[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [http-state] Securing cookie domain handling

From: Daniel Stenberg <daniel at haxx.se>
To: "Yngve N. Pettersen (Developer Opera Software ASA)" <yngve at opera.com>
Cc: HTTP-state mailing list <http-state at ietf.org>
Date: Mon, 30 Jan 2012 21:56:03 +0100 (CET)
In-reply-to: <op.v8wugsdcqrq7tp at acorna.oslo.osa>
References: <op.v8wugsdcqrq7tp at acorna.oslo.osa>

On Mon, 30 Jan 2012, Yngve N. Pettersen (Developer Opera Software ASA) wrote:

Should the IETF, through the HTTPState WG, websec, or other WG look intothis issue, and try to define a method? Are there other ways forward thanthe ones mentioned above that will work equally well, or better?

As so many cookie efforts have failed already I need to ask the question: whatwould take for such an effort to actually take off and get wide use in thewild? And is an effort from IETF or others likely to make that happen?


--

 / daniel.haxx.se

References:
- [http-state] Securing cookie domain handling
  - From: Yngve N. Pettersen (Developer Opera Software ASA)

Prev by Date: [http-state] Securing cookie domain handling
Next by Date: Re: [http-state] Mail regarding draft-ietf-httpstate-cookie
Previous by thread: [http-state] Securing cookie domain handling
Next by thread: Re: [http-state] Mail regarding draft-ietf-httpstate-cookie
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.