Re: What about a sticky language browsing?

To: debian-www@lists.debian.org
Subject: Re: What about a sticky language browsing?
From: Raphael Geissert <geissert@debian.org>
Date: Tue, 10 Apr 2012 10:41:48 -0500
