Re: Sniffing and HTTP-bis (ACTION-309)

Henry S. Thompson wrote:
> ...
> So, what's interesting about this to me is that
>  a) Adam Barth's current mime-sniff draft [1] rules it out (because
>     text/plain to text/html is classified as privilege escalation,
>     because text/html is 'scriptable');

But as far as I understand it it *does* sniff text/plain as text/html in 
some cases (when certain control characters are found in the right place).

> ...

Best regards, Julian

Received on Sunday, 6 December 2009 13:14:56 UTC