Re: NEW: #235: Cache Invalidation only happens upon successful responses from Yves Lafon on 2010-07-26 (ietf-http-wg@w3.org from July to September 2010)

From: Yves Lafon <ylafon@w3.org>
Date: Mon, 26 Jul 2010 09:10:56 -0400 (EDT)
To: "Moore, Jonathan" <Jonathan_Moore@Comcast.com>
cc: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <alpine.DEB.1.10.1007260910090.28571@wnl.j3.bet>

On Mon, 26 Jul 2010, Yves Lafon wrote:

>> Let me ask the intent behind invalidation, though: is this to be done when 
>> the cache *knows* the state of the resource has changed, or just when it 
>> *might* have changed?
>
> If it is a *might*, there is no need to ways for the response, any unknown
                                          *wait*
> method or unsafe method is enough to trigger invalidation, but it leads to 
> denial of service attacks.

-- 
Baroula que barouleras, au tiéu toujou t'entourneras.

         ~~Yves

Received on Monday, 26 July 2010 13:11:01 UTC