Return-Path: X-Original-To: apmail-httpd-dev-archive@www.apache.org Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 08082DE63 for ; Thu, 13 Sep 2012 11:48:52 +0000 (UTC) Received: (qmail 81147 invoked by uid 500); 13 Sep 2012 11:48:51 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 80741 invoked by uid 500); 13 Sep 2012 11:48:45 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 80695 invoked by uid 99); 13 Sep 2012 11:48:43 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 13 Sep 2012 11:48:43 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of covener@gmail.com designates 209.85.217.173 as permitted sender) Received: from [209.85.217.173] (HELO mail-lb0-f173.google.com) (209.85.217.173) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 13 Sep 2012 11:48:36 +0000 Received: by lbbgm13 with SMTP id gm13so2340462lbb.18 for ; Thu, 13 Sep 2012 04:48:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type; bh=3vS46NgEG1ph5r706xShdnDzNP8gRXSPe52XeXN/0Fs=; b=RC1LjKbZ4Gdi45V9S/mvdqncMK4Z4mfbOvTtOyrhBGmyEP3DYptVJ2yOh8U4vMa+NJ HFbZLQRM9qRt27+4A2Ky9tXve7mJlu5XGEV6Cipybl1+En7VupqUmrzHyzQiXKU9BYre fjUda4yjnjQ37ckiWbvC+yQu/Eb1UdPtAPaGaKARdmC9+NUjO7OBezxRn+qs2wCkfc0f AXCKu7lJP3qymRrbzQD0Wka6CpX9NJMbEdIXhOaV5qPb6m6/1ZmR3GezyMuY6OZjLApW YIEwIG7c9iepMfHVDt7wiM6+kYE5eOptOWSqNwnmnWEIS8RHpXsTqGldpp4HE/rLTnmb gm2Q== MIME-Version: 1.0 Received: by 10.112.36.138 with SMTP id q10mr837222lbj.63.1347536895613; Thu, 13 Sep 2012 04:48:15 -0700 (PDT) Received: by 10.112.61.165 with HTTP; Thu, 13 Sep 2012 04:48:15 -0700 (PDT) Date: Thu, 13 Sep 2012 07:48:15 -0400 Message-ID: Subject: DNT & IE10 (was svn commit: r1371878 - /httpd/httpd/trunk/docs/conf/httpd.conf.in) From: Eric Covener To: dev@httpd.apache.org Content-Type: text/plain; charset=ISO-8859-1 On Sat, Aug 11, 2012 at 3:51 AM, wrote: > Author: fielding > Date: Sat Aug 11 07:51:52 2012 > New Revision: 1371878 > > URL: http://svn.apache.org/viewvc?rev=1371878&view=rev > Log: > Apache does not tolerate deliberate abuse of open standards I've come around on this one over time. While I appreciate the message/intent, I don't think this is reasonable for the default configuration because it errs on the side of ditching a privacy header and information loss for a (sensitive) header that we're not yet interpreting. IMO it's enough even without this specific DNT text: "An HTTP intermediary must not add, delete, or modify the DNT header field in requests forwarded through that intermediary unless that intermediary has been specifically installed or configured to do so by the user making the requests. For example, an Internet Service Provider must not inject DNT: 1 on behalf of all of their users who have not selected a choice." I'd like to revert it, but this is not yet a veto. I'd like to hear what others think and would appreciate an ACK from Roy/Greg/Jim who voted for the backport to avoid any churn.