Changeset 269 for draft-ietf-httpbis/latest

Timestamp:

20/06/08 16:48:20 (13 years ago)

Author:

julian.reschke@…

Message:

Resolve #121: RFC 2183 replaced RFC 1806, only cite the newer one (closes #121).

Location:

draft-ietf-httpbis/latest

Files:

• p3-payload.html (modified) (7 diffs)
• p3-payload.xml (modified) (4 diffs)

draft-ietf-httpbis/latest/p3-payload.html

@@ -474 +474 @@
          <tr>
             <td class="header left"></td>
-            <td class="header right">June 19, 2008</td>
+            <td class="header right">June 20, 2008</td>
          </tr>
       </table>
@@ -1350 +1350 @@
       </p>
       <h2 id="rfc.section.8.2"><a href="#rfc.section.8.2">8.2</a>&nbsp;<a id="content-disposition.issues" href="#content-disposition.issues">Content-Disposition Issues</a></h2>
-      <p id="rfc.section.8.2.p.1"> <a href="#RFC1806" id="rfc.xref.RFC1806.1"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header">[RFC1806]</cite></a>, from which the often implemented Content-Disposition (see <a href="#content-disposition" id="rfc.xref.content-disposition.2" title="Content-Disposition">Appendix&nbsp;B.1</a>) header in HTTP is derived, has a number of very serious security considerations. Content-Disposition is not part of the
-         HTTP standard, but since it is widely implemented, we are documenting its use and risks for implementors. See <a href="#RFC2183" id="rfc.xref.RFC2183.1"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header Field">[RFC2183]</cite></a> (which updates <a href="#RFC1806" id="rfc.xref.RFC1806.2"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header">[RFC1806]</cite></a>) for details.
+      <p id="rfc.section.8.2.p.1"> <a href="#RFC2183" id="rfc.xref.RFC2183.1"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header Field">[RFC2183]</cite></a>, from which the often implemented Content-Disposition (see <a href="#content-disposition" id="rfc.xref.content-disposition.2" title="Content-Disposition">Appendix&nbsp;B.1</a>) header in HTTP is derived, has a number of very serious security considerations. Content-Disposition is not part of the
+         HTTP standard, but since it is widely implemented, we are documenting its use and risks for implementors. See <a href="http://tools.ietf.org/html/rfc2183#section-5">Section 5</a> of <a href="#RFC2183" id="rfc.xref.RFC2183.2"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header Field">[RFC2183]</cite></a> for details.
       </p>
       <h1 id="rfc.section.9"><a href="#rfc.section.9">9.</a>&nbsp;<a id="ack" href="#ack">Acknowledgments</a></h1>
@@ -1437 +1437 @@
       <h2 id="rfc.references.2"><a href="#rfc.section.10.2" id="rfc.section.10.2">10.2</a> Informative References
       </h2>
-      <table summary="Informative References">                            
-         <tr>
-            <td class="reference"><b id="RFC1806">[RFC1806]</b></td>
-            <td class="top"><a title="New Century Systems">Troost, R.</a> and <a title="QUALCOMM Incorporated">S. Dorner</a>, “<a href="http://tools.ietf.org/html/rfc1806">Communicating Presentation Information in Internet Messages: The Content-Disposition Header</a>”, RFC&nbsp;1806, June&nbsp;1995.
-            </td>
-         </tr>
+      <table summary="Informative References">                          
          <tr>
             <td class="reference"><b id="RFC1945">[RFC1945]</b></td>
@@ -1592 +1587 @@
       <p id="rfc.section.B.1.p.1">The Content-Disposition response-header field has been proposed as a means for the origin server to suggest a default filename
          if the user requests that the content is saved to a file. This usage is derived from the definition of Content-Disposition
-         in <a href="#RFC1806" id="rfc.xref.RFC1806.3"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header">[RFC1806]</cite></a>.
+         in <a href="#RFC2183" id="rfc.xref.RFC2183.3"><cite title="Communicating Presentation Information in Internet Messages: The Content-Disposition Header Field">[RFC2183]</cite></a>.
       </p>
       <div id="rfc.figure.u.40"></div><pre class="inline"><span id="rfc.iref.g.33"></span><span id="rfc.iref.g.34"></span><span id="rfc.iref.g.35"></span><span id="rfc.iref.g.36"></span><span id="rfc.iref.g.37"></span><span id="rfc.iref.g.38"></span>  <a href="#content-disposition" class="smpl">content-disposition</a> = "Content-Disposition" ":"
@@ -1688 +1683 @@
       </ul>
       <h2 id="rfc.section.D.5"><a href="#rfc.section.D.5">D.5</a>&nbsp;<a id="changes.since.03" href="#changes.since.03">Since draft-ietf-httpbis-p3-payload-03</a></h2>
+      <p id="rfc.section.D.5.p.1">Closed issues: </p>
+      <ul>
+         <li> &lt;<a href="http://www3.tools.ietf.org/wg/httpbis/trac/ticket/121">http://www3.tools.ietf.org/wg/httpbis/trac/ticket/121</a>&gt;: "RFC 1806 has been replaced by RFC2183"
+         </li>
+      </ul>
       <h1><a id="rfc.copyright" href="#rfc.copyright">Full Copyright Statement</a></h1>
       <p>This document is subject to the rights, licenses and restrictions contained in BCP 78, and except as set forth therein, the
@@ -1856 +1856 @@
             <li class="indline0"><a id="rfc.index.R" href="#rfc.index.R"><b>R</b></a><ul class="ind">
                   <li class="indline1"><em>RFC1766</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC1766.1">3.5</a>, <a class="iref" href="#RFC1766"><b>10.1</b></a></li>
-                  <li class="indline1"><em>RFC1806</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC1806.1">8.2</a>, <a class="iref" href="#rfc.xref.RFC1806.2">8.2</a>, <a class="iref" href="#RFC1806"><b>10.2</b></a>, <a class="iref" href="#rfc.xref.RFC1806.3">B.1</a></li>
                   <li class="indline1"><em>RFC1864</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC1864.1">6.8</a>, <a class="iref" href="#rfc.xref.RFC1864.2">6.8</a>, <a class="iref" href="#RFC1864"><b>10.1</b></a></li>
                   <li class="indline1"><em>RFC1945</em>&nbsp;&nbsp;<a class="iref" href="#RFC1945"><b>10.2</b></a>, <a class="iref" href="#rfc.xref.RFC1945.1">B</a></li>
@@ -1877 +1876 @@
                   <li class="indline1"><em>RFC2076</em>&nbsp;&nbsp;<a class="iref" href="#RFC2076"><b>10.2</b></a>, <a class="iref" href="#rfc.xref.RFC2076.1">B</a></li>
                   <li class="indline1"><em>RFC2119</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2119.1">1.1</a>, <a class="iref" href="#RFC2119"><b>10.1</b></a></li>
-                  <li class="indline1"><em>RFC2183</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2183.1">8.2</a>, <a class="iref" href="#RFC2183"><b>10.2</b></a></li>
+                  <li class="indline1"><em>RFC2183</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2183.1">8.2</a>, <a class="iref" href="#rfc.xref.RFC2183.2">8.2</a>, <a class="iref" href="#RFC2183"><b>10.2</b></a>, <a class="iref" href="#rfc.xref.RFC2183.3">B.1</a><ul class="ind">
+                        <li class="indline1"><em>Section 5</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2183.2">8.2</a></li>
+                     </ul>
+                  </li>
                   <li class="indline1"><em>RFC2277</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2277.1">3.1</a>, <a class="iref" href="#RFC2277"><b>10.2</b></a></li>
                   <li class="indline1"><em>RFC2388</em>&nbsp;&nbsp;<a class="iref" href="#rfc.xref.RFC2388.1">3.3.2</a>, <a class="iref" href="#RFC2388"><b>10.2</b></a></li>

