IETF Logo Mail Archive

Re: [http-state] Comments on draft-ietf-httpstate-cookie-08

Bjoern Hoehrmann <derhoermi@gmx.net> Sat, 29 May 2010 12:51 UTC

Return-Path: <derhoermi@gmx.net>
X-Original-To: http-state@core3.amsl.com
Delivered-To: http-state@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 034DD3A6AC1 for <http-state@core3.amsl.com>; Sat, 29 May 2010 05:51:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.416
X-Spam-Level:
X-Spam-Status: No, score=-1.416 tagged_above=-999 required=5 tests=[AWL=1.183, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cf2o4Tdx8BwJ for <http-state@core3.amsl.com>; Sat, 29 May 2010 05:51:09 -0700 (PDT)
Received: from mail.gmx.net (mail.gmx.net [213.165.64.20]) by core3.amsl.com (Postfix) with SMTP id 58FC43A6AC6 for <http-state@ietf.org>; Sat, 29 May 2010 05:51:07 -0700 (PDT)
Received: (qmail invoked by alias); 29 May 2010 12:50:55 -0000
Received: from dslb-094-222-135-191.pools.arcor-ip.net (EHLO hive) [94.222.135.191] by mail.gmx.net (mp024) with SMTP; 29 May 2010 14:50:55 +0200
X-Authenticated: #723575
X-Provags-ID: V01U2FsdGVkX19CDIUvmlhCWDgs82t5wk6ZlL+2ckR2ccKp8ae60c ag2oz3I4Je1ImZ
From: Bjoern Hoehrmann <derhoermi@gmx.net>
To: yngve@opera.com
Date: Sat, 29 May 2010 14:50:47 +0200
Message-ID: <c33206l4vu67g74dmi7vf1ph46m7nf5o3c@hive.bjoern.hoehrmann.de>
References: <op.vdfzz8lovqd7e2@killashandra.oslo.osa>
In-Reply-To: <op.vdfzz8lovqd7e2@killashandra.oslo.osa>
X-Mailer: Forte Agent 3.3/32.846
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Y-GMX-Trusted: 0
Cc: "http-state@ietf.org" <http-state@ietf.org>
Subject: Re: [http-state] Comments on draft-ietf-httpstate-cookie-08
X-BeenThere: http-state@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discuss HTTP State Management Mechanism <http-state.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/http-state>
List-Post: <mailto:http-state@ietf.org>
List-Help: <mailto:http-state-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 May 2010 12:51:11 -0000

* Yngve Nysaeter Pettersen wrote:
>* Sec 4.1.2.3
>
>-   For example, some user agents will reject Domain attributes of "com"  
>or "co.uk".
>
>This seems to imply that there are agents that will accept a TLD as a  
>valid domain (except ".local" from 2965, which is a special case). I'd  
>rather have the section say that a domain attribute need to specify at  
>least a second level domain.

As I understand it, there are a number of frameworks that will auto-
matically use the server name, or failing that its address, as default
value for the domain attribute. It does not strike me as a good idea to
prohibit `Domain=localhost` for instance.
-- 
Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de
25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/

v2.23.0 | Report a Bug | By Email