Comment 2 for bug 560246
Revision history for this message
| Stuart Bishop (stub) wrote Re: [Bug 560246] Re: Requiring Referer is broken and serves no good security purpose | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
We perhaps should update the wording. We only require a referrer for
POST requests I believe. I know I use a referrer blocker set to allow
referrers within a domain but not when crossing domains (the
recommended approach due to the huge number of sites that do the same
as Launchpad for similar reasons). This addresses the privacy
concerns.
--
Stuart Bishop <email address hidden>
http://