Re: [websec] Issue 17: Registry for magic numbers
"Martin J. Dürst" <duerst@it.aoyama.ac.jp> Tue, 25 October 2011 04:07 UTC
Return-Path: <duerst@it.aoyama.ac.jp>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 882DE11E80C4 for <websec@ietfa.amsl.com>; Mon, 24 Oct 2011 21:07:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -99.23
X-Spam-Level:
X-Spam-Status: No, score=-99.23 tagged_above=-999 required=5 tests=[AWL=0.560, BAYES_00=-2.599, HELO_EQ_JP=1.244, HOST_EQ_JP=1.265, MIME_8BIT_HEADER=0.3, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BYxrM1VW8eKU for <websec@ietfa.amsl.com>; Mon, 24 Oct 2011 21:07:56 -0700 (PDT)
Received: from scintmta01.scbb.aoyama.ac.jp (scintmta01.scbb.aoyama.ac.jp [133.2.253.33]) by ietfa.amsl.com (Postfix) with ESMTP id AD6F811E80BC for <websec@ietf.org>; Mon, 24 Oct 2011 21:07:54 -0700 (PDT)
Received: from scmse02.scbb.aoyama.ac.jp ([133.2.253.231]) by scintmta01.scbb.aoyama.ac.jp (secret/secret) with SMTP id p9P47f6u002482 for <websec@ietf.org>; Tue, 25 Oct 2011 13:07:45 +0900
Received: from (unknown [133.2.206.133]) by scmse02.scbb.aoyama.ac.jp with smtp id 1890_59ec_e2897df8_febe_11e0_8338_001d096c5782; Tue, 25 Oct 2011 13:07:41 +0900
Received: from [IPv6:::1] ([133.2.210.1]:59518) by itmail.it.aoyama.ac.jp with [XMail 1.22 ESMTP Server] id <S156313F> for <websec@ietf.org> from <duerst@it.aoyama.ac.jp>; Tue, 25 Oct 2011 13:07:46 +0900
Message-ID: <4EA6360C.7070700@it.aoyama.ac.jp>
Date: Tue, 25 Oct 2011 13:07:40 +0900
From: "\"Martin J. Dürst\"" <duerst@it.aoyama.ac.jp>
Organization: Aoyama Gakuin University
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100722 Eudora/3.0.4
MIME-Version: 1.0
To: Adam Barth <ietf@adambarth.com>
References: <CAJE5ia8n+B10TbjpVYbVieTWEHo3AY_pRm1EToNX_iB1+3UTCw@mail.gmail.com>
In-Reply-To: <CAJE5ia8n+B10TbjpVYbVieTWEHo3AY_pRm1EToNX_iB1+3UTCw@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: websec <websec@ietf.org>
Subject: Re: [websec] Issue 17: Registry for magic numbers
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Oct 2011 04:07:56 -0000
Hello Adam, On 2011/10/25 11:21, Adam Barth wrote: > http://trac.tools.ietf.org/wg/websec/trac/ticket/17 refers to an IANA > registry with magic numbers for various media types. I wanted to > compare them to what's in the draft, but I couldn't find it. I found > the media type registry, e.g., for images: > > http://www.iana.org/assignments/media-types/image/index.html > > but I don't see any magic numbers. Would someone be willing to point > me in the right direction? They are in the templates. To get the template for a registration, start at the overview page (http://www.iana.org/assignments/media-types/index.html). Then go to the page that lists all the registration for a give top level, e.g. http://www.iana.org/assignments/media-types/image/index.html for images. Then look at each registration template (click on the link in the left column, or in the right column if the left one doesn't have a link and the right one is to an RFC). You may then find a magic number in the registration template. As an example, for image/jp2, the template is at http://www.iana.org/assignments/media-types/image/jp2. But it looks like earlier templates didn't have a field for a magic number, and this and the reasons Anne gave make this information helpful for cross-checking, but not much more. Regards, Martin.
- [websec] Issue 17: Registry for magic numbers Adam Barth
- Re: [websec] Issue 17: Registry for magic numbers Anne van Kesteren
- Re: [websec] Issue 17: Registry for magic numbers Adam Barth
- Re: [websec] Issue 17: Registry for magic numbers Martin J. Dürst
- Re: [websec] Issue 17: Registry for magic numbers Tobias Gondrom
- Re: [websec] Issue 17: Registry for magic numbers Adam Barth
- Re: [websec] Issue 17: Registry for magic numbers Tobias Gondrom
- Re: [websec] Issue 17: Registry for magic numbers Adam Barth
- Re: [websec] Issue 17: Registry for magic numbers Larry Masinter
- Re: [websec] Issue 17: Registry for magic numbers Adam Barth
- Re: [websec] Issue 17: Registry for magic numbers Larry Masinter
- Re: [websec] Issue 17: Registry for magic numbers Adam Barth