[Spec] Spec (un)freezes and the spec's future

Simon gemini at g-n.site
Tue Dec 22 18:56:59 GMT 2020

Previous message (by thread): [Spec] Spec (un)freezes and the spec's future
Next message (by thread): [Spec] Spec (un)freezes and the spec's future
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Maybe we should move this thread if it continues, since it is not spec 
but recommendation. And actually, reading again the solderpunk answer: 
he told me that it is going on good practice and not spec. ^^'

On 12/22/20 7:35 PM, Luke Emmet wrote:
> 
> On 21-Dec-2020 20:00, Simon wrote:
>>  **It can be considered to not log any input as an easier way.** Then all input 
>> can be considered as sensitive + sensitive inputs needs to prevent 
>> shoulder surfers in addition.
>>
>> Also, sensitive inputs should not remain in the client history if 
>> there is one.
> 
> The general problem is we cannot know which are sensitive URLs and which 
> are not. 

Then we agree on that !

I just wanted to show that we are easily thinking gemini input as HTTP 
GET parameters, but they aren't, even if they are passed in the URL. The 
only way to not deal with this server side problem, would be to not log 
any input.

Previous message (by thread): [Spec] Spec (un)freezes and the spec's future
Next message (by thread): [Spec] Spec (un)freezes and the spec's future
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list