IETF Logo Mail Archive
Subject
From
Date
List
[websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert[websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert
websec issue tracker
2012-01-15
websec
/arch/msg/websec/pF1YvW5YOSl-Gaiwor35W583P74/
1504424
1665285
Re: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard certRe: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert
Yoav Nir
2012-01-15
websec
/arch/msg/websec/U-RqCwpU0BpkqXBWsxXmcMTwz7Y/
1504425
1665285
Re: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard certRe: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert
Adam Barth
2012-01-15
websec
/arch/msg/websec/5CSyV9iHs3QLG9eGnJUqsgjNa2M/
1504426
1665285
Re: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard certRe: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert
=JeffH
2012-01-16
websec
/arch/msg/websec/0JvGk3iOlOozASE5EM7vHVunDCw/
1504440
1665285
Re: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard certRe: [websec] #34: HSTS cache manipulation and misuse by server enabled by wildcard cert
websec issue tracker
2012-03-09
websec
/arch/msg/websec/tn34b4rtBaY99mOzsgmgPGw2Ti8/
1504509
1665285
[websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)[websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
=JeffH
2012-01-14
websec
/arch/msg/websec/5IoCdxcEdvIxLMaPdEKTMFpQ8Lo/
1504422
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-14
websec
/arch/msg/websec/R6w6mnWqEGXEmrByG_lSUYJ49tg/
1504423
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Adam Barth
2012-01-15
websec
/arch/msg/websec/knbZKxAOCrGUyzZb0LuzsTgkh5w/
1504431
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-15
websec
/arch/msg/websec/7_1mR6e22DEmofRrIc60vdAPWWQ/
1504432
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Adam Barth
2012-01-15
websec
/arch/msg/websec/HodBnGjhyA-s3biL8vryLAwnarQ/
1504433
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-15
websec
/arch/msg/websec/ImIKYUJxGUcaogZaioB7hpNjOiA/
1504434
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Adam Barth
2012-01-15
websec
/arch/msg/websec/rK1k7-rKPP99kyQ9eajQTZJ8y24/
1504436
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-15
websec
/arch/msg/websec/im_yEKNCNEgS7V00q-GsyzfTrMI/
1504437
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Adam Barth
2012-01-15
websec
/arch/msg/websec/3fG4_3caFVWolQXwxay9FWjXO7A/
1504438
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
=JeffH
2012-01-16
websec
/arch/msg/websec/kjP6SiDBGlVbss10Uw-cV_cD6T8/
1504439
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-16
websec
/arch/msg/websec/09i4cAOomXwo-ejLEYOkmXOdnGY/
1504446
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-16
websec
/arch/msg/websec/qg1V-ofDSS3yOvtYGOUabERkbRM/
1504448
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-16
websec
/arch/msg/websec/1u9T-Oz0c7Q6rbQFE6UdejQM8Gg/
1504451
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Manger, James H
2012-01-16
websec
/arch/msg/websec/BHho1_MZ57YJuKjRXj6osyPnrC4/
1504449
1665286
Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)Re: [websec] of quoted-string header field param value syntax (was: Strict-Transport-Security syntax redux)
Julian Reschke
2012-01-16
websec
/arch/msg/websec/te6iGZZ5mbjOwZEPdUdMttsZXdc/
1504450
1665286
[websec] scope of mimesniff: roles vs. contexts vs. delivery channels[websec] scope of mimesniff: roles vs. contexts vs. delivery channels
Larry Masinter
2012-01-11
websec
/arch/msg/websec/Uq-I_4-dCQpZUAdxGA2z7xgAV4A/
1504419
1665287
Re: [websec] scope of mimesniff: roles vs. contexts vs. delivery channelsRe: [websec] scope of mimesniff: roles vs. contexts vs. delivery channels
Bjoern Hoehrmann
2012-01-11
websec
/arch/msg/websec/wUcjExxeDPf-1YphBkGwBqindsg/
1504420
1665287
Re: [websec] scope of mimesniff: roles vs. contexts vs. delivery channelsRe: [websec] scope of mimesniff: roles vs. contexts vs. delivery channels
Tobias Gondrom
2012-01-12
websec
/arch/msg/websec/G22gY8jQM9HKCq-lWXYb6yvvXOg/
1504421
1665287
[websec] When is sniffing heuristic?[websec] When is sniffing heuristic?
