Re: linking pre-check to POST and other requests?

On Fri, 18 Jan 2008 05:02:04 +0100, Jonas Sicking <> wrote:
> I think this is a good point though. It's something that we should add  
> to the security considerations so that server implementations are aware  
> of this.

Added an encouragement for authors to check the Referer-Root header to the  
specification warning for race conditions during a policy change.

Anne van Kesteren

Received on Friday, 18 January 2008 11:25:31 UTC