RE: [apps-discuss] content inspection in absence of media type, was: APPSDIR review of draft-ietf-httpbis-p2-semantics-24

I'd like to point out that the topic of consistent content inspection was discussed in the websec working group via:
which was abandoned in the IETF and taken up by WHATWG in
The "bugs" filed in IETF tracker:
and discussed at IETF 82 Taipei

were subsequently reproduced in the WHATWG tracker

Ideally, the "magic number" entry in the Media Type registry would be retargeted to give instructions and prioritization for content recognition, especially in cases (such as ftp: and file: access) where there is no channel for content-type transmission.  

Fixing content-type sniffing goes beyond http and should be addressed directly. 


Received on Monday, 4 November 2013 16:10:58 UTC