IETF Logo Mail Archive

Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard

Lloyd Wood <lloyd.wood@yahoo.co.uk> Sat, 15 November 2014 11:56 UTC

Return-Path: <lloyd.wood@yahoo.co.uk>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 982A31A8723 for <ietf@ietfa.amsl.com>; Sat, 15 Nov 2014 03:56:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 4.147
X-Spam-Level: ****
X-Spam-Status: No, score=4.147 tagged_above=-999 required=5 tests=[BAYES_50=0.8, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, J_BACKHAIR_44=1, MIME_HTML_ONLY=0.723, RCVD_IN_BL_SPAMCOP_NET=1.347, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_XBL=0.375] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jipo0XA3UZFJ for <ietf@ietfa.amsl.com>; Sat, 15 Nov 2014 03:56:47 -0800 (PST)
Received: from nm5-vm9.bullet.mail.ir2.yahoo.com (nm5-vm9.bullet.mail.ir2.yahoo.com [212.82.96.116]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DB06F1A0018 for <ietf@ietf.org>; Sat, 15 Nov 2014 03:56:46 -0800 (PST)
Received: from [212.82.98.55] by nm5.bullet.mail.ir2.yahoo.com with NNFMP; 15 Nov 2014 11:56:45 -0000
Received: from [212.82.98.86] by tm8.bullet.mail.ir2.yahoo.com with NNFMP; 15 Nov 2014 11:56:45 -0000
Received: from [127.0.0.1] by omp1023.mail.ir2.yahoo.com with NNFMP; 15 Nov 2014 11:56:45 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 332527.57930.bm@omp1023.mail.ir2.yahoo.com
Received: (qmail 70238 invoked by uid 60001); 15 Nov 2014 11:56:45 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.co.uk; s=s1024; t=1416052605; bh=CaghTfs7DtUuBL/28RS2ji3brXavr9TPV3TxbEd4kZw=; h=Message-ID:Date:From:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=ryro6uAKTuAtVf32rEK/PavPw4JSloK9OiBKrbZ5E6uTqC5cW+r6yDCIgblqXKVG2WrrvctMDocIhpRC3QH9yAImtbkwPoOQ61xSo/LvunlkHmF7ze20GS03h/X8DbuxmxQH/t4ucXJRjhZ4OFGJnAXGDS1hfRfjCK89oo+AQ+8=
X-YMail-OSG: F93uS3sVM1lX5UpbaukOtDIS6SHE.zj2A2Fn9z9nQ6Lt0oN cSeR9K_f_5Bv93XSSjvPpObgUvqdw35104cpsGzjWP7QrL0eHuiDoNbgCwfJ 5Tft4ZDjfuYvBE2ZocLR5tGkleGZywChwf50yTjnFJ.b0bv6F.4XgdsDpycE VwHciS7JikZ.1fp8zkuaxUHs0TVJod0iijjOfi2_1PLw7pNN935N0sd6x9Vd lzjsCqbUNeTqJmq6vxezrFBU4GCxV103xCdAXyMHVjfNzjl2L5EsWmEb8FRG CLYswlxKSazu2WTRvFbncG0xkv3SMWc7xVRt1SG823lPtbxUH6KRV4lmw7ly tSqPF6APwQxOkq7KdZqyC5U2pKQ2qSgU7keehvtSxp8XuipNS82OIAxHQtCb uT4up5TFvDcRu_kr2mxgX1bR0_XanfrymU00Zc3_4TSbmIGYrWQCXiiJDaBK 3Zhu0KCzNHs1NN.VVyGDcECoWpksPl9lGXQyVXJ88pvWUCinzAwfclZzXqOG z0YdJ3W3j8hJns8HDVZOpATlCKOeV7gsjg0hthz_jmyRMJTnfFxxk_8dUQBQ hL6ggyO1C7IrLsjTnxPUckZ7BefnqB7m2J_gzWxq8iI0rGOmbQE.4x1EW8LQ OkZ7qhI0ufqjtAxkIe9CuyJxHDRMoXYHxIB3jIIQhoSoxIZI-
Received: from [202.159.142.31] by web28902.mail.ir2.yahoo.com via HTTP; Sat, 15 Nov 2014 11:56:45 GMT
X-Rocket-MIMEInfo: 002.001, U2FmZSBiZWNvbWVzIGEgZGVmYXVsdCBzZXR0aW5nIGJlY2F1c2UgaWYgeW91IGRvbid0IHNldCBpdCwgeW91IHdpbGwgYmUgaW52ZXN0aWdhdGVkIGZvciB0ZXJyb3Jpc3QgdGhvdWdodHMuIFlvdSdyZSBhZHZlcnRpc2luZyB0aG91Z2h0Y3JpbWVzIGJ5IG5vdCBzZXR0aW5nIHNhZmUudGhpcyBzYWZlIHByb3Bvc2FsIHJlYWxseSBoYXNuJ3QgYmVlbiB0aG91Z2h0IHRocm91Z2guU2VudCBmcm9tIFlhaG9vNyBNYWlsIGZvciBpUGhvbmVBdCAxNSBOb3YgMjAxNCAyMDoyNjowNCwgRWxpb3QgTGVhcjwnbGVhckABMAEBAQE-
X-Mailer: YahooMailIosMobile/3.6.8 YahooMailWebService/0.8.203.733
Message-ID: <1416052605.74534.YahooMailIosMobile@web28902.mail.ir2.yahoo.com>
Date: Sat, 15 Nov 2014 11:56:45 +0000
From: Lloyd Wood <lloyd.wood@yahoo.co.uk>
Subject: Re: Last Call: <draft-nottingham-safe-hint-05.txt> (The "safe" HTTP Preference) to Proposed Standard
To: "lear@cisco.com" <lear@cisco.com>, "joe@cdt.org" <joe@cdt.org>, "ietf@ietf.org" <ietf@ietf.org>
In-Reply-To: <54666D57.9050209@cisco.com>
MIME-Version: 1.0
Content-Type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/PWy5i-iP1Eebs2fB-lkKcZpjvnE
Cc: "draft-nottingham-safe-hint@tools.ietf.org" <draft-nottingham-safe-hint@tools.ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 15 Nov 2014 11:56:48 -0000

Safe becomes a default setting because if you don't set it, you will be investigated for terrorist thoughts. You're advertising thoughtcrimes by not setting safe.

this safe proposal really hasn't been thought through.





https://overview.mail.yahoo.com?.src=iOS" rel="nofollow">Sent from Yahoo7 Mail for iPhone

At 15 Nov 2014 20:26:04, Eliot Lear<'lear@cisco.com'> wrote:
Hi Joe,

On 11/13/14, 7:19 AM, Joseph Lorenzo Hall wrote:
>
> Hi, mnot has already heard the following concerns from us at CDT about
> this spec, but we want to make sure that these are part of the IETF
> last call comment record.
>
> * The "Safe" preference is not only a preference but a signal. It
> signals user vulnerability; when activated, the header would signal
> a user's potentially vulnerable status not only to site operators
> who intend to reply in good faith, but to those that will operate in
> bad faith and also to every intermediary on-path that could read the
> preference request.


While it could be the case that a user is vulnerable (a term that is a
bit vague), it is also the case that many other users might choose to
not want to receive content that is considered in some way "unsafe".
One could even imagine "Safe" becoming a default setting.

Eliot

v2.23.0 | Report a Bug | By Email