday, 30 January)
  • Re: Processing of meta element David Bruant (Thursday, 30 January)

CSP 1.1 referrer + meta >= <meta name="referrer"> ? David Bruant (Thursday, 30 January)

• Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ? Mike West (Thursday, 30 January)
  • Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ? David Bruant (Thursday, 30 January)
    • Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ? Mike West (Thursday, 30 January)
      • Re: CSP 1.1 referrer + meta >= <meta name="referrer"> ? David Bruant (Thursday, 30 January)

(nonce | hash) Neil Matatall (Wednesday, 29 January)

• Re: (nonce | hash) Mike West (Wednesday, 29 January)

Agenda for 2014-01-28 Telecon. NOTE: new time, 1600 UTC Eric Rescorla (Wednesday, 29 January)

Security Review of Network Service Discovery Frederick.Hirsch@nokia.com (Tuesday, 28 January)

Subresource Integrity Length Extension? Andrew (Monday, 27 January)

• Re: Subresource Integrity Length Extension? Adam Langley (Monday, 27 January)
• Re: Subresource Integrity Length Extension? Frederik Braun (Tuesday, 28 January)
  • Re: Subresource Integrity Length Extension? Frederik Braun (Tuesday, 28 January)
  • Re: Subresource Integrity Length Extension? Frederik Braun (Wednesday, 29 January)

Fwd: CSP formal objection. Glenn Adams (Monday, 27 January)

• Re: CSP formal objection. Devdatta Akhawe (Monday, 27 January)
  • Re: CSP formal objection. Glenn Adams (Monday, 27 January)
• Re: CSP formal objection. Anne van Kesteren (Tuesday, 28 January)
  • Re: CSP formal objection. Brian Smith (Tuesday, 28 January)
    • Re: CSP formal objection. Mike West (Wednesday, 29 January)
      • Re: CSP formal objection. Glenn Adams (Wednesday, 29 January)
        • Re: CSP formal objection. Hill, Brad (Wednesday, 29 January)
          • Re: CSP formal objection. Bjoern Hoehrmann (Wednesday, 29 January)
            • Re: CSP formal objection. Hill, Brad (Wednesday, 29 January)
            • Re: CSP formal objection. Bjoern Hoehrmann (Wednesday, 29 January)
            • Re: CSP formal objection. Hill, Brad (Wednesday, 29 January)
            • Re: CSP formal objection. Bjoern Hoehrmann (Wednesday, 29 January)
            • Re: CSP formal objection. Neil Matatall (Wednesday, 29 January)
            • Re: CSP formal objection. Mike West (Wednesday, 29 January)
            • Re: CSP formal objection. Bjoern Hoehrmann (Wednesday, 29 January)
            • Re: CSP formal objection. Glenn Adams (Wednesday, 29 January)
            • Re: CSP formal objection. Bjoern Hoehrmann (Thursday, 30 January)
            • Re: CSP formal objection. Glenn Adams (Thursday, 30 January)
            • Re: CSP formal objection. Garrett Robinson (Thursday, 30 January)

Re: CSP and Fetch Anne van Kesteren (Friday, 24 January)

• Re: CSP and Fetch Mike West (Friday, 24 January)
  • Re: CSP and Fetch Anne van Kesteren (Friday, 24 January)

W3C WebAppSec WG Meeting Hill, Brad (Thursday, 23 January)

[webappsec] Informal meetup at AppSec California? Brad Hill (Thursday, 23 January)

• Re: [webappsec] Informal meetup at AppSec California? Neil Matatall (Thursday, 23 January)
  • Re: [webappsec] Informal meetup at AppSec California? Joel Weinberger (Saturday, 25 January)

[webappsec] New WG Teleconference Time Brad Hill (Thursday, 23 January)

Re: Sub-origins David Bruant (Thursday, 23 January)

CfC to publish new WD of CSP 1.1 Mike West (Monday, 20 January)

• Re: CfC to publish new WD of CSP 1.1 Devdatta Akhawe (Monday, 20 January)
  • Re: CfC to publish new WD of CSP 1.1 Sandeep Kamble (Tuesday, 21 January)
• Re: CfC to publish new WD of CSP 1.1 Garrett Robinson (Tuesday, 21 January)
  • Re: CfC to publish new WD of CSP 1.1 Neil Matatall (Tuesday, 21 January)
    • Re: CfC to publish new WD of CSP 1.1 Danesh Irani (Wednesday, 22 January)
      • Re: CfC to publish new WD of CSP 1.1 Ian Melven (Wednesday, 22 January)

Re: Are CSP directives case insensitive? John Wong (Friday, 17 January)

• Re: Are CSP directives case insensitive? Mike West (Saturday, 18 January)

[webappsec] Disambiguating some subresource integrity use-cases Brad Hill (Friday, 17 January)

