Skip to main content

Media Type Sniffing

Document Type Expired Internet-Draft (websec WG)
Expired & archived
Authors Adam Barth , Ian Hickson
Last updated 2015-10-14 (Latest revision 2011-05-07)
Replaces draft-abarth-mime-sniff
RFC stream Internet Engineering Task Force (IETF)
Intended RFC status Informational
Additional resources Mailing list discussion
Stream WG state WG Document
Document shepherd (None)
IESG IESG state Expired
Action Holders
Consensus boilerplate Unknown
Telechat date (None)
Responsible AD Peter Saint-Andre
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


Many web servers supply incorrect Content-Type header fields with their HTTP responses. In order to be compatible with these servers, user agents consider the content of HTTP responses as well as the Content-Type header fields when determining the effective media type of the response. This document describes an algorithm for determining the effective media type of HTTP responses that balances security and compatibility considerations. Please send feedback on this draft to


Adam Barth
Ian Hickson

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)