[Standards] XHTML <img/> presence leak

Kevin Smith kevin at kismith.co.uk
Tue Mar 6 08:59:20 UTC 2007


On 5 Mar 2007, at 20:45, Peter Saint-Andre wrote:
> Does this text address the concern?
>
> "Because images served on the Internet may contain malicious  
> instructions or software code and may enable the entity serving the  
> image to determine the network availability of the requesting  
> entity, an implementation MAY choose not to show images but instead  
> show only the 'alt' text or to not fetch images offered by entities  
> that are not authorized to view the user's presence."

Looks like it to me.

/K

-- 
Kevin Smith
Psi XMPP Client Project Leader (http://psi-im.org)






More information about the Standards mailing list