W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2015

Re: [blink-dev] Proposal: Marking HTTP As Non-Secure

From: Chris Palmer <palmer@google.com>
Date: Wed, 7 Jan 2015 15:55:39 -0800
Message-ID: <CAOuvq20Vf6UYQMaZ1XzFOcTXnFHiJZBjxAMJ0K1At0rJtQ_QUQ@mail.gmail.com>
To: Jim Manico <jim.manico@owasp.org>
Cc: Craig Francis <craig.francis@gmail.com>, Jiri Danek <softwaredevjirka@gmail.com>, "mozilla-dev-security@lists.mozilla.org" <mozilla-dev-security@lists.mozilla.org>, "public-webappsec@w3.org" <public-webappsec@w3.org>, security-dev <security-dev@chromium.org>, blink-dev <blink-dev@chromium.org>
On Wed, Jan 7, 2015 at 4:40 AM, Jim Manico <jim.manico@owasp.org> wrote:

> The experimental IETF Pinning headers in Chrome/Chromium are broken in
> several ways, bugs have been submitted and it's being worked on. I can
> put you in touch with the bug submitter if you like.

Anything besides

https://code.google.com/p/chromium/issues/detail?id=445793

?

I'm still crawling out from under holiday email load, so I might not
have seen all the new stuff yet.
Received on Wednesday, 7 January 2015 23:56:12 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:09 UTC