Media Type Sniffing
draft-ietf-websec-mime-sniff-03

Document Type Expired Internet-Draft (websec WG)
Last updated 2015-10-14 (latest revision 2011-05-07)
Replaces draft-abarth-mime-sniff
Stream IETF
Intended RFC status Informational
Formats
Expired & archived
plain text pdf html bibtex
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired
Consensus Boilerplate Unknown
Telechat date
Responsible AD Peter Saint-Andre
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-ietf-websec-mime-sniff-03.txt

Abstract

Many web servers supply incorrect Content-Type header fields with their HTTP responses. In order to be compatible with these servers, user agents consider the content of HTTP responses as well as the Content-Type header fields when determining the effective media type of the response. This document describes an algorithm for determining the effective media type of HTTP responses that balances security and compatibility considerations. Please send feedback on this draft to websec@ietf.org.

Authors

Adam Barth (ietf@adambarth.com)
Ian Hickson (ian@hixie.ch)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)