[Standards-JIG] JEP-0071: image security considerations
sneakin at semanticgap.com
Mon Jun 5 07:21:12 UTC 2006
-----BEGIN PGP SIGNED MESSAGE-----
Peter Saint-Andre wrote:
> Because of security concerns related to images, an implementation MAY
> choose not to show images but instead show only the 'alt' text, and MUST
> enable a human user to disable the showing of images.
Should JEPs be limited to only describing the protocol and not a
client's UI? I'm not going to check, but I would imagine that the HTML
specs don't specify that the user should be able to disable images even
though typical browsers allow that.
My opinion is that JEPs that describe protocols should only describe
protocols. I'll leave it for another discussion as to whether or not we
want to standardize UIs.
- - Nolan
SemanticGap: To act as one (TM) -- http://www.semanticgap.com/
Instant awareness & messaging * Online presence design
Cross platform and agile development
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 207 bytes
Desc: not available
More information about the Standards