- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Thu, 5 Jun 2014 08:26:49 +0200
- To: Mike West <mkwst@google.com>
- Cc: Neil Matatall <neilm@twitter.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
On Thu, Jun 5, 2014 at 8:17 AM, Mike West <mkwst@google.com> wrote: > I'm now reconsidering. I don't particularly like the idea that authors could > block direct navigation to an image by sending `img-src 'none'` along with > all image resources. You'd have to special case the scenario. You can check http://dom.spec.whatwg.org/#concept-document-content-type for instance. Not sure what would be best here, might want to ask Ian. -- http://annevankesteren.nl/
Received on Thursday, 5 June 2014 06:27:17 UTC