W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2014

Re: CSP formal objection.

From: Hill, Brad <bhill@paypal.com>
Date: Wed, 29 Jan 2014 19:45:37 +0000
To: Bjoern Hoehrmann <derhoermi@gmx.net>
CC: Mike West <mkwst@chromium.org>, Brian Smith <brian@briansmith.org>, "Anne van Kesteren" <annevk@annevk.nl>, "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <1B37C278-81A9-41BD-98DD-B662AE35C6F6@paypal.com>
There is also the unfortunate reality that the original text cannot advance beyond Candidate Rec anyway, because no user agent has successfully implemented it. So it is living on borrowed time wrt the W3C process anyway.

> On Jan 29, 2014, at 11:42 AM, "Bjoern Hoehrmann" <derhoermi@gmx.net> wrote:
> 
> * Hill, Brad wrote:
>> I think the removal of the text simply leaves the matter open to each 
>> user agent to implement the interactions between CSP and add-ons 
>> according to their own best ability and whatever priority of 
>> constituencies they already follow.  It neither implies interference nor 
>> non-interference.
> 
> We are all familiar with the fact that removing a requirement leaves the
> matter covered by the requirement "open", thank you. That has nothing to
> do with what I wrote, though.
> -- 
> Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
> Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de
> 25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/ 
Received on Wednesday, 29 January 2014 19:46:07 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:04 UTC