Larry Masinter
2012-01-09
websec
/arch/msg/websec/ZlmL6Y6o0GNzMapcy8Wz0mHO5Y4/
1504411
1665288
[websec] Is sniffing a heuristic? (was Re: more on sniffing)[websec] Is sniffing a heuristic? (was Re: more on sniffing)
Adam Barth
2012-01-08
websec
/arch/msg/websec/t2JcG6I2i0dTSv5ndcLDgFVQwUA/
1504409
1665289
Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)
Bjoern Hoehrmann
2012-01-08
websec
/arch/msg/websec/8M-lPNuyu0Z5cBSa4TmiHKjnWVU/
1504410
1665289
Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)
Gervase Markham
2012-01-09
websec
/arch/msg/websec/G19HHzh8sqZKakNHAgwQBYnBV9k/
1504417
1665289
Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)
SM
2012-01-09
websec
/arch/msg/websec/yOIfGVMB15rCVRJZ1F81rdZ-EP4/
1504418
1665289
[websec] more on sniffing[websec] more on sniffing
Larry Masinter
2012-01-08
websec
/arch/msg/websec/BGYkTljBiwYJfIF20FCzZsVgiJU/
1504406
1665290
Re: [websec] more on sniffingRe: [websec] more on sniffing
Adam Barth
2012-01-08
websec
/arch/msg/websec/_WTTu0PqSaqvGba3MRNhienLCZU/
1504408
1665290
[websec] #33: HSTS: quoted-string grammar in (extension) directives ?[websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-01-03
websec
/arch/msg/websec/hYhhoS3sqEVMkaHQ1i7YT5VPOSY/
1504388
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-01-25
websec
/arch/msg/websec/Bz5fJ1i0UtaaFa52nWsjW1J0xFk/
1504460
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-01-31
websec
/arch/msg/websec/vcVED-IR2JUozyWLeI4uy5k-Rsc/
1504468
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-03-09
websec
/arch/msg/websec/I2sa1IFvLuMB0JPzS0YZ1tR2j_I/
1504493
1665291
[websec] HSTS ABNF still broken: requires leading semi-colon[websec] HSTS ABNF still broken: requires leading semi-colon
Manger, James H
2012-03-13
websec
/arch/msg/websec/m5hffVo6mwuQho10jNHVvxfmt1o/
1504530
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-03-09
websec
/arch/msg/websec/w5OZrnYZ0r0MJTW6oac63EjX1M0/
1504510
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-03-26
websec
/arch/msg/websec/5W3QwVCGz4eQ3W1xgZyedt1dVK4/
1504556
1665291
Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?Re: [websec] #33: HSTS: quoted-string grammar in (extension) directives ?
websec issue tracker
2012-06-12
websec
/arch/msg/websec/EJHE6rUEPgBPxm8sCIlZYDqr9-0/
1504661
1665291
[websec] default value for max-age ? (was: Re: Strict-Transport-Security syntax redux)[websec] default value for max-age ? (was: Re: Strict-Transport-Security syntax redux)
=JeffH
2012-01-02
websec
/arch/msg/websec/E4iozi6yNzXN9KsFAck7460hpIA/
1504385
1665292
Re: [websec] default value for max-age ? (was: Re: Strict-Transport-Security syntax redux)Re: [websec] default value for max-age ? (was: Re: Strict-Transport-Security syntax redux)
Chris Palmer
2012-01-03
websec
/arch/msg/websec/88FJwOGjfEnc3E9aSc6JozROvoA/
1504386
1665292
48 Messages
Page 1 of 2 Next