- From: Tom Ritter <tom@ritter.vg>
- Date: Thu, 10 Nov 2016 15:56:12 -0600
- To: Eric Rescorla <ekr@rtfm.com>
- Cc: HTTP Working Group <ietf-http-wg@w3.org>
On 9 November 2016 at 18:57, Eric Rescorla <ekr@rtfm.com> wrote: > S 2.1.3. > What's the rationale for not caching the directive in report-only mode. > If the purpose of the report-only mode is to tell you when you have > nonconforming servers, then don't you want to be able to turn it on > on server A and detect hwen server B is broken? That seems like it > doesn't work if you don't cache. I may have more comments, but ++ here. I would like to avoid repeating the same situation we had with this behavior not being in HPKP. -tom
Received on Thursday, 10 November 2016 21:57:05 UTC