[webkit-dev] script MIME restrictions for X-Content-Type-Options: nosniff
Tom Sepez
tsepez at chromium.org
Thu Nov 10 09:50:47 PST 2011
Hi webkit-dev,
I'd like to implement restrictions on script execution in webkit along the
lines of what has already happened here:
http://msdn.microsoft.com/en-us/library/gg622941(v=vs.85).aspx and to that
end I've filed https://bugs.webkit.org/show_bug.cgi?id=71851.
A question has come up as to whether this needs to/should be behind an
ENABLE_NOSNIFF flag, so I'm reaching out to this larger list to solicit
feedback. Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-dev/attachments/20111110/9f0782a0/attachment.html>
More information about the webkit-dev
mailing list