- From: Maciej Stachowiak <mjs@apple.com>
- Date: Thu, 14 Feb 2008 12:43:19 +0000
- To: Anne van Kesteren <annevk@opera.com>
- Cc: Simon Pieters <simonp@opera.com>, "public-html@w3.org" <public-html@w3.org>
On Feb 14, 2008, at 11:54 AM, Anne van Kesteren wrote: > > On Thu, 14 Feb 2008 11:00:28 +0100, Maciej Stachowiak > <mjs@apple.com> wrote: >> It might be useful to add a target value to directly support this >> use case. > > HTML5 already has rel="noreferrer" (yes, double 'r') for this. I > don't believe anyone has implemented it yet though. I don't think referrer is the only issue that webmail sites like gmail are concerned about, they also want to prevent the opened page from having access to the opening page via window.opener or having any of the special frame navigation access that having a particular opener may imply. I'm not sure if it is reasonable to overload this behavior onto rel="noreferrer"; maybe it is. But it is definitely an issue specific to window opening unlike sending of the referrer header. Regards, Maciej
Received on Thursday, 14 February 2008 12:52:35 UTC