• Re: [webappsec] Disambiguating some subresource integrity use-cases Devdatta Akhawe (Saturday, 18 January)

Invitation to connect on LinkedIn Sandeep Kamble (Friday, 17 January)

[integrity] Downloads Michal Zalewski (Thursday, 16 January)

• Re: [integrity] Downloads Michal Zalewski (Thursday, 16 January)
  • Re: [integrity] Downloads Mike West (Friday, 17 January)
    • Re: [integrity] Downloads Frederik Braun (Friday, 17 January)

errata link broken Steve Faulkner (Thursday, 16 January)

• Re: errata link broken Wendy Seltzer (Friday, 17 January)

CSP 1.1: What remains open (and important)? Mike West (Thursday, 16 January)

Beacon and CSP Ian Melven (Wednesday, 15 January)

• Re: Beacon and CSP Mike West (Thursday, 16 January)
  • Re: Beacon and CSP Ian Melven (Friday, 17 January)
    • Re: Beacon and CSP Anne van Kesteren (Friday, 17 January)
      • Re: Beacon and CSP Mike West (Wednesday, 29 January)
        • Re: Beacon and CSP Anne van Kesteren (Wednesday, 29 January)
        • Re: Beacon and CSP Garrett Robinson (Wednesday, 29 January)
          • Re: Beacon and CSP Hill, Brad (Wednesday, 29 January)

webappsec-ISSUE-56 (child src navigation): Should we restrict subsequent navigation within child-src? [CSP 1.1] Web Application Security Working Group Issue Tracker (Tuesday, 14 January)

• Re: webappsec-ISSUE-56 (child src navigation): Should we restrict subsequent navigation within child-src? [CSP 1.1] Mike West (Thursday, 16 January)

[integrity]: latency tradeoffs Adam Langley (Tuesday, 14 January)

• Re: [integrity]: latency tradeoffs Joel Weinberger (Tuesday, 14 January)
  • Re: [integrity]: latency tradeoffs Mike West (Wednesday, 15 January)
• Re: [integrity]: latency tradeoffs Mike West (Wednesday, 15 January)
  • Re: [integrity]: latency tradeoffs Adam Langley (Wednesday, 15 January)
    • Re: [integrity]: latency tradeoffs Joel Weinberger (Wednesday, 15 January)
      • Re: [integrity]: latency tradeoffs Devdatta Akhawe (Wednesday, 15 January)
        • Re: [integrity]: latency tradeoffs Michal Zalewski (Wednesday, 15 January)
          • Re: [integrity]: latency tradeoffs Boris Zbarsky (Wednesday, 15 January)
          • Re: [integrity]: latency tradeoffs Adam Langley (Wednesday, 15 January)
            • Re: [integrity]: latency tradeoffs Michal Zalewski (Wednesday, 15 January)
            • Re: [integrity]: latency tradeoffs Adam Langley (Wednesday, 15 January)
          • Re: [integrity]: latency tradeoffs Devdatta Akhawe (Thursday, 16 January)
        • Re: [integrity]: latency tradeoffs Frederik Braun (Thursday, 16 January)
          • Re: [integrity]: latency tradeoffs Devdatta Akhawe (Thursday, 16 January)
            • Re: [integrity]: latency tradeoffs Mike West (Friday, 17 January)
    • Re: [integrity]: latency tradeoffs Brad Hill (Wednesday, 22 January)
• Re: [integrity]: latency tradeoffs Pete Freitag (Wednesday, 15 January)
  • Re: [integrity]: latency tradeoffs Adam Langley (Wednesday, 15 January)
• Re: [integrity]: latency tradeoffs Oda, Terri (Wednesday, 15 January)
  • Re: [integrity]: latency tradeoffs Adam Langley (Wednesday, 15 January)

Re: Hashes/Nonce Source and unsafe-inline Neil Matatall (Tuesday, 14 January)

CSP Transition Tools Garrett Robinson (Monday, 13 January)

• Re: CSP Transition Tools John Wong (Tuesday, 14 January)
• Re: CSP Transition Tools Taras Ivashchenko (Tuesday, 14 January)
  • Re: CSP Transition Tools Ken Lee (Tuesday, 14 January)
• Re: CSP Transition Tools Frederik Braun (Wednesday, 15 January)
  • Re: CSP Transition Tools Sandeep Kamble (Wednesday, 15 January)
  • Re: CSP Transition Tools Yoav Weiss (Friday, 17 January)
    • Re: CSP Transition Tools Neil Matatall (Friday, 17 January)
      • Re: CSP Transition Tools Yoav Weiss (Friday, 17 January)
        • Re: CSP Transition Tools Neil Matatall (Friday, 17 January)
    • Re: CSP Transition Tools qll (Friday, 17 January)
      • Re: CSP Transition Tools Yoav Weiss (Friday, 17 January)
  • Re: CSP Transition Tools Ken Lee (Saturday, 18 January)
• Re: CSP Transition Tools Tim Brown (Wednesday, 15 January)

