public-webappsec@w3.org from July 2014 by date

Thursday, 31 July 2014

• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Anne van Kesteren

Wednesday, 30 July 2014

• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• Re: [webappsec] 30-July WebAppSec Teleconference CANCELLED Jochen Eisinger
• Re: [webappsec] 30-July WebAppSec Teleconference CANCELLED Brad Hill
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Anne van Kesteren
• Re: [webappsec] 30-July WebAppSec Teleconference CANCELLED Mike West

Tuesday, 29 July 2014

• Re: SRI: <a> vs integrity Brad Hill
• Re: SRI: <a> vs integrity Daniel Veditz
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• [webappsec] 30-July WebAppSec Teleconference CANCELLED Brad Hill
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Anne van Kesteren
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Brad Hill
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Anne van Kesteren
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Brad Hill
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Anne van Kesteren
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Anne van Kesteren
• Re: SRI: <a> vs integrity Eduardo Robles Elvira
• Re: SRI: <a> vs integrity Brad Hill
• Re: SRI: <a> vs integrity Chris Palmer

Monday, 28 July 2014

• Re: SRI: <a> vs integrity Eduardo Robles Elvira
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• Re: SRI: <a> vs integrity Hill, Brad
• Re: SRI: <a> vs integrity Eduardo Robles Elvira
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Anne van Kesteren
• Re: img-src and inline <svg> Anne van Kesteren
• Re: img-src and inline <svg> Brad Hill
• Re: SRI: <a> vs integrity Brad Hill

Sunday, 27 July 2014

• Re: [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin
• Re: SRI and CORS Anne van Kesteren
• SRI: <a> vs integrity Julian Reschke
• Re: img-src and inline <svg> Glenn Adams
• Re: img-src and inline <svg> Anne van Kesteren

Saturday, 26 July 2014

• Re: img-src and inline <svg> Mike West

Friday, 25 July 2014

• img-src and inline <svg> Brad Hill
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Mike West

Thursday, 24 July 2014

• Re: [CSP] Directive to disallow a response from being used as a Service Worker Devdatta Akhawe
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Joshua Peek
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Ilya Grigorik
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin
• Re: [REFERRER] Where does "Determine request's Referrer" get its URL from? Jochen Eisinger
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Mike West
• Re: [REFERRER] Where does "Determine request’s Referrer" get its URL from? Mike West
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Devdatta Akhawe

Wednesday, 23 July 2014

• [REFERRER] Where does "Determine request’s Referrer" get its URL from? Ian Hickson
• "Why is CSP failing? Trends and Challenges in CSP Adoption" Oda, Terri

Tuesday, 22 July 2014

• Re: [MIX] Consider all CORS requests "active" Brian Smith
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin
• Re: [Integrity] Signature based subresource integrity? Brad Hill
• Re: [Integrity] Signature based subresource integrity? Daniel Roesler
• [Integrity] HTTP/1.1 reference Julian Reschke
• Re: CfC to publish FPWD on Referrer Policy. Jochen Eisinger
• Re: [MIX] Consider all CORS requests "active" Mike West
• Re: [MIX] Consider all CORS requests "active" Jake Archibald
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Mike West
• Re: [MIX] Consider all CORS requests "active" Mike West
• Re: [Integrity] Signature based subresource integrity? Eduardo Robles Elvira

Monday, 21 July 2014

• [Integrity] Signature based subresource integrity? Daniel Roesler

Tuesday, 22 July 2014

• Re: [MIX] Consider all CORS requests "active" Jake Archibald
• Re: [MIX] Consider all CORS requests "active" Brian Smith
• Re: [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin

Monday, 21 July 2014

• Re: [CSP] Directive to disallow a response from being used as a Service Worker Brian Smith
• [CSP] Directive to disallow a response from being used as a Service Worker Jeffrey Yasskin
• Re: CfC to publish FPWD on Referrer Policy. Brad Hill
• CfC to publish FPWD on Referrer Policy. Jochen Eisinger
• Re: SRI and CORS Frederik Braun

Thursday, 17 July 2014

• Re: SRI and CORS Anne van Kesteren
• Re: CORS and CSRF protection Monsur Hossain

Wednesday, 16 July 2014

• Re: CORS and CSRF protection Michal Zalewski
• Re: CORS and CSRF protection Brad Hill
• Re: [CSP] Rule referencing Neil Matatall
• Re: [CSP] Rule referencing John Yeuk Hon Wong
• [CSP] Rule referencing Alex Sexton
• Re: CORS and CSRF protection Monsur Hossain
• Re: SRI and CORS Brad Hill
• WebAppSec WG Teleconference 16-July-2014 08:00 PDT Daniel Veditz
• Re: [CSP] Request to amend bookmarklet/extensions sentence in CSP1.1 Daniel Veditz

