Confirmed users
110
edits
Security/Reviews/Firefox6/ReviewNotes/WebSockets: Difference between revisions
Jump to navigation
Jump to search
Security/Reviews/Firefox6/ReviewNotes/WebSockets (view source)
Revision as of 00:43, 15 June 2011
, 15 June 2011→Tracking bugs
No edit summary |
|||
| Line 1: | Line 1: | ||
== Tracking bugs == | == Tracking bugs == | ||
* {{bug|663871}} IETF 08 | * {{bug|663871}} IETF 08 specification | ||
=== Webkit WebSockets bugs === | |||
* [https://bugs.webkit.org/show_bug.cgi?id=31425 file:// documents should not be able to open WebSocket connections] | |||
* [https://bugs.webkit.org/show_bug.cgi?id=34289 WebSocket ignores HttpOnly cookies, but should use in Handshake.] | |||
* [https://bugs.webkit.org/show_bug.cgi?id=32246 Multiple connection attempts to a WebSocket server should not be allowed] | |||
* [https://bugs.webkit.org/show_bug.cgi?id=32085 WebSocket should block the same ports that are blocked for resource loading] | |||
* [https://bugs.webkit.org/show_bug.cgi?id=33248 WebSocket should close the connection when unloading the document] | |||
== Preliminary threat model == | == Preliminary threat model == | ||