Hi Axel, I agree that we should consider what CSP can do to protect other types of content. We mainly stuck with HTML at first since it's the most common "document" format on the Web.
This is the perfect place to start a discussion about how to apply CSP to other types of content. What are your thoughts? -Sid On 03/06/2010 12:29 PM, Axel Dahmen wrote: > Hi, > > I was thinking that it was a nifty idea to use CSP also for non-HTML > content. Applying it to other content, like images or JavaScript it > might be used to serve for some kind of low-level rights management. > > Would you like to discuss this type of application of CSP? > > Axel Dahmen _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security