W3C home > Mailing lists > Public > www-font@w3.org > April to June 2010

Re: What constitutes protection [was: About using CORS]

From: Robert O'Callahan <robert@ocallahan.org>
Date: Thu, 6 May 2010 10:20:21 +1200
Message-ID: <q2n11e306601005051520g3fadfbcn81f00666524f5930@mail.gmail.com>
To: Jeffrey Veen <jeff@typekit.com>
Cc: www-font@w3.org
Referer checking has a few problems:
-- the Referer header reveals the full URL of the referring page, so it's a
privacy problem
-- therefore, some firewalls strip it and break sites that depend on it
-- it's harder to deploy than just putting a file on your site, or even
adding a custom HTTP header

Rob
-- 
"He was pierced for our transgressions, he was crushed for our iniquities;
the punishment that brought us peace was upon him, and by his wounds we are
healed. We all, like sheep, have gone astray, each of us has turned to his
own way; and the LORD has laid on him the iniquity of us all." [Isaiah
53:5-6]
Received on Wednesday, 5 May 2010 22:20:54 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 22:37:34 UTC