Ignore:
Timestamp:
26/01/14 02:04:21 (6 years ago)
Author:
fielding@…
Message:

(design) Strengthen advice on userinfo handling of untrusted URIs to a SHOULD; addresses #531

File:
1 edited

Legend:

Unmodified
Added
Removed
  • draft-ietf-httpbis/latest/p1-messaging.xml

    r2581 r2582  
    929929   request target or header field value.
    930930   Before making use of an "http" URI reference received from an untrusted
    931    source, a recipient ought to parse for userinfo and treat its presence as
     931   source, a recipient &SHOULD; parse for userinfo and treat its presence as
    932932   an error; it is likely being used to obscure the authority for the sake of
    933933   phishing attacks.
Note: See TracChangeset for help on using the changeset viewer.