[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: well-formedness error

To: Tim Bray <Tim.Bray@xxxxxxx>
Subject: Re: well-formedness error
From: "MURATA Makoto (FAMILY Given)" <EB2M-MRT@xxxxxxxxxxxxxxx>
Date: Thu, 17 Jun 2004 20:54:08 +0900
Cc: Sam Ruby <rubys@xxxxxxxxxxxxxxxx>, danny666@xxxxxxxxxxx, atom-syntax@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/atom-syntax/mail-archive/>
List-id: <atom-syntax.imc.org>
List-unsubscribe: <mailto:atom-syntax-request@imc.org?body=unsubscribe>
References: <> <>
Sender: owner-atom-syntax@xxxxxxxxxxxx


On Thu, 17 Jun 2004 00:06:28 -0700
Tim Bray <Tim.Bray@xxxxxxx> wrote:

> I generally find it hard to get upset about this, since *if* the body 
> is XML, if the software cheerfully ignores the headers and points an 
> XML parser at it, the encoding will get sorted out and everything will 
> just work.  However, smarter people than I have said that ignoring the 
> Content-type is a potentially rich source of security holes.  Hmm, I 
> wonder if one could adopt a Best Practice along the lines of "respect 
> the Content-type header unless it's text/xml which is obviously a sign 
> of someone who was completely clueless about setting their Content-type 
> header."

I do not agree with your wording, but I propose to use application/xml 
or application/something+xml for Atom and disallow text/xml for it.  

Cheers,

-- 
MURATA Makoto (FAMILY Given) <EB2M-MRT@xxxxxxxxxxxxxxx>

References:
- Re: well-formedness error
  - From: Sam Ruby
- Re: well-formedness error
  - From: Tim Bray

Prev by Date: Re: well-formedness error
Next by Date: Re: RFC 3023 bis (was: RE: well-formedness error)
Previous by thread: Re: well-formedness error
Next by thread: Re: well-formedness error
Index(es):
- Date
- Thread