This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.
Related to IETF issue #23: http://trac.tools.ietf.org/wg/websec/trac/ticket/23 Microsoft introduced the 'X-Content-Type-Options' header to give servers a way to prevent browser sniffing: http://blogs.msdn.com/ie/archive/2008/09/02/ie8-security-part-vi-beta-2-update.aspx I think this would be a useful addition to the spec, but it shouldn't apply universally, so we'll need to figure out exactly where it fits in. A test implementation is available here: http://franklin.pacificstorms.org/IE8-Test/authoritativeMIME.php
IE9 added additional usecases: http://blogs.msdn.com/b/ie/archive/2010/10/26/mime-handling-changes-in-internet-explorer.aspx
*** Bug 21742 has been marked as a duplicate of this bug. ***
Discussion about inclusion in Gecko: https://bugzilla.mozilla.org/show_bug.cgi?id=471020
Discussion on cross-browser functionality: http://lists.whatwg.org/htdig.cgi/whatwg-whatwg.org/2012-November/037983.html
This is now specced. Feedback welcome: http://lists.whatwg.org/pipermail/whatwg-whatwg.org/2013-May/039561.html
Per comment 5.