On Wed, Feb 11, 2009 at 3:04 PM, Eran Hammer-Lahav <e...@hueniverse.com> wrote: > Exactly. Does that addresses your concern about scope?
Yes. I think we should make it clearer in the spec that host-meta's scope is restricted by protocol. As a browser developer, I find the current spec confusing on this point. > (we can continue debating the value of the content type header as a measure > of security if you'd like...) (I'm composing a reply to Breno now.) Adam
