Re: [http-state] Closing Ticket 6: host-only cookies

Daniel Stenberg <daniel@haxx.se> Sat, 13 February 2010 12:18 UTC

Return-Path: <daniel@haxx.se>
X-Original-To: http-state@core3.amsl.com
Delivered-To: http-state@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D825C28C17F for <http-state@core3.amsl.com>; Sat, 13 Feb 2010 04:18:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.249
X-Spam-Level:
X-Spam-Status: No, score=-2.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7wBgrBJz9pPM for <http-state@core3.amsl.com>; Sat, 13 Feb 2010 04:18:56 -0800 (PST)
Received: from giant.haxx.se (giant.haxx.se [83.168.254.42]) by core3.amsl.com (Postfix) with ESMTP id 017DE28C16C for <http-state@ietf.org>; Sat, 13 Feb 2010 04:18:54 -0800 (PST)
Received: from giant.haxx.se (giant.haxx.se [83.168.254.42]) by giant.haxx.se (8.14.3/8.14.3/Debian-9) with ESMTP id o1DCK64U001154; Sat, 13 Feb 2010 13:20:06 +0100
Date: Sat, 13 Feb 2010 13:20:06 +0100 (CET)
From: Daniel Stenberg <daniel@haxx.se>
X-X-Sender: dast@giant.haxx.se
To: Adam Barth <ietf@adambarth.com>
In-Reply-To: <7789133a1002122355s6f8b6e75oe1ecd1f7234dcc45@mail.gmail.com>
Message-ID: <alpine.DEB.2.00.1002131317490.29234@tvnag.unkk.fr>
References: <7789133a1002122355s6f8b6e75oe1ecd1f7234dcc45@mail.gmail.com>
User-Agent: Alpine 2.00 (DEB 1167 2008-08-23)
X-fromdanielhimself: yes
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Cc: http-state <http-state@ietf.org>
Subject: Re: [http-state] Closing Ticket 6: host-only cookies
X-BeenThere: http-state@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discuss HTTP State Management Mechanism <http-state.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/http-state>
List-Post: <mailto:http-state@ietf.org>
List-Help: <mailto:http-state-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-state>, <mailto:http-state-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Feb 2010 12:19:10 -0000

On Fri, 12 Feb 2010, Adam Barth wrote:

> 1) User agents are required to implement host-only cookies (matching the 
> behavior of Firefox, Chrome, Safari, and Opera).
>
> 2) The spec warns the reader that some legacy user agents (in this case IE) 
> do not implement host-only cookies.

For the record: I think this is a great compromise given the situation.

-- 

  / daniel.haxx.se