W3C home > Mailing lists > Public > www-p3p-policy@w3.org > October 2001

Re: [www-p3p-policy] <none>

From: Ken Martin <ken@kpmartin.com>
Date: Mon, 01 Oct 2001 16:08:13 -0500
To: <www-p3p-policy@w3.org>
Message-ID: <B7DE456D.17799%ken@kpmartin.com>
on 10/1/01 3:45 PM, Clifford Lyon at Clifford.Lyon@cnet.com wrote:

> Q: The W3C states that a compact policy header is optional, but cookies do not
> seem to work without it. Is a compact policy header required?
> Answer: Although compact policies are optional for P3P compliance, they are
> required by Microsoft Internet Explorer to determine the Web site's privacy
> practices concerning cookies.
> Also, Apache supplies a facility for setting additional headers - mod_header.

If you only have a few pages to do, it might be sufficient to have this meta
tag in your head:

<meta http-equiv="P3P" content='CP="YOUR_CP" policyref="YOUR_REF_URI"'>

I haven't seen this in the deployment docs, so maybe there's a problem with
this method, but it does put the P3P into the header in my testing.


Ken Martin
Received on Monday, 1 October 2001 17:10:26 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:01:07 UTC