Confirmed users
197
edits
SecurityEngineering/MeetingNotes/02-07-13: Difference between revisions
SecurityEngineering/MeetingNotes/02-07-13 (view source)
Revision as of 01:53, 8 February 2013
, 8 February 2013→The Rest
| Line 32: | Line 32: | ||
* https://bugzilla.mozilla.org/show_bug.cgi?id=800098 - HSTS will be blocked before it's enforced. | * https://bugzilla.mozilla.org/show_bug.cgi?id=800098 - HSTS will be blocked before it's enforced. | ||
** Inconsistency between first time visitor and second time visitors to an hsts embedded page. | ** Inconsistency between first time visitor and second time visitors to an hsts embedded page. | ||
** https://blog.mozilla.org/ embeds | ** https://blog.mozilla.org/ embeds http://blog.mozilla.org/files/2013/01/most-trusted-privacy-2012-252x218.jpg that redirects to the https version. | ||
** What should the correct behavior be? | ** What should the correct behavior be? | ||
* https://bugzilla.mozilla.org/show_bug.cgi?id=826599 - users have a choice to disable mixed content on iframes. What should the correct behavior be? | * https://bugzilla.mozilla.org/show_bug.cgi?id=826599 - users have a choice to disable mixed content on iframes. What should the correct behavior be? | ||