- From: Michal Zalewski <lcamtuf@coredump.cx>
- Date: Wed, 28 Nov 2012 22:42:29 -0800
- To: "Gordon P. Hemsley" <gphemsley@gmail.com>
- Cc: whatwg List <whatwg@whatwg.org>
There are substantial negative security consequences to sniffing content on MIME types that are commonly used as default fallback values by web servers or web application developers. This includes text/plain and application/octet-stream. /mz
Received on Thursday, 29 November 2012 06:57:54 UTC