[tahoe-lafs-trac-stream] [tahoe-lafs] #1890: submit proposal for restrict-referrer-leakage to the CSP standardizers and implementors
tahoe-lafs
trac at tahoe-lafs.org
Thu Dec 6 13:55:41 UTC 2012
#1890: submit proposal for restrict-referrer-leakage to the CSP standardizers and
implementors
-------------------------+--------------------------------
Reporter: zooko | Owner: davidsarah
Type: task | Status: assigned
Priority: normal | Milestone: soon (release n/a)
Component: unknown | Version: 1.9.2
Resolution: | Keywords: referer referrer
Launchpad Bug: |
-------------------------+--------------------------------
Comment (by gdt):
It strikes me that having to fix this is a clue that putting security-
sensitive content in URLs isn't a good idea, or at best a fragile plan.
Perhaps capabilities should be treated like passwords within the web
world?
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/1890#comment:5>
tahoe-lafs <https://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list