[LINK] IETF issues BCP memo on cookies
Roger Clarke
Roger.Clarke@xamax.com.au
Fri, 13 Oct 2000 13:32:29 +1000
James Morris <jmorris@intercode.com.au>:
>The IETF has just issued a BCP (best Current Practices) memo relating to
>HTTP cookies and privacy considerations.
ftp://ftp.isi.edu/in-notes/rfc2964.txt
>or your closest mirror (e.g. http://mirror.aarnet.edu.au/pub/ietf/rfc/).
[But AARNet's site is only up to rfc2877.txt of 07-Jul-2000 09:12 ... ]
Note that the work that precipitated 2964 has also, after a long, long
period of delay by IETF, been published as well.
RFC2965 "reflects implementation experience with RFC 2109 and obsoletes it".
ftp://ftp.isi.edu/in-notes/rfc2965.txt
Network Working Group D. Kristol
Request for Comments: 2965 Bell Laboratories, Lucent Technologies
Obsoletes: 2109 L. Montulli
Category: Standards Track Epinions.com, Inc.
October 2000
HTTP State Management Mechanism
...
Abstract
This document specifies a way to create a stateful session with
Hypertext Transfer Protocol (HTTP) requests and responses. It
describes three new headers, Cookie, Cookie2, and Set-Cookie2, which
carry state information between participating origin servers and user
agents. The method described here differs from Netscape's Cookie
proposal [Netscape], but it can interoperate with HTTP/1.0 user
agents that use Netscape's method. (See the HISTORICAL section.)
This document reflects implementation experience with RFC 2109 and
obsoletes it.
Roger Clarke http://www.anu.edu.au/people/Roger.Clarke/
Xamax Consultancy Pty Ltd, 78 Sidaway St, Chapman ACT 2611 AUSTRALIA
Tel: +61 2 6288 1472, and 6288 6916
mailto:Roger.Clarke@xamax.com.au http://www.xamax.com.au/
Visiting Fellow Department of Computer Science
The Australian National University Canberra ACT 0200 AUSTRALIA
Information Sciences Building Room 211 Tel: +61 2 6249 3666