Tuesday, 15 July 2014

• [webappsec] tomorrow's call Brad Hill
• Re: CSP declarations in html meta tags Caleb Queern
• Re: [blink-dev] Proposal: Prefer secure origins for powerful new web platform features Chris Palmer
• Re: Proposal: Prefer secure origins for powerful new web platform features Chris Palmer
• Re: [Bulk] Proposal: Prefer secure origins for powerful new web platform features Chris Palmer
• Re: [CSP] Request to amend bookmarklet/extensions sentence in CSP1.1 Glenn Adams
• Resource integrity transparency Eduardo Robles Elvira
• [CSP] Request to amend bookmarklet/extensions sentence in CSP1.1 Gregory Huczynski

Friday, 11 July 2014

• [CSP] Policy direction for bookmarklets/extensions augmenting page-level CSP? Gregory Huczynski

Sunday, 13 July 2014

• Re: CSP declarations in html meta tags Mike West
• Re: CSP declarations in html meta tags Caleb Queern

Friday, 11 July 2014

• Re: CSP declarations in html meta tags Mike West
• CSP declarations in html meta tags Caleb Queern
• Re: [MIX] Consider all CORS requests "active" Jake Archibald
• Re: [MIX] Consider all CORS requests "active" Jake Archibald
• Re: [MIX] Consider all CORS requests "active" Anne van Kesteren

Thursday, 10 July 2014

• Re: [MIX] Consider all CORS requests "active" Glenn Adams
• Re: [MIX] Consider all CORS requests "active" Brian Smith
• Re: [MIX] Consider all CORS requests "active" Mike West
• [MIX] Consider all CORS requests "active" Jake Archibald

Monday, 7 July 2014

• Re: CSP: 'no-external-navigation'? Deian Stefan
• Re: CSP: 'no-external-navigation'? Mike West
• Call for Exclusions: Content Security Policy Level 2 Coralie Mercier
• Re: CSP: 'no-external-navigation'? Michal Zalewski
• Re: CSP: 'no-external-navigation'? pamela fox

Friday, 4 July 2014

• Re: Mixed Content ED Comments Mike West

Thursday, 3 July 2014

• RE: Mixed Content Spec feedback David Walp
• Mixed Content ED Comments Glenn Adams
• Re: [SRI] What should we Hash Redux Anne van Kesteren
• Re: [SRI] What should we Hash Redux Devdatta Akhawe
• Re: [SRI] What should we Hash Redux Anne van Kesteren
• Re: [SRI] What should we Hash Redux Devdatta Akhawe
• Re: SRI and CORS Anne van Kesteren
• Re: SRI and CORS Frederik Braun
• Re: SRI and CORS Mike West
• Re: SRI and CORS Anne van Kesteren
• Re: SRI and CORS Mike West
• Re: SRI and CORS Anne van Kesteren
• Re: SRI and CORS Mike West
• Re: SRI and CORS Adam Langley
• Re: SRI and CORS Anne van Kesteren
• Re: SRI and CORS Mike West
• Re: SRI and CORS Anne van Kesteren
• Re: SRI and CORS Mike West
• Re: [SRI] What should we Hash Redux Anne van Kesteren
• SRI and CORS Anne van Kesteren
• Re: [MIX] blob URLs Anne van Kesteren
• Re: [MIX] blob URLs Mike West
• Re: CSP 1.1 frameancestors and blobs Mike West
• Re: CSP 1.1 frameancestors and blobs Anne van Kesteren
• Re: CSP 1.1 frameancestors and blobs Mike West

Wednesday, 2 July 2014

• [SRI] What should we Hash Redux Devdatta Akhawe
• Re: [MIX]: Can we distinguish between images loader via `<picture>`/`srcset` and `<img>`? Anne van Kesteren
• Re: [MIX]: Can we distinguish between images loader via `<picture>`/`srcset` and `<img>`? Yoav Weiss
• Re: Mixed Content Spec feedback Daniel Kahn Gillmor
• Re: PFWG comments on User Interface Security Directives for Content Security Policy Brad Hill
• Re: PFWG comments on User Interface Security Directives for Content Security Policy Michael Cooper
• Re: Mixed Content Spec feedback Mike West
• Re: Mixed Content Spec feedback Anne van Kesteren
• Mixed Content Spec feedback David Walp

Tuesday, 1 July 2014

• Re: [MIX]: Can we distinguish between images loader via `<picture>`/`srcset` and `<img>`? Yoav Weiss
• WebAppSec WG Teleconference 02-July-2014 08:00 PDT Brad Hill
• Re: Isolated Web Components for a more secure web Eduardo' Vela\
• Re: CSP wildcard host matching Mike West
• Re: CSP wildcard host matching Anne van Kesteren
• Re: CSP wildcard host matching Frederik Braun
• Re: Isolated Web Components for a more secure web Anne van Kesteren
• Re: Isolated Web Components for a more secure web Eduardo Robles Elvira

Monday, 30 June 2014

• Re: CSP: 'no-external-navigation'? pamela fox

Last message date: Thursday, 31 July 2014 15:15:04 UTC