- From: Bil Corry <bil@corry.biz>
- Date: Thu, 07 Apr 2011 00:00:08 -0700
- To: Collin Jackson <collin.jackson@sv.cmu.edu>
- CC: Brandon Sterne <bsterne@mozilla.com>, gaz Heyes <gazheyes@gmail.com>, Adam Barth <w3c@adambarth.com>, Daniel Veditz <dveditz@mozilla.com>, public-web-security@w3.org
Collin Jackson wrote on 4/6/2011 12:33 PM: > Blocking inline styles for people who do use style-src seems both consistent and desirable. One use case to consider: I want to allow only HTTPS stylesheets, and allow inline styles specifically for framebusting: https://www.codemagi.com/blog/post/194 - Bil
Received on Thursday, 7 April 2011 07:00:48 UTC