IETF Logo Mail Archive

[apps-discuss] HTTP Browser Hints

Nicholas Shanks <nickshanks@nickshanks.com> Fri, 16 November 2012 10:01 UTC

Return-Path: <nickshanks@gmail.com>
X-Original-To: apps-discuss@ietfa.amsl.com
Delivered-To: apps-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6847021F856E for <apps-discuss@ietfa.amsl.com>; Fri, 16 Nov 2012 02:01:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.977
X-Spam-Level:
X-Spam-Status: No, score=-2.977 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vYYtbUo8S2UT for <apps-discuss@ietfa.amsl.com>; Fri, 16 Nov 2012 02:01:11 -0800 (PST)
Received: from mail-ee0-f44.google.com (mail-ee0-f44.google.com [74.125.83.44]) by ietfa.amsl.com (Postfix) with ESMTP id 7D4DD21F8561 for <apps-discuss@ietf.org>; Fri, 16 Nov 2012 02:01:11 -0800 (PST)
Received: by mail-ee0-f44.google.com with SMTP id b47so1677614eek.31 for <apps-discuss@ietf.org>; Fri, 16 Nov 2012 02:01:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:from:date:x-google-sender-auth:message-id :subject:to:content-type; bh=pO9zjNw3xHSSwcfUnGnbS8AWPP4b6C15vb0uNXDncHg=; b=ZXazvLPw3BWQ1vTxD2jY6lcJKGb7BDY2+uqf/aEoV/FRfdMV+XAcEw07/PtGVPMW3I qn+U9OMMirJDXycryggYBjYYgigWBBc5aYiiw+Q4wk0XLBv4vGW5wqp0oi589yZkbzZK F2wgsLC2dB04p+NlSoBeU75/8LBbsa1OEQfHply2fMa5YwwXRLx5jr8igui63ZC4+qc4 hv83w4L5nIPBt9rY7JqAQ6EgjaotSe5ajTv7xgiM+TOT3A+6MbOJomLbxVlaQPtUHBRq QyNS65mnZsvazY9gSemK+uUuZj1rTjm9xNMMZOOwJciDjBOGvX6OzWrIjuEsWVS8BwdO UNBw==
Received: by 10.14.199.134 with SMTP id x6mr12145033een.31.1353060070505; Fri, 16 Nov 2012 02:01:10 -0800 (PST)
MIME-Version: 1.0
Sender: nickshanks@gmail.com
Received: by 10.14.189.14 with HTTP; Fri, 16 Nov 2012 02:00:29 -0800 (PST)
From: Nicholas Shanks <nickshanks@nickshanks.com>
Date: Fri, 16 Nov 2012 10:00:29 +0000
X-Google-Sender-Auth: 2wgMG_Zse3c25mczg6W75OOEgEg
Message-ID: <CA+hEJVX+0K_YF-zwx9sg2mS17fTJ+O93yzUphDAQ2WY95DTOVQ@mail.gmail.com>
To: apps-discuss@ietf.org
Content-Type: text/plain; charset="UTF-8"
Subject: [apps-discuss] HTTP Browser Hints
X-BeenThere: apps-discuss@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: General discussion of application-layer protocols <apps-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/apps-discuss>
List-Post: <mailto:apps-discuss@ietf.org>
List-Help: <mailto:apps-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apps-discuss>, <mailto:apps-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Nov 2012 10:14:46 -0000

Regarding http://tools.ietf.org/html/draft-nottingham-http-browser-hints-04
I suggest a new property:

Browser Hint Name: no-referer
Description: Tells the client to either not send the Referer header
(true), or use its own discretion (false).
Value Type: true | false
Contact: Nicholas Shanks <nickshanks@nickshanks.com>
Specification:
Notes: Usual behaviour when hint is not present is equivalent to a
value of false. Indicates that the server does not use the Referer
header for access control, session tracking, negotiation, or other
activities which may vary responses for any URI in its domain,
including 404 responses, feedback forms, and the like. Implies that
the server is not interested in recording the referring URI for
statistical analysis purposes or client fingerprinting.

-- 
Nicholas.

v2.23.0 | Report a Bug | By Email