ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard

2014-11-15 12:56:31
from [Brian E Carpenter] [Permanent Link] 
On 16/11/2014 07:34, Yoav Nir wrote:

Hi, Lloyd

That is one possible outcome: all decent people have “safe” set.


Please define "decent" in a culture-independent way.


Another, IMO more likely possible outcome is that servers serve content that 
is so bland with “safe” set, that nobody sets it, but some people feel like 
they’ve done something good by setting it for their children.

Imagine Wikipedia with nothing controversial: nothing about abortions, 
religions, genetics, evolution…


And that will not happen, so Wikipedia will simply ignore "safe", so browsers
set to request "safe" will just get raw Wikipedia, so "safe" will be useless
for parents wishing to censor their children's access to Wikipedia.

Thanks; this is a good illustration of why this whole thing is a pointless fig 
leaf.

  Brian


Yoav


On Nov 15, 2014, at 1:56 AM, Lloyd Wood 
<lloyd(_dot_)wood(_at_)yahoo(_dot_)co(_dot_)uk> wrote:

Safe becomes a default setting because if you don't set it, you will be 
investigated for terrorist thoughts. You're advertising thoughtcrimes by not 
setting safe.

this safe proposal really hasn't been thought through.





Sent from Yahoo7 Mail for iPhone <https://overview.mail.yahoo.com/?.src=iOS>

At 15 Nov 2014 20:26:04, Eliot Lear<'lear(_at_)cisco(_dot_)com 
<mailto:lear(_at_)cisco(_dot_)com>'> wrote:
Hi Joe,

On 11/13/14, 7:19 AM, Joseph Lorenzo Hall wrote:

Hi, mnot has already heard the following concerns from us at CDT about
this spec, but we want to make sure that these are part of the IETF
last call comment record.

* The "Safe" preference is not only a preference but a signal. It
signals user vulnerability; when activated, the header would signal
a user's potentially vulnerable status not only to site operators
who intend to reply in good faith, but to those that will operate in
bad faith and also to every intermediary on-path that could read the
preference request.


While it could be the case that a user is vulnerable (a term that is a
bit vague), it is also the case that many other users might choose to
not want to receive content that is considered in some way "unsafe". 
One could even imagine "Safe" becoming a default setting.

Eliot
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Yoav Nir
Next by Date:  Re: IAB Statement on Internet Confidentiality, Phillip Hallam-Baker
Previous by Thread:  Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Yoav Nir
Next by Thread:  Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard, Matthew Kerwin
Indexes:  [Date] [Thread] [Top] [All Lists]