draft-ietf-httpbis/latest/p3-payload.xml

@@ -1624 +1624 @@
 <section title="Content-Disposition Issues" anchor="content-disposition.issues">
 <t>
-   <xref target="RFC1806"/>, from which the often implemented Content-Disposition
+   <xref target="RFC2183"/>, from which the often implemented Content-Disposition
    (see <xref target="content-disposition"/>) header in HTTP is derived, has a number of very
    serious security considerations. Content-Disposition is not part of
    the HTTP standard, but since it is widely implemented, we are
-   documenting its use and risks for implementors. See <xref target="RFC2183"/>
-   (which updates <xref target="RFC1806"/>) for details.
+   documenting its use and risks for implementors. See <xref target="RFC2183" x:fmt="of" x:sec="5"/>
+   for details.
 </t>
 </section>
@@ -2030 +2030 @@
 <references title="Informative References">
 
-<reference anchor="RFC1806">
-  <front>
-    <title abbrev="Content-Disposition">Communicating Presentation Information in Internet Messages: The Content-Disposition Header</title>
-    <author initials="R." surname="Troost" fullname="Rens Troost">
-      <organization>New Century Systems</organization>
-      <address><email>rens@century.com</email></address>
-    </author>
-    <author initials="S." surname="Dorner" fullname="Steve Dorner">
-      <organization>QUALCOMM Incorporated</organization>
-      <address><email>sdorner@qualcomm.com</email></address>
-    </author>
-    <date month="June" year="1995"/>
-  </front>
-  <seriesInfo name="RFC" value="1806"/>
-</reference>
-
 <reference anchor="RFC1945">
   <front>
@@ -2450 +2434 @@
    means for the origin server to suggest a default filename if the user
    requests that the content is saved to a file. This usage is derived
-   from the definition of Content-Disposition in <xref target="RFC1806"/>.
+   from the definition of Content-Disposition in <xref target="RFC2183"/>.
 </t>
 <figure><artwork type="abnf2616"><iref primary="true" item="Grammar" subitem="content-disposition"/><iref primary="true" item="Grammar" subitem="disposition-type"/><iref primary="true" item="Grammar" subitem="disposition-parm"/><iref primary="true" item="Grammar" subitem="filename-parm"/><iref primary="true" item="Grammar" subitem="disp-extension-token"/><iref primary="true" item="Grammar" subitem="disp-extension-parm"/>
@@ -2638 +2622 @@
 <section title="Since draft-ietf-httpbis-p3-payload-03" anchor="changes.since.03">
 <t>
-</t>
-</section>
+  Closed issues:
+  <list style="symbols"> 
+    <t>
+      <eref target="http://www3.tools.ietf.org/wg/httpbis/trac/ticket/121"/>:
+      "RFC 1806 has been replaced by RFC2183"
+    </t>
+  </list>
+</t>
+ </section>
 
 </section>