public-webappsec@w3.org from October 2012 by thread

[webappsec] DRAFT TPAC 2012 agenda Hill, Brad (Tuesday, 30 October)

[webappsec] CORS bug 19315 Hill, Brad (Friday, 26 October)

• Re: [webappsec] CORS bug 19315 Anne van Kesteren (Saturday, 27 October)

Pub request: FPWD of User Interface Safety Directives for CSP Hill, Brad (Friday, 26 October)

• Re: Pub request: FPWD of User Interface Safety Directives for CSP Thomas Roessler (Friday, 26 October)

Re: CSP violations introduced by Addons / Extensions Mike West (Thursday, 25 October)

• Re: CSP violations introduced by Addons / Extensions Ingo Chao (Thursday, 25 October)
  • Re: CSP violations introduced by Addons / Extensions Dan Veditz (Friday, 26 October)
    • Re: CSP violations introduced by Addons / Extensions Ingo Chao (Monday, 29 October)
      • Re: CSP violations introduced by Addons / Extensions Mike West (Monday, 29 October)
        • Re: CSP violations introduced by Addons / Extensions Ingo Chao (Monday, 29 October)
          • Re: CSP violations introduced by Addons / Extensions Mike West (Monday, 29 October)

Re: Trigger a DOM event/error when a CSP violation happens. Adam Barth (Thursday, 25 October)

• Re: Trigger a DOM event/error when a CSP violation happens. Mike West (Thursday, 25 October)
  • Re: Trigger a DOM event/error when a CSP violation happens. Eduardo' Vela (Thursday, 25 October)
    • Re: Trigger a DOM event/error when a CSP violation happens. Mike West (Thursday, 25 October)
      • Re: Trigger a DOM event/error when a CSP violation happens. Eduardo' Vela (Thursday, 25 October)
• Re: Trigger a DOM event/error when a CSP violation happens. Dan Veditz (Friday, 26 October)
  • Re: Trigger a DOM event/error when a CSP violation happens. Eduardo' Vela (Friday, 26 October)
    • Re: Trigger a DOM event/error when a CSP violation happens. Dan Veditz (Friday, 26 October)
  • Re: Trigger a DOM event/error when a CSP violation happens. John J Barton (Friday, 26 October)
    • Re: Trigger a DOM event/error when a CSP violation happens. Eduardo' Vela (Friday, 26 October)
      • Re: Trigger a DOM event/error when a CSP violation happens. Dan Veditz (Friday, 26 October)
        • Re: Trigger a DOM event/error when a CSP violation happens. Eduardo' Vela (Friday, 26 October)
    • Re: Trigger a DOM event/error when a CSP violation happens. Dan Veditz (Friday, 26 October)

[webappsec] updated draft SVG: simple CORS request Hill, Brad (Tuesday, 23 October)

[webappsec] Teleconference agenda for WebAppSec WG teleconference, Oct 23 Hill, Brad (Tuesday, 23 October)

CSP and inline styles Ian Melven (Monday, 22 October)

• Re: CSP and inline styles Hill, Brad (Monday, 22 October)
  • Re: CSP and inline styles Ian Melven (Monday, 22 October)
• Re: CSP and inline styles Adam Barth (Monday, 22 October)
  • Re: CSP and inline styles Jonas Sicking (Monday, 22 October)
    • Re: CSP and inline styles Adam Barth (Tuesday, 23 October)
      • Re: CSP and inline styles Boris Zbarsky (Tuesday, 23 October)
        • Re: CSP and inline styles Adam Barth (Tuesday, 23 October)
          • Re: CSP and inline styles Boris Zbarsky (Tuesday, 23 October)
      • Re: CSP and inline styles Jonas Sicking (Tuesday, 23 October)
        • Re: CSP and inline styles Adam Barth (Tuesday, 23 October)
          • Re: CSP and inline styles Jonas Sicking (Tuesday, 23 October)
  • Re: CSP and inline styles Boris Zbarsky (Tuesday, 23 October)
• Re: CSP and inline styles Boris Zbarsky (Tuesday, 23 October)
  • Re: CSP and inline styles Adam Barth (Tuesday, 23 October)

