Re: New Version Notification for draft-nottingham-site-wide-headers-01.txt

On 24 November 2016 at 16:22, Jim Manico <> wrote:
> I think a blacklist for security headers has great potential harm. As a developer, I need to know explicitly what security headers are being delivered or someday a UA will start activating headers that I have not tested, am not aware of, and suddenly my site is broken because of a UA update.

I don't see how that concern is relevant in this context.

Received on Friday, 25 November 2016 00:36:53 UTC