Florian Weimer wrote: > * Gervase Markham: > > >> If www.flirble.co.zz and www.widget.co.zz wished to conspire to track >> users across the two sites, they would simply both say that they are >> happy to accept co.zz cookies. >> > > Right now, they're sharing that bit of information through one of > Google's web bug services. Cross-domain cookies would at least provide > some level of transparency. > > So this argument is a bit questionable. > The problem is specific to HTTP cookies, not DNS or TLDs. Mozilla (and anyone else who shares concern) should try to help fix the cookie SPEC (RFC 2107), not cook up ways to work-around it.
-- Some days it's just not worth chewing through the restraints... Mark D. Foster, CISSP <[EMAIL PROTECTED]> http://mark.foster.cc/ _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
