Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Pref

ietf

Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard

2014-11-14 15:00:24

Hi Joe,

On 11/13/14, 7:19 AM, Joseph Lorenzo Hall wrote:


Hi, mnot has already heard the following concerns from us at CDT about
this spec, but we want to make sure that these are part of the IETF
last call comment record.

* The "Safe" preference is not only a preference but a signal.  It
  signals user vulnerability; when activated, the header would signal
  a user's potentially vulnerable status not only to site operators
  who intend to reply in good faith, but to those that will operate in
  bad faith and also to every intermediary on-path that could read the
  preference request.


While it could be the case that a user is vulnerable (a term that is a
bit vague), it is also the case that many other users might choose to
not want to receive content that is considered in some way "unsafe". 
One could even imagine "Safe" becoming a default setting.

Eliot

signature.asc
Description: OpenPGP digital signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Joseph Lorenzo Hall Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Barry Leiba Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Joseph Lorenzo Hall Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Murray S. Kucherawy Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Joseph Lorenzo Hall Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Eliot Lear <= Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, joel jaeggli Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Yoav Nir Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Murray S. Kucherawy Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, John Levine Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Joseph Lorenzo Hall Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, John R Levine Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Lloyd Wood Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Yoav Nir Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Brian E Carpenter Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Matthew Kerwin

Previous by Date:	Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Barry Leiba
Next by Date:	Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, joel jaeggli
Previous by Thread:	Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Joseph Lorenzo Hall
Next by Thread:	Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, joel jaeggli
Indexes:	[Date] [Thread] [Top] [All Lists]