Re: Handling multiple headers when only one is allowed

On Wed, 09 Jun 2010 02:48:20 +0200, Yngve N. Pettersen (Developer Opera  
Software ASA) <> wrote:
> Well, there is actually a fourth choice: Ask the user (Yes, I know, the  
> user will most likely know just as little as the client about what those  
> header were intended to mean, and the opportunities for social  
> engineering attacks will be legion).

There's also a fifth. Based on implementation experience we can probably  
figure out what the scenario for headers should be. You might end up with  
special cases, but at least you know it can be implemented and you can  
give advice for future clients so they will no longer have to reverse  
engineer the market leader.

Anne van Kesteren

Received on Wednesday, 9 June 2010 06:32:10 UTC