IETF Logo Mail Archive

Re: Stateful compression of cookies (Re: Delta Compression and UTF-8 Header Values)

Nico Williams <nico@cryptonector.com> Mon, 11 February 2013 15:25 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9B0C021F8880 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 11 Feb 2013 07:25:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.262
X-Spam-Level:
X-Spam-Status: No, score=-8.262 tagged_above=-999 required=5 tests=[AWL=1.563, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_HI=-8, SARE_SUB_ENC_UTF8=0.152]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qf1+8U4Q6IVm for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 11 Feb 2013 07:25:41 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id F0A4921F8844 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Mon, 11 Feb 2013 07:25:40 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1U4vFl-00044K-GR for ietf-http-wg-dist@listhub.w3.org; Mon, 11 Feb 2013 15:25:09 +0000
Resent-Date: Mon, 11 Feb 2013 15:25:09 +0000
Resent-Message-Id: <E1U4vFl-00044K-GR@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <nico@cryptonector.com>) id 1U4vFe-00031X-DM for ietf-http-wg@listhub.w3.org; Mon, 11 Feb 2013 15:25:02 +0000
Received: from caiajhbdcagg.dreamhost.com ([208.97.132.66] helo=homiemail-a32.g.dreamhost.com) by maggie.w3.org with esmtp (Exim 4.72) (envelope-from <nico@cryptonector.com>) id 1U4vFY-0004bU-Un for ietf-http-wg@w3.org; Mon, 11 Feb 2013 15:25:02 +0000
Received: from homiemail-a32.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a32.g.dreamhost.com (Postfix) with ESMTP id 1C89E58406E for <ietf-http-wg@w3.org>; Mon, 11 Feb 2013 07:24:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type; s=cryptonector.com; bh=peb/gsGp1SAzEOz9pgw2 weHBTUs=; b=iBPyBs/pDDhAoPsZNYGl/7FKcWZk+23ChAg0QhaSU6TO6RNbWdlM Hy/A9T3jJfDBcc9CKfb+vXjHFMgUWXJMjRiWbMO+Lt230We7uonUPTF2bI0djbRa O1IRdkw76eVB+XHFNmH2XfxDv2zN6oh7FMlkfytckVvoKRF40QQWrAA=
Received: from mail-wi0-f169.google.com (mail-wi0-f169.google.com [209.85.212.169]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a32.g.dreamhost.com (Postfix) with ESMTPSA id B948A584058 for <ietf-http-wg@w3.org>; Mon, 11 Feb 2013 07:24:35 -0800 (PST)
Received: by mail-wi0-f169.google.com with SMTP id l13so3391341wie.4 for <ietf-http-wg@w3.org>; Mon, 11 Feb 2013 07:24:34 -0800 (PST)
MIME-Version: 1.0
X-Received: by 10.194.103.163 with SMTP id fx3mr12646325wjb.58.1360596274540; Mon, 11 Feb 2013 07:24:34 -0800 (PST)
Received: by 10.217.39.133 with HTTP; Mon, 11 Feb 2013 07:24:34 -0800 (PST)
In-Reply-To: <85697.1360567222@critter.freebsd.dk>
References: <CAK3OfOieNOsN7=2TV_25nTr+7Y3a-fyjSGV+F7HdbEQT8cB9xg@mail.gmail.com> <85697.1360567222@critter.freebsd.dk>
Date: Mon, 11 Feb 2013 09:24:34 -0600
Message-ID: <CAK3OfOhGoQ0HtMu4HRo5kne1fgwDkzU6AHceCUTPHEXXW5HypQ@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Poul-Henning Kamp <phk@phk.freebsd.dk>
Cc: Zhong Yu <zhong.j.yu@gmail.com>, Julian Reschke <julian.reschke@gmx.de>, "\"Martin J. Dürst\"" <duerst@it.aoyama.ac.jp>, James M Snell <jasnell@gmail.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Content-Type: text/plain; charset="UTF-8"
Received-SPF: none client-ip=208.97.132.66; envelope-from=nico@cryptonector.com; helo=homiemail-a32.g.dreamhost.com
X-W3C-Hub-Spam-Status: No, score=-3.4
X-W3C-Hub-Spam-Report: AWL=-3.252, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001
X-W3C-Scan-Sig: maggie.w3.org 1U4vFY-0004bU-Un 241f99032fe1056f07ae74077b21ecb9
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Stateful compression of cookies (Re: Delta Compression and UTF-8 Header Values)
Archived-At: <http://www.w3.org/mid/CAK3OfOhGoQ0HtMu4HRo5kne1fgwDkzU6AHceCUTPHEXXW5HypQ@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/16555
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Mon, Feb 11, 2013 at 1:20 AM, Poul-Henning Kamp <phk@phk.freebsd.dk> wrote:
> I really don't see why it should be the clients problem to store
> the servers state.
>
> If somebody needs 8k of storage for each browser that visits their
> website, they can bloody well buy their own disks...

It's a common implementation pattern.  I'm not ready to tell
application implementors to stop doing this.

It's not just the disk space, but also the need to fetch it and the
need to distribute it across related servers.  Using the client to do
this has some benefits.

(Also, a note about small session IDs: they can't be so small as to be
guessable.  32-bit session IDs would be a disaster.  I think I'd not
feel comfortable with session IDs smaller than 96-bits.)

Nico
--

v2.23.0 | Report a Bug | By Email