W3C home > Mailing lists > Public > ietf-http-wg@w3.org > April to June 2009

Re: content sniffing (and HTTP profiling)

From: Ian Hickson <ian@hixie.ch>
Date: Wed, 8 Apr 2009 04:58:57 +0000 (UTC)
To: Adam Barth <w3c@adambarth.com>
Cc: Mark Nottingham <mnot@mnot.net>, =JeffH <Jeff.Hodges@kingsmountain.com>, HTTP Working Group <ietf-http-wg@w3.org>, Sam Ruby <rubys@intertwingly.net>, Chris Wilson <Chris.Wilson@microsoft.com>, Eric Lawrence <ericlaw@exchange.microsoft.com>
Message-ID: <Pine.LNX.4.62.0904080455310.18470@hixie.dreamhostps.com> 
On Tue, 7 Apr 2009, Adam Barth wrote:
> 
> As you might be aware, IE8 and Chrome let servers opt out of content
> sniffing using a HTTP header.

To be precise, they allow servers to opt out of content sniffing in 
certain specific cases. It doesn't affect, for instance, how the 
Content-Type header is treated for images (e.g. an image/png image sent as 
image/gif is still treated as a PNG, even with this header set, if I'm not 
mistaken; and Content-Type headers are entirely ignored in certain 
contexts like <embed> elements with explicit type="" attributes or 
@font-face declarations in CSS).

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'
Received on Wednesday, 8 April 2009 04:59:36 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 2 February 2023 18:43:19 UTC