IRC log of webappsec on 2017-08-16

Timestamps are in UTC.

15:52:18 [RRSAgent]
RRSAgent has joined #webappsec
15:52:18 [RRSAgent]
logging to http://www.w3.org/2017/08/16-webappsec-irc
15:52:47 [wseltzer]
wseltzer has changed the topic to: WebAppSec 16 August, webex 643 678 745 +1-617-324-0000
15:56:45 [ckerschb__]
ckerschb__ has joined #webappsec
16:00:33 [wseltzer]
zakim, clear agenda
16:00:33 [Zakim]
agenda cleared
16:00:38 [wseltzer]
present=
16:00:40 [wseltzer]
present+ wseltzer
16:01:08 [dveditz]
present+ dveditz
16:01:38 [terri]
present+ terri
16:02:18 [ckerschb__]
present+ ckerschb__
16:03:04 [wseltzer]
zakim, who is here?
16:03:04 [Zakim]
Present: wseltzer, dveditz, terri, ckerschb__
16:03:06 [Zakim]
On IRC I see ckerschb__, RRSAgent, Zakim, timbl, yoav, Agent_Sm1th_BR, trackbot, Jb, mounir, terri, jyasskin, mkwst, slightlyoff, Domenic, ojan, jkt, adrianba, sangwhan, lfaraone,
16:03:06 [Zakim]
... battre, hadleybeeman, jochen___, crakrjak, tobie, dveditz, timeless, MattN, gszathmari, jcj_moz, Josh_Soref, dbaron, Mek_, jww, wseltzer
16:06:18 [wseltzer]
dveditz: I wanted to talk about status of mixed contet and referrer policy, but we don't have the editors
16:06:57 [wseltzer]
Topic: Minutes approval
16:07:34 [dveditz]
https://www.w3.org/2017/06/21-webappsec-minutes.html
16:08:04 [wseltzer]
dveditz: hearing no objections, approved
16:08:10 [dveditz]
Topic: News
16:08:23 [wseltzer]
dveditz: TPAC is coming up
16:08:34 [wseltzer]
... pre-registration ends Oct. 8, and then rates go up
16:08:51 [wseltzer]
https://www.w3.org/2017/11/TPAC/Overview.html
16:09:00 [wseltzer]
s/Oct. 8/Oct. 6/
16:09:05 [dveditz]
6-10 November 2017
16:09:21 [wseltzer]
dveditz: TPAC is Nov 6-10; WebAppSec is scheduled for Monday and Tuesday
16:09:24 [dveditz]
https://www.w3.org/2017/11/TPAC/schedule.html
16:11:16 [dveditz]
Topic: Obsoleting CORS
16:11:53 [wseltzer]
dveditz: I raised on the list obsoleting CORS. The spec is old and doesn't reflect what browsers actually do
16:12:04 [wseltzer]
... ongoing work is in Fetch
16:12:25 [wseltzer]
... so it's not useful to have CORS sitting around
16:12:35 [wseltzer]
... mark as Obsolete and point to replacement
16:12:41 [wseltzer]
... to serve implementors better
16:13:33 [wseltzer]
... only reply was mnot asking about CORS for Developers
16:13:39 [wseltzer]
... I'd like to get Brad's feedback
16:14:13 [wseltzer]
... I'll call for consensus on this call, and then announce on list
16:14:26 [wseltzer]
q+
16:15:19 [wseltzer]
q-
16:15:31 [wseltzer]
dveditz: any objection to obsoleting CORS?
16:15:37 [wseltzer]
terri: sounds reasonable to me
16:15:48 [wseltzer]
PROPOSED: Obsolete CORS
16:16:00 [wseltzer]
RESOLVED: Obsolete CORS
16:16:08 [wseltzer]
dveditz: I'll announce that decision to the list
16:16:41 [wseltzer]
Topic: AOB
16:16:59 [wseltzer]
dveditz: Terri asked about testing
16:20:23 [timbl]
timbl has joined #webappsec
16:20:41 [wseltzer]
terri: it would be good to have a current testing priority list
16:21:35 [wseltzer]
[adjourned]
16:21:38 [wseltzer]
rrsagent, make logs public
16:21:55 [ckerschb__]
ckerschb__ has left #webappsec
16:22:08 [wseltzer]
rrsagent, draft minutes
16:22:08 [RRSAgent]
I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer
16:22:51 [wseltzer]
rrsagent, draft minutes
16:22:51 [RRSAgent]
I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer
16:23:21 [wseltzer]
chair: dveditz
16:23:27 [wseltzer]
Meeting: Web Application Security WG
16:23:32 [wseltzer]
rrsagent, draft minutes
16:23:32 [RRSAgent]
I have made the request to generate http://www.w3.org/2017/08/16-webappsec-minutes.html wseltzer
18:17:30 [Zakim]
Zakim has left #webappsec
19:09:18 [timbl]
timbl has joined #webappsec
21:16:51 [yoav]
yoav has joined #webappsec
22:35:34 [timbl]
timbl has joined #webappsec