W3C home > Mailing lists > Public > public-webappsec@w3.org > January 2015

Re: Comments on Mixed Content

From: Brian Smith <brian@briansmith.org>
Date: Wed, 14 Jan 2015 17:14:06 -0800
Message-ID: <CAFewVt5Fj5B821VmMfhS29oOZe2_ryQj7K66jTkYfK7X_MLVdQ@mail.gmail.com>
To: David Walp <David.Walp@microsoft.com>
Cc: Mike West <mkwst@google.com>, Anne van Kesteren <annevk@annevk.nl>, Chris Palmer <palmer@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>
David Walp <David.Walp@microsoft.com> wrote:
> We understand your arguments.  We already live with these issues every day.  Being able to handle the intranet different from the internet is important to a number of customers.   Provided we not consider out of compliance for how we handle the intranet, we are fine with the spec as it is.

You *would* be out of compliance for not blocking mixed content on
"intranet" pages the same way as it would be blocked in "internet"
pages.

Cheers,
Brian
Received on Thursday, 15 January 2015 01:14:33 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:09 UTC