On Wed, Jan 30, 2013 at 6:40 PM, Poul-Henning Kamp .<phk@phk.freebsd.dk>wrote:
>
>
> Why would the URI be more or less non-compressible than the Host: header ?
>
>
CRIME prevents partial matches of header values (espeically ones that can
contain sensitive information like a URI).. breaking out less sensitive
elements of that like host and scheme will provide greater opportunity for
delta matches. (as julian notes they can all be required to be provided
contiguously and in defined order up front, which I hope helps).