On Tue, Jan 07, 2020 at 06:39:18PM +0000, Sara Dickinson <sara@xxxxxxxxxxx> wrote a message of 194 lines which said: > > on the basis that it assumes that these optimizations are deployed > > without regard to privacy. May be just an informative reference to RFC 7231, specially section 9.7, would please everyone? This section seems quite comprehensive on the issue of privacy leaks from HTTP headers. > “the wide practice in HTTP to use various headers to optimize HTTP > connections, functionality and behaviour which can introduce a > trade-off between functionality and privacy Most of the time, as noted by RFC 7231 in its section 3.4.1, the privacy leaks bring no added functionality and no optimisation. -- last-call mailing list last-call@xxxxxxxx https://www.ietf.org/mailman/listinfo/last-call
