[Bug 9002] @sandbox should not allow content with text/html MIME type to force authors to change type to secure one. from bugzilla@wiggum.w3.org on 2010-02-18 (public-html-bugzilla@w3.org from February 2010)

From: <bugzilla@wiggum.w3.org>
Date: Thu, 18 Feb 2010 08:07:45 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1Ni1QH-0004y3-LW@wiggum.w3.org>

http://www.w3.org/Bugs/Public/show_bug.cgi?id=9002


Ian 'Hixie' Hickson <ian@hixie.ch> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX




--- Comment #3 from Ian 'Hixie' Hickson <ian@hixie.ch>  2010-02-18 08:07:45 ---
EDITOR'S RESPONSE: This is an Editor's Response to your comment. If you are
satisfied with this response, please change the state of this bug to CLOSED. If
you have additional information and would like the editor to reconsider, please
reopen this bug. If you would like to escalate the issue to the full HTML
Working Group, please add the TrackerRequest keyword to this bug, and suggest
title and text for the tracker issue; or you may create a tracker issue
yourself, if you are able to do so. For more details, see this document:
   http://dev.w3.org/html5/decision-policy/decision-policy.html

Status: Rejected
Change Description: no spec change
Rationale: As Adam said, there are several use cases (like ads) for which
failing open is perfectly acceptable. sandbox="" is only really supposed to be
defense in depth, anyway, at least for the foreseeable future.


-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

Received on Thursday, 18 February 2010 08:07:46 UTC