public-webappsec@w3.org from July 2015 by thread

Permissions management, IoT/embedded devices and the permissions API Oda, Terri (Friday, 31 July)

Coming back to CREDENTIAL. Mike West (Friday, 31 July)

• Re: Coming back to CREDENTIAL. Adrian Hope-Bailie (Friday, 31 July)
  • Re: Coming back to CREDENTIAL. Mike West (Friday, 31 July)
    • Re: Coming back to CREDENTIAL. Adrian Hope-Bailie (Friday, 31 July)

[credential-management] Identity at Mozilla Adrian Hope-Bailie (Thursday, 30 July)

• Re: [credential-management] Identity at Mozilla Richard Barnes (Thursday, 30 July)

Call for Exclusions (Update): Credential Management Level 1 Xueyuan Jia (Thursday, 30 July)

Suggestion for code exposure security Ahmed Saleh (Tuesday, 28 July)

• Application Hash exchange between client and server Ahmed Saleh (Tuesday, 28 July)
  • Re: Application Hash exchange between client and server Joel Weinberger (Wednesday, 29 July)
    • Re: Application Hash exchange between client and server Conrad Irwin (Thursday, 30 July)
      • Re: Application Hash exchange between client and server Joel Weinberger (Thursday, 30 July)
        • Re: Application Hash exchange between client and server Brad Hill (Thursday, 30 July)
• Re: Suggestion for code exposure security Kristijan Burnik (Thursday, 30 July)

[webappsec] New stylesheets for TRs Brad Hill (Tuesday, 28 July)

• Re: [webappsec] New stylesheets for TRs Wendy Seltzer (Wednesday, 29 July)
  • Re: [webappsec] New stylesheets for TRs Martin Thomson (Wednesday, 29 July)

WebAppSec Teleconference Agenda Brad Hill (Monday, 27 July)

CfC: Republish MIX as CR; deadline July 29th. Mike West (Wednesday, 22 July)

• Re: CfC: Republish MIX as CR; deadline July 29th. Brad Hill (Wednesday, 22 July)
• Re: CfC: Republish MIX as CR; deadline July 29th. Brian Smith (Tuesday, 28 July)
  • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Tuesday, 28 July)
    • Re: CfC: Republish MIX as CR; deadline July 29th. Brian Smith (Tuesday, 28 July)
      • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Tuesday, 28 July)
        • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)
          • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Thursday, 30 July)
  • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)
    • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Thursday, 30 July)
      • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)
        • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Thursday, 30 July)
          • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)
            • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Thursday, 30 July)
            • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)
            • Re: CfC: Republish MIX as CR; deadline July 29th. Anne van Kesteren (Thursday, 30 July)
            • Re: CfC: Republish MIX as CR; deadline July 29th. Mike West (Thursday, 30 July)

Call for Exclusions: Content Security Policy Level 2 Xueyuan Jia (Wednesday, 22 July)

[mixed-content] DASH Players and Mixed Content Ben Gidley (Monday, 20 July)

• Re: [mixed-content] DASH Players and Mixed Content Brad Hill (Tuesday, 21 July)
  • Re: [mixed-content] DASH Players and Mixed Content Mike West (Tuesday, 21 July)
    • Re: [mixed-content] DASH Players and Mixed Content Ben Gidley (Wednesday, 22 July)
• Re: [mixed-content] DASH Players and Mixed Content Daniel Weinberger (Thursday, 23 July)

Programmatically declaring the CSP of an iframe Conrad Irwin (Monday, 20 July)

• Re: Programmatically declaring the CSP of an iframe chaals@yandex-team.ru (Monday, 20 July)
• Re: Programmatically declaring the CSP of an iframe Mike West (Tuesday, 21 July)
  • Re: Programmatically declaring the CSP of an iframe Conrad Irwin (Tuesday, 21 July)

[clear-site-data] implications on autofill / autocomplete behavior by browsers Caleb Queern (Monday, 20 July)

• Re: [clear-site-data] implications on autofill / autocomplete behavior by browsers Mike West (Tuesday, 21 July)

CSP: Blob URLs in new windows. Mike West (Monday, 20 July)

• Re: CSP: Blob URLs in new windows. Eduardo' Vela\ (Monday, 20 July)
  • Re: CSP: Blob URLs in new windows. Mike West (Monday, 20 July)
    • Re: CSP: Blob URLs in new windows. Eduardo' Vela\ (Monday, 20 July)
• Re: CSP: Blob URLs in new windows. Anne van Kesteren (Monday, 20 July)
  • Re: CSP: Blob URLs in new windows. Conrad Irwin (Monday, 20 July)
    • Re: CSP: Blob URLs in new windows. Brad Hill (Monday, 20 July)

SRI fail open behaviour Jonathan Kingston (Saturday, 18 July)

