RE: comments on draft-abarth-mime-sniff-03

Uh... interesting that you think so, but ...
anyone else ever hear of "content-script-type"?


-----Original Message-----
From: Eric J. Bowman [] 
Sent: Friday, January 22, 2010 3:34 PM
To: David Booth
Cc: Larry Masinter;
Subject: Re: comments on draft-abarth-mime-sniff-03

David Booth wrote:
> FWIW, I also posted some comments on draft-abarth-mime-sniff-03:


"But they do not distinguish plain HTML from HTML that embeds
JavaScript or other scripting languages.  This forces us to paint plain
HTML with the same security brush as we paint JavaScript, and this seems

FWIW, this distinction can be made by sending a "Content-Script-Type:
application/javascript" (or other script type) header.


Received on Saturday, 23 January 2010 03:06:05 UTC