Re: [websec] Is sniffing a heuristic? (was Re: more on sniffing)

[Bjoern Hoehrmann <derhoermi@gmx.net>]

* Adam Barth wrote:
>On Sun, Jan 8, 2012 at 12:55 PM, Adam Barth <ietf@adambarth.com> wrote:
>> On Sun, Jan 8, 2012 at 9:12 AM, Larry Masinter <masinter@adobe.com> wrote:
>>>      <t>Sniffing is by its nature a heuristic process, because there are
>>>      many situations where content matches the signatures and capabilities
>>>      of many different possible content-type values.
>>
>> I disagree with this statement as well.  The sniffing we're talking
>> about here is not a heuristic.  It's a historical anomaly that needs
>> to be corrected for in order for user agents to be compatible with
>> some web sites.
>
>Let me expand this point some more.  Does you view the HTML5 parsing
>algorithm a heuristic?  The sniffing algorithm is the same sort of
>thing as the HTML5 parsing algorithm in that it's a somewhat
>unpleasant algorithm for interpreting responses from servers that's
>compatible with existing deployments.

In computer science heuristics are problem-solving techniques that pro-
vide good but not neccesarily correct solutions; they are employed as a
trade-off between correctness and other desirable properties. Sniffing
produces good results that are not always correct in a trade-off between
correctness and other properties like "compatibility", so it's a heuris-
tic. The "HTML5" parsing algorithm also produces good results, but there
is no widely accepted basis for claiming it produces incorrect results.

Saying that the sniffing algorithm always generates correct solutions is
like saying the Content-Type header in HTTP responses always has correct
media type information.
-- 
Björn Höhrmann · mailto:bjoern@hoehrmann.de · http://bjoern.hoehrmann.de
Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de
25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/