[cors] Add 'Range' to simple headers Steven Robertson (Monday, 13 January)

• Re: [cors] Add 'Range' to simple headers Anne van Kesteren (Monday, 13 January)
  • Re: [cors] Add 'Range' to simple headers Steven Robertson (Monday, 13 January)
    • Re: [cors] Add 'Range' to simple headers Anne van Kesteren (Monday, 13 January)

[webappsec] Agenda for Teleconference, 14 Jan 2014 Brad Hill (Monday, 13 January)

[integrity]: CSS-loaded resources. Mike West (Saturday, 11 January)

• Re: [integrity]: CSS-loaded resources. Tab Atkins (Monday, 13 January)
  • Re: [integrity]: CSS-loaded resources. Mike West (Thursday, 16 January)
    • Re: [integrity]: CSS-loaded resources. Tab Atkins (Thursday, 16 January)

Comments on Subresource Integrity Anne van Kesteren (Saturday, 11 January)

• Re: Comments on Subresource Integrity Mike West (Saturday, 11 January)
• Re: Comments on Subresource Integrity Anne van Kesteren (Monday, 13 January)
  • Re: Comments on Subresource Integrity Devdatta Akhawe (Monday, 13 January)
    • Re: Comments on Subresource Integrity Joel Weinberger (Tuesday, 14 January)
      • Re: Comments on Subresource Integrity Mike West (Tuesday, 14 January)
        • Re: Comments on Subresource Integrity Brad Hill (Tuesday, 14 January)

Re: "Subresource Integrity" spec up for review. Mike West (Saturday, 11 January)

• Re: "Subresource Integrity" spec up for review. Brad Hill (Sunday, 12 January)
  • Re: "Subresource Integrity" spec up for review. Ryan Sleevi (Monday, 13 January)
    • Re: "Subresource Integrity" spec up for review. Brad Hill (Tuesday, 14 January)
      • Re: "Subresource Integrity" spec up for review. Joel Weinberger (Tuesday, 14 January)
        • Re: "Subresource Integrity" spec up for review. Ryan Sleevi (Tuesday, 14 January)
          • Re: "Subresource Integrity" spec up for review. Joel Weinberger (Tuesday, 14 January)

[CORS] Does the Authorization header qualify as a CORS credential? Vladimir Dzhuvinov (Friday, 10 January)

• Re: [CORS] Does the Authorization header qualify as a CORS credential? Anne van Kesteren (Friday, 10 January)
• Re: [CORS] Does the Authorization header qualify as a CORS credential? Anne van Kesteren (Friday, 10 January)

How CSP is affected by HTML Imports (or vice versa) Frederik Braun (Thursday, 9 January)

Origin-scoped cache/cookie/storage context Anne van Kesteren (Thursday, 9 January)

• Re: Origin-scoped cache/cookie/storage context Henri Sivonen (Friday, 10 January)
• Re: Origin-scoped cache/cookie/storage context Mike West (Friday, 10 January)
  • Re: Origin-scoped cache/cookie/storage context Anne van Kesteren (Friday, 10 January)
    • Re: Origin-scoped cache/cookie/storage context Nasko Oskov (Friday, 10 January)
      • Re: Origin-scoped cache/cookie/storage context Anne van Kesteren (Saturday, 11 January)
        • Re: Origin-scoped cache/cookie/storage context Nasko Oskov (Tuesday, 14 January)
          • Re: Origin-scoped cache/cookie/storage context Anne van Kesteren (Wednesday, 15 January)
            • Re: Origin-scoped cache/cookie/storage context Boris Zbarsky (Wednesday, 15 January)
            • Re: Origin-scoped cache/cookie/storage context Nasko Oskov (Wednesday, 15 January)
            • Re: Origin-scoped cache/cookie/storage context Anne van Kesteren (Thursday, 16 January)
            • Re: Origin-scoped cache/cookie/storage context Nasko Oskov (Thursday, 16 January)

[integrity]: Origin confusion attacks. Mike West (Thursday, 9 January)

