W3C home > Mailing lists > Public > whatwg@whatwg.org > October 2011

[whatwg] [CORS] WebKit tainting image instead of throwing error

From: Anne van Kesteren <annevk@opera.com>
Date: Tue, 04 Oct 2011 21:14:18 +0200
Message-ID: <op.v2uc14m564w2qv@cm-84.208.66.146.getinternet.no>
On Tue, 04 Oct 2011 21:06:29 +0200, Boris Zbarsky <bzbarsky at mit.edu> wrote:
> Yes; the point of specifying crossorigin is to opt in to the security  
> model we think the web _should_ have but that we can't roll out across  
> the board.  Yet.

Well, what you think it should have is not shared by me.


-- 
Anne van Kesteren
http://annevankesteren.nl/
Received on Tuesday, 4 October 2011 12:14:18 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 16:59:37 UTC