• Re: SRI fail open behaviour Francois Marier (Saturday, 18 July)
  • Re: SRI fail open behaviour Brian Smith (Saturday, 18 July)
    • Re: SRI fail open behaviour Francois Marier (Sunday, 19 July)
      • Re: SRI fail open behaviour Joel Weinberger (Monday, 27 July)
        • Re: SRI fail open behaviour Tanvi Vyas (Monday, 27 July)
        • Re: SRI fail open behaviour Francois Marier (Monday, 27 July)
          • Re: SRI fail open behaviour Jonathan Kingston (Monday, 27 July)
        • Re: SRI fail open behaviour Anne van Kesteren (Tuesday, 28 July)
        • Re: SRI fail open behaviour Brian Smith (Tuesday, 28 July)
• Re: SRI fail open behaviour Francois Marier (Sunday, 19 July)

CfC: Clear Site Data to FPWD; deadline July 24th. Mike West (Friday, 17 July)

• Re: CfC: Clear Site Data to FPWD; deadline July 24th. Brad Hill (Friday, 17 July)

CLEAR: Moved to WebAppSec repository. Mike West (Wednesday, 15 July)

• Re: CLEAR: Moved to WebAppSec repository. Alex Russell (Wednesday, 15 July)
  • Re: CLEAR: Moved to WebAppSec repository. Mike West (Wednesday, 15 July)
    • Re: CLEAR: Moved to WebAppSec repository. Alex Russell (Wednesday, 15 July)
      • Re: CLEAR: Moved to WebAppSec repository. Mike West (Wednesday, 15 July)
        • Re: CLEAR: Moved to WebAppSec repository. Jonathan Kingston (Wednesday, 15 July)
          • Re: CLEAR: Moved to WebAppSec repository. Alex Russell (Thursday, 16 July)

Ambitious charter timeline Jonathan Kingston (Friday, 10 July)

Testing W3C's HTTPS setup Wendy Seltzer (Friday, 10 July)

Call for Exclusions (Update): The Permissions API Coralie Mercier (Thursday, 9 July)

Guests at Berlin F2F Brad Hill (Wednesday, 8 July)

Definition of secure origin in MIX and POWER Francois Marier (Wednesday, 8 July)

• Re: Definition of secure origin in MIX and POWER Mike West (Wednesday, 8 July)
• Re: Definition of secure origin in MIX and POWER Brian Smith (Wednesday, 8 July)
  • Re: Definition of secure origin in MIX and POWER Anders Rundgren (Wednesday, 8 July)
  • Re: Definition of secure origin in MIX and POWER Mike West (Wednesday, 8 July)
    • Re: Definition of secure origin in MIX and POWER Devdatta Akhawe (Wednesday, 8 July)
      • Re: Definition of secure origin in MIX and POWER Mike West (Thursday, 9 July)
  • Re: Definition of secure origin in MIX and POWER Jeffrey Walton (Thursday, 9 July)
• Re: Definition of secure origin in MIX and POWER Jeffrey Walton (Wednesday, 8 July)

[webappsec] Monday's call CANCELLED Brad Hill (Tuesday, 7 July)

Draft agenda for Berlin F2F Brad Hill (Tuesday, 7 July)

• Re: Draft agenda for Berlin F2F Brad Hill (Tuesday, 7 July)
  • Directions to Mozilla Berlin (Re: Draft agenda for Berlin F2F) Frederik Braun (Monday, 13 July)

Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 6 July)

• Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 6 July)
  • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 6 July)
    • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 6 July)
      • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 6 July)
        • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Monday, 6 July)
          • Re: CfC: Mixed Content to PR; deadline July 6th. Ryan Sleevi (Monday, 6 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Monday, 6 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Wednesday, 8 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Wednesday, 8 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Friday, 17 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brad Hill (Friday, 17 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Friday, 17 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Friday, 17 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Friday, 17 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Saturday, 18 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Sunday, 19 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Sunday, 19 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Monday, 20 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 28 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Tuesday, 28 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Thursday, 30 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Thursday, 30 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Thursday, 30 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Anne van Kesteren (Thursday, 30 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Ryan Sleevi (Tuesday, 7 July)
            • Re: CfC: Mixed Content to PR; deadline July 6th. Brian Smith (Tuesday, 7 July)
• Re: CfC: Mixed Content to PR; deadline July 6th. Tanvi Vyas (Monday, 6 July)
  • Re: CfC: Mixed Content to PR; deadline July 6th. Brad Hill (Monday, 6 July)
    • Re: CfC: Mixed Content to PR; deadline July 6th. Tanvi Vyas (Monday, 6 July)
      • Re: CfC: Mixed Content to PR; deadline July 6th. Brad Hill (Tuesday, 7 July)
      • Re: CfC: Mixed Content to PR; deadline July 6th. Mike West (Tuesday, 7 July)

