This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 11025 - Bug reporter not serving SVG mime type
Summary: Bug reporter not serving SVG mime type
Status: RESOLVED INVALID
Alias: None
Product: SVG
Classification: Unclassified
Component: SVG Document Object Model (DOM) (show other bugs)
Version: SVG 1.2 Tiny
Hardware: All All
: P2 minor
Target Milestone: Test Suite
Assignee: Doug Schepers
QA Contact: SVG Public List
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-10-13 13:03 UTC by j.chetwynd
Modified: 2010-10-14 18:17 UTC (History)
1 user (show)

See Also:


Attachments

Description j.chetwynd 2010-10-13 13:03:30 UTC
the link:

http://www.w3.org/Bugs/Public/attachment.cgi?id=922

in the bug:

http://www.w3.org/Bugs/Public/show_bug.cgi?id=11015

is not being served as SVG, though it has suffix .svg 
and  validates at W3C
Comment 1 Helder Magalh 2010-10-14 18:17:08 UTC
Hi Jonathan,


(In reply to comment #0)
> the link:
> 
> http://www.w3.org/Bugs/Public/attachment.cgi?id=922
> 
> in the bug:
> 
> http://www.w3.org/Bugs/Public/show_bug.cgi?id=11015
> 
> is not being served as SVG, though it has suffix .svg 
> and  validates at W3C

Not true. If you use an HTTP protocol analyzer (Wireshark et. al.) or an on-line tool such as HTTP Web-Sniffer [1] (basically, copy+paste the attachment link and press submit) you'll see that content type is there:

  Content-Type: image/svg+xml; name="ffbug.svg"

What's happening is that "Content-disposition" HTTP header is there as well:

  Content-disposition: attachment; filename="ffbug.svg"

This should cause the implementation to force a file download instead of presenting it. This is often used as an additional protection mechanism, in order to avoid virus and other sort of malicious attachments in highly reputable sites. Note that this is a configurable security feature of Bugzilla: for example, W3C and Apache (Batik et. al. bug tracker) are using it, while Mozilla (Firefox et. al.) is not.


Cheers,
 Helder


[1] http://web-sniffer.net/