• Re: [integrity]: Origin confusion attacks. Michal Zalewski (Thursday, 9 January)
  • Re: [integrity]: Origin confusion attacks. Mike West (Thursday, 9 January)
• Re: [integrity]: Origin confusion attacks. Pete Freitag (Thursday, 9 January)
  • Re: [integrity]: Origin confusion attacks. Devdatta Akhawe (Friday, 10 January)
    • Re: [integrity]: Origin confusion attacks. Mike West (Friday, 10 January)
      • Re: [integrity]: Origin confusion attacks. Frederik Braun (Friday, 10 January)
        • Re: [integrity]: Origin confusion attacks. Mike West (Friday, 10 January)
          • Re: [integrity]: Origin confusion attacks. Sandeep Kamble (Friday, 10 January)
          • Re: [integrity]: Origin confusion attacks. Pete Freitag (Friday, 10 January)
            • Re: [integrity]: Origin confusion attacks. Ben Toews (Friday, 10 January)
            • Re: [integrity]: Origin confusion attacks. Pete Freitag (Friday, 10 January)
            • Re: [integrity]: Origin confusion attacks. Mike West (Thursday, 16 January)
    • Re: [integrity]: Origin confusion attacks. Pete Freitag (Friday, 10 January)
• Re: [integrity]: Origin confusion attacks. Devdatta Akhawe (Thursday, 9 January)
  • Re: [integrity]: Origin confusion attacks. Brad Hill (Thursday, 9 January)
    • Re: [integrity]: Origin confusion attacks. Devdatta Akhawe (Thursday, 9 January)

Re: Subresource Integrity and fingerprinting Devdatta Akhawe (Thursday, 9 January)

• Re: Subresource Integrity and fingerprinting Michal Zalewski (Thursday, 9 January)
  • Re: Subresource Integrity and fingerprinting Devdatta Akhawe (Thursday, 9 January)
    • Re: Subresource Integrity and fingerprinting Michal Zalewski (Thursday, 9 January)
      • Re: Subresource Integrity and fingerprinting Mike West (Thursday, 9 January)
        • Re: Subresource Integrity and fingerprinting Michal Zalewski (Thursday, 9 January)
          • Re: Subresource Integrity and fingerprinting Devdatta Akhawe (Thursday, 9 January)
            • Re: Subresource Integrity and fingerprinting Mike West (Thursday, 9 January)
          • Re: Subresource Integrity and fingerprinting Mike West (Thursday, 9 January)
            • Re: Subresource Integrity and fingerprinting Mike West (Friday, 10 January)
          • Re: Subresource Integrity and fingerprinting Mark Nottingham (Thursday, 9 January)
            • Re: Subresource Integrity and fingerprinting Mike West (Thursday, 9 January)
            • Re: Subresource Integrity and fingerprinting Anne van Kesteren (Thursday, 9 January)
            • Re: Subresource Integrity and fingerprinting Anne van Kesteren (Thursday, 9 January)

Subresource Integrity strawman. Mike West (Wednesday, 8 January)

• Re: Subresource Integrity strawman. Michal Zalewski (Wednesday, 8 January)
  • Re: Subresource Integrity strawman. Joel Weinberger (Wednesday, 8 January)
  • Re: Subresource Integrity strawman. Mike West (Wednesday, 8 January)
    • Re: Subresource Integrity strawman. Michal Zalewski (Wednesday, 8 January)
• Re: Subresource Integrity strawman. Ilya Grigorik (Wednesday, 8 January)
  • Re: Subresource Integrity strawman. Joshua Peek (Wednesday, 8 January)
  • Re: Subresource Integrity strawman. Joel Weinberger (Wednesday, 8 January)
    • Re: Subresource Integrity strawman. Ilya Grigorik (Wednesday, 8 January)
      • Re: Subresource Integrity strawman. Joel Weinberger (Wednesday, 8 January)
        • Re: Subresource Integrity strawman. Ilya Grigorik (Wednesday, 8 January)
          • Re: Subresource Integrity strawman. Devdatta Akhawe (Wednesday, 8 January)
            • Re: Subresource Integrity strawman. Michal Zalewski (Thursday, 9 January)
            • Re: Subresource Integrity strawman. Mark Nottingham (Thursday, 9 January)
            • Re: Subresource Integrity strawman. Michal Zalewski (Thursday, 9 January)
            • Re: Subresource Integrity strawman. Mike West (Thursday, 9 January)
• Re: Subresource Integrity strawman. Ben Toews (Wednesday, 8 January)

New poll: Europe-friendly teleconference time Brad Hill (Tuesday, 7 January)

Holiday changes to the CSP 1.1 editor's draft. Mike West (Friday, 3 January)

• Re: Holiday changes to the CSP 1.1 editor's draft. Ian Melven (Tuesday, 7 January)
  • Re: Holiday changes to the CSP 1.1 editor's draft. Devdatta Akhawe (Wednesday, 8 January)
    • Re: Holiday changes to the CSP 1.1 editor's draft. Mike West (Friday, 10 January)
      • Re: Holiday changes to the CSP 1.1 editor's draft. Ian Melven (Monday, 13 January)
        • Re: Holiday changes to the CSP 1.1 editor's draft. Mike West (Thursday, 16 January)

Re: GitHub? GitHub. Mike West (Friday, 3 January)

Last message date: Thursday, 30 January 2014 23:23:12 UTC