- From: Carsten Bormann <cabo@tzi.org>
- Date: Thu, 18 Apr 2013 00:03:14 +0200
- To: Manu Sporny <msporny@digitalbazaar.com>
- Cc: Web Payments CG <public-webpayments@w3.org>, ietf-http-wg@w3.org
On Apr 17, 2013, at 23:32, Manu Sporny <msporny@digitalbazaar.com> wrote: > https://github.com/joyent/node-http-signature/blob/master/http_signing.md I looked at this for about 5 seconds, but are you telling us the attacker gets to choose what the lines in the signed string are supposed to mean? Grüße, Carsten
Received on Wednesday, 17 April 2013 22:03:47 UTC