- From: Devdatta Akhawe <dev.akhawe@gmail.com>
- Date: Thu, 26 May 2011 19:09:51 -0700
- To: Adam Barth <w3c@adambarth.com>
- Cc: public-web-security@w3.org
> > 1) Remove header entirely. > 2) Strip down the Referer to just the origin. > 2. seems to be the Origin header. Is there a particular use case for adding this ? --devdatta > https://bugs.webkit.org/show_bug.cgi?id=61576 > > Should we add a "scrub-referrer" directive to CSP? > > Adam > >
Received on Friday, 27 May 2011 02:10:38 UTC