- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Sun, 06 Dec 2009 14:14:20 +0100
- To: "Henry S. Thompson" <ht@inf.ed.ac.uk>
- CC: Tim Berners-Lee <timbl@w3.org>, Jonathan Rees <jar@creativecommons.org>, David Booth <david@dbooth.org>, www-tag@w3.org
Henry S. Thompson wrote: > ... > So, what's interesting about this to me is that > > a) Adam Barth's current mime-sniff draft [1] rules it out (because > text/plain to text/html is classified as privilege escalation, > because text/html is 'scriptable'); But as far as I understand it it *does* sniff text/plain as text/html in some cases (when certain control characters are found in the right place). > ... Best regards, Julian
Received on Sunday, 6 December 2009 13:14:56 UTC