Re: [webrtc-extensions] Add a CSP check to RTCPeerConnection.addIceCandidate(). (#81) from Anne van Kesteren via GitHub on 2021-11-22 (public-webrtc-logs@w3.org from November 2021)

From: Anne van Kesteren via GitHub <sysbot+gh@w3.org>
Date: Mon, 22 Nov 2021 08:07:16 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-975228283-1637568434-sysbot+gh@w3.org>

@jan-ivar I'm not sure if they are requirements, but it has some nice properties:

* By having a single error signal, we reduce the risk of exposing privileged information.
* By having a single error signal, we simplify the setup for web developers and reduce the chance an exceptional situation isn't handled by code.

When it talks to STUN/TURN servers, isn't at least port blocking in effect there? It seems weird if there are no policies governing those connections.

-- 
GitHub Notification of comment by annevk
Please view or discuss this issue at https://github.com/w3c/webrtc-extensions/pull/81#issuecomment-975228283 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Monday, 22 November 2021 08:07:17 UTC