Re: [SPAM] Re: What is missing for building "real" services?

On 13 January 2014 06:13, Tim Panton new <> wrote:
> Strikes me that a good short term default would be that https:// sites
> default
> to not supporting screenshot. http:// sites allow it, as do any that have
> the
> meta-screenshot tag set.

That's somewhat attractive, but I'm not sure that that is a good idea.
 We haven't proven unequivocally that http: pages don't contain
sensitive content.

Sure, you can argue that there is nothing that an active attacker
can't already get, but that's a little different to what we're getting

Received on Monday, 13 January 2014 18:13:40 UTC