Re: [perpass] HTTP user-agent fingerprinting from Fred Akalin on 2013-09-13 (ietf-http-wg@w3.org from July to September 2013)

From: Fred Akalin <akalin@google.com>
Date: Fri, 13 Sep 2013 15:18:41 -0700
To: Poul-Henning Kamp <phk@phk.freebsd.dk>
Cc: Karl Dubost <karl@la-grange.net>, Patrick Pelletier <code@funwithsoftware.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, IETF HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <CANUYc_RdiXfppdaSvGG=Ao1KE33oECDnEFoThXFvorpcOqTHWA@mail.gmail.com>

On Fri, Sep 13, 2013 at 2:55 PM, Poul-Henning Kamp <phk@phk.freebsd.dk>wrote:

> But if HTTP/2.0 limits User-Agent to 32 bytes, that means that
> no HTTP/2.0 browser will send more than 32 bytes, and no website
> will support HTTP/2.0 until they can do their job with just 32 bytes
> of User-Agent.
>
> HTTP/2.0 transition is a unique chance for getting this monster
> under control, we should not waste it.

It seems more likely that the end result of this would just be that
websites won't support HTTP/2.0.

Received on Friday, 13 September 2013 22:19:08 UTC