[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Implement JSONP interface for check.torproject.org

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Implement JSONP interface for check.torproject.org
From: tor@xxxxxxxxxxxxxxxxxx
Date: Sun, 06 Nov 2011 13:31:15 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 06 Nov 2011 08:31:36 -0500
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lists.grepular.com; s=dkim1; h=Content-Type:In-Reply-To:References:Subject:To:MIME-Version:From:Date:Message-ID; bh=aJpur1vVxVKOaVKvhipS3J3fvp3v8Da2tMTCisY+th0=; b=kutSMw1PKSupTq0evhgy0F6l2PtY0ZyAlSI9nwKODvbs6+qoeTXvh0lXVgIHbRmBmoynfOD5DRUrVYVfqUUX8/QWLauXucjTckDo5LY3Frr0oLa+es+v4nkKdn4q8stiI1WDWhpOV2Yw4SrHmirWqVHDyteH33BZWmNkZ0O0MNI=;
In-reply-to: <4EB6818F.4050201@xxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Openpgp: url=https://grepular.com/0018461F.pub.asc
References: <4EB5E251.1020909@xxxxxxxxxx> <4EB615DF.1010806@xxxxxxxxxx> <4EB65F79.8010003@xxxxxxxxxxxxxxx> <4EB6818F.4050201@xxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:7.0.1) Gecko/20110929 Thunderbird/7.0.1

On 06/11/11 12:46, tor@xxxxxxxxxxxxxxxxxx wrote:

> The content-type should be application/json or at the very least text/plain.

I was clearly talking rubbish here; the content type should be a
javascript one. Still, I was completely correct about the danger of
using text/html and allowing arbitrary content for the callback parameter.

-- 
Mike Cardwell https://grepular.com/  https://twitter.com/mickeyc
Professional  http://cardwellit.com/ http://linkedin.com/in/mikecardwell
PGP.mit.edu   0018461F/35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Implement JSONP interface for check.torproject.org
  - From: Arturo Filastò
- Re: [tor-talk] Implement JSONP interface for check.torproject.org
  - From: Jim
- Re: [tor-talk] Implement JSONP interface for check.torproject.org
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Implement JSONP interface for check.torproject.org
  - From: tor

Prev by Author: Re: [tor-talk] Implement JSONP interface for check.torproject.org
Next by Author: Re: [tor-talk] Implement JSONP interface for check.torproject.org
Previous by thread: Re: [tor-talk] Implement JSONP interface for check.torproject.org
Next by thread: Re: [tor-talk] Implement JSONP interface for check.torproject.org
Index(es):
- Author
- Thread