Garage4Hackers Mobile Application CTF is up Sandeep Kamble (Sunday, 5 July)

[EPR] initial feedback timeless (Wednesday, 1 July)

[powerful-features] Use of the active document in defining a secure context is fishy Boris Zbarsky (Wednesday, 1 July)

• Re: [powerful-features] Use of the active document in defining a secure context is fishy Mike West (Thursday, 2 July)
  • Re: [powerful-features] Use of the active document in defining a secure context is fishy Mike West (Thursday, 2 July)
    • Re: [powerful-features] Use of the active document in defining a secure context is fishy Anne van Kesteren (Thursday, 2 July)
  • Re: [powerful-features] Use of the active document in defining a secure context is fishy Boris Zbarsky (Thursday, 2 July)

[powerful-features] Talking about the "incumbent settings object" of a document makes no sense Boris Zbarsky (Wednesday, 1 July)

• Re: [powerful-features] Talking about the "incumbent settings object" of a document makes no sense Mike West (Thursday, 2 July)

[powerful-features] The note about responsible documents and workers makes no sense Boris Zbarsky (Wednesday, 1 July)

• Re: [powerful-features] The note about responsible documents and workers makes no sense Jeffrey Walton (Wednesday, 1 July)

CSP2: Drop 'unsafe-redirect'. Mike West (Wednesday, 1 July)

• Re: CSP2: Drop 'unsafe-redirect'. Anne van Kesteren (Wednesday, 1 July)
  • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Wednesday, 1 July)
    • Re: CSP2: Drop 'unsafe-redirect'. Anne van Kesteren (Wednesday, 1 July)
      • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Wednesday, 1 July)
• Re: CSP2: Drop 'unsafe-redirect'. Wendy Seltzer (Wednesday, 1 July)
  • Re: CSP2: Drop 'unsafe-redirect'. Wendy Seltzer (Wednesday, 1 July)
• Re: CSP2: Drop 'unsafe-redirect'. Brian Smith (Wednesday, 1 July)
  • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Thursday, 2 July)
    • Re: CSP2: Drop 'unsafe-redirect'. Anne van Kesteren (Thursday, 2 July)
      • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Thursday, 2 July)
        • Re: CSP2: Drop 'unsafe-redirect'. Anne van Kesteren (Thursday, 2 July)
          • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Thursday, 2 July)
            • Re: CSP2: Drop 'unsafe-redirect'. Anne van Kesteren (Thursday, 2 July)
    • Re: CSP2: Drop 'unsafe-redirect'. Brian Smith (Thursday, 2 July)
      • Re: CSP2: Drop 'unsafe-redirect'. Mike West (Monday, 6 July)

Re: UPGRADE: 'HTTPS' header causing compatibility issues. Adrian Hope-Bailie (Wednesday, 1 July)

• Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Wednesday, 1 July)
  • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Martin Thomson (Wednesday, 1 July)
    • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Ilya Grigorik (Tuesday, 7 July)
      • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Tuesday, 7 July)
        • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Ilya Grigorik (Tuesday, 7 July)
          • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Tuesday, 7 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Adrian Hope-Bailie (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Martin Thomson (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Brian Smith (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Tanvi Vyas (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Wednesday, 8 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Thursday, 9 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Thursday, 9 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Martin Thomson (Thursday, 9 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Thursday, 9 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Jonathan Kingston (Thursday, 9 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Thursday, 16 July)
            • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Thursday, 16 July)
• Re: UPGRADE: 'HTTPS' header causing compatibility issues. Eero Häkkinen (Wednesday, 1 July)
• Re: UPGRADE: 'HTTPS' header causing compatibility issues. Yoav Weiss (Wednesday, 1 July)
  • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Mike West (Tuesday, 7 July)
    • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Martin Thomson (Tuesday, 7 July)
    • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Richard Barnes (Tuesday, 7 July)
    • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Brian Smith (Tuesday, 7 July)
    • Re: UPGRADE: 'HTTPS' header causing compatibility issues. Yoav Weiss (Tuesday, 7 July)

Re: [webappsec] CfC: Proposed non-normative updates to CORS Mike West (Wednesday, 1 July)

Re: Post-Zakim calls? (Re: [webappsec] Teleconference Agenda 29-Jun) Brad Hill (Wednesday, 1 July)

• Re: Post-Zakim calls? (Re: [webappsec] Teleconference Agenda 29-Jun) Richard Barnes (Wednesday, 1 July)
• Re: Post-Zakim calls? (Re: [webappsec] Teleconference Agenda 29-Jun) Frederik Braun (Wednesday, 1 July)
  • Re: Post-Zakim calls? (Re: [webappsec] Teleconference Agenda 29-Jun) Arthur Barstow (Wednesday, 1 July)

Last message date: Friday, 31 July 2015 20:23:11 UTC