Re: 2 questions from Martin Thomson on 2015-04-13 (ietf-http-wg@w3.org from April to June 2015)

From: Martin Thomson <martin.thomson@gmail.com>
Date: Mon, 13 Apr 2015 09:24:07 -0700
To: Ilari Liusvaara <ilari.liusvaara@elisanet.fi>
Cc: Glen <glen.84@gmail.com>, Amos Jeffries <squid3@treenet.co.nz>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <CABkgnnWLjt526cp5LDigAX6hjJhoNYdJdE4O8NrZc3gL3v8Bzw@mail.gmail.com>

On 13 April 2015 at 02:32, Ilari Liusvaara <ilari.liusvaara@elisanet.fi> wrote:
>
> This has been tried. It did not work.
>
> - If dialog has "don't show this again" option, it will be checked.
> - If not, the dialog will be dismissed unread (the user never even recognizing
>   that the warning existed) after the first few times.

This could change soon.  Browser vendors are discussing options that
disable insecure form submission.  That is, at least when the password
input element present.

Received on Monday, 13 April 2015 16:24:34 UTC