Re: Fwd: When is the CORS Candidate Recommendation going to be published? [Was: Re: Cancelled: May 22 Telecon] Arthur Barstow (Thursday, 18 October)

• RE: Fwd: When is the CORS Candidate Recommendation going to be published? [Was: Re: Cancelled: May 22 Telecon] Hill, Brad (Thursday, 18 October)

CSP 1.0: Are UAs permitted to implement reporting as opt-in? Fred Andrews (Tuesday, 16 October)

• RE: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Hill, Brad (Tuesday, 16 October)
• Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Dan Veditz (Wednesday, 17 October)
  • RE: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Fred Andrews (Wednesday, 17 October)
    • Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Adam Barth (Wednesday, 17 October)
      • RE: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Fred Andrews (Wednesday, 17 October)
        • Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Adam Barth (Wednesday, 17 October)
    • Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Boris Zbarsky (Wednesday, 17 October)
      • RE: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Fred Andrews (Wednesday, 17 October)
        • Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Boris Zbarsky (Wednesday, 17 October)
        • Re: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Adam Barth (Wednesday, 17 October)
• RE: CSP 1.0: Are UAs permitted to implement reporting as opt-in? Erlend Oftedal (Wednesday, 17 October)

CSP and <base> Tag Injection + Suggestion for New CSP Directive "base-src" in CSP 1.1 Ashar Javed (Monday, 15 October)

Report-uri same-origin restrictions? Fred Andrews (Monday, 15 October)

• Re: Report-uri same-origin restrictions? Adam Barth (Monday, 15 October)

Re: Advice about unprefixing Content-Security-Policy in WebKit Odin Hørthe Omdal (Monday, 15 October)

Re: CSP 1.1: Paths in source list definitions. Mike West (Saturday, 13 October)

• Re: CSP 1.1: Paths in source list definitions. Adam Barth (Saturday, 13 October)
  • Re: CSP 1.1: Paths in source list definitions. Odin Hørthe Omdal (Monday, 15 October)
    • Re: CSP 1.1: Paths in source list definitions. Mike West (Monday, 15 October)
      • Re: CSP 1.1: Paths in source list definitions. Dan Veditz (Tuesday, 16 October)
        • Re: CSP 1.1: Paths in source list definitions. Odin Hørthe Omdal (Tuesday, 16 October)

Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Hill, Brad (Friday, 12 October)

• Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Thomas Roessler (Saturday, 13 October)
  • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Fred Andrews (Saturday, 13 October)
    • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Dan Veditz (Monday, 15 October)
      • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Adam Barth (Monday, 15 October)
      • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Fred Andrews (Monday, 15 October)
    • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Mike West (Monday, 15 October)
  • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Boris Zbarsky (Monday, 15 October)
    • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Hill, Brad (Monday, 15 October)
      • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Boris Zbarsky (Monday, 15 October)
        • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Hill, Brad (Monday, 15 October)
• RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Fred Andrews (Wednesday, 17 October)
  • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Adam Barth (Wednesday, 17 October)
    • Re: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Rigo Wenning (Thursday, 18 October)
      • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Jacob Rossi (Thursday, 18 October)
      • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Hill, Brad (Thursday, 18 October)
  • RE: Resolution of post-Last Call comments on CSP 1.0 by Fred Andrews and Boris Zbarsky Hill, Brad (Wednesday, 17 October)

[webappsec] Today's call CANCELLED Hill, Brad (Tuesday, 9 October)

[Bug 19315] New: Last-Event-ID header should be a simple header bugzilla@jessica.w3.org (Sunday, 7 October)

Granularity of CSP Peter Hultqvist (Tuesday, 2 October)

• Re: Granularity of CSP David Bruant (Wednesday, 3 October)
• Re: Granularity of CSP Adam Barth (Wednesday, 3 October)
  • Re: Granularity of CSP Peter Hultqvist (Wednesday, 10 October)
    • Re: Granularity of CSP Adam Barth (Thursday, 11 October)
• Re: Granularity of CSP Dan Veditz (Wednesday, 3 October)

Last message date: Tuesday, 30 October 2012 10:42:23 UTC