W3C home > Mailing lists > Public > uri@w3.org > September 2009

Re: [hybi] [Uri-review] ws: and wss: schemes

From: Martin J. Dürst <duerst@it.aoyama.ac.jp>
Date: Thu, 10 Sep 2009 15:55:10 +0900
Message-ID: <4AA8A2CE.3000801@it.aoyama.ac.jp>
To: Kristof Zelechovski <giecrilj@stegny.2a.pl>
CC: "'Jamie Lokier'" <jamie@shareable.org>, uri-review@ietf.org, hybi@ietf.org, uri@w3.org, "'David Booth'" <david@dbooth.org>
Sorry to be very late with this.

On 2009/08/12 19:15, Kristof Zelechovski wrote:
>   1.  Encouraging the user to enter a Web Sockets URL does not make sense if
> cross-domain connections are not allowed, which I hope will be the case (the
> draft specification [1] does not contain security considerations).

Could it be that the URI/IRI entered is sent to a server, where there 
are no cross-domain restrictions?

>   2.  While we are at it, a Web Sockets connection is useless without knowing
> the protocol, and the protocol to be used is not contained within the URL.
> That means a ws URL is not self-contained and thus useless as a stand-alone
> locator.

My understanding is that there is a Web Sockets protocol.

Regards,   Martin.

-- 
#-# Martin J. Dürst, Professor, Aoyama Gakuin University
#-# http://www.sw.it.aoyama.ac.jp   mailto:duerst@it.aoyama.ac.jp
Received on Thursday, 10 September 2009 06:56:17 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 13 January 2011 12:15:42 GMT