- From: Daniel Stenberg <daniel@haxx.se>
- Date: Mon, 7 Mar 2016 20:19:30 +0100 (CET)
- To: Adam Barth <w3c@adambarth.com>
- cc: Mike West <mkwst@google.com>, HTTP Working Group <ietf-http-wg@w3.org>, Samuel Huang <huangs@google.com>, Mark Nottingham <mnot@mnot.net>
On Mon, 7 Mar 2016, Adam Barth wrote: >> (I'm not suggesting it is a "proper" or "good" implementation, just that it >> works with the vast majority of sites using cookies and it was written long >> before we created RFC 6265 and I guess nobody felt the need to update it >> since to that aspect.) > > It might be worth improving the libcurl implementation to match RFC6265. No objections there, I think it would! But you know, whatever works in practise rarely gets attention and fixes just because it would make it follow an RFC closer. Besides, I think the point is that 1. curl is probably not the only naive implementation in the world and 2. even if we'd fix this in curl today, we'd see applications in the wild for many years to come still using the previous implementation... (we have some users that are notoriously slow on upgrading and regularly get bug reports and questions on a decade old code!) -- / daniel.haxx.se
Received on Monday, 7 March 2016 19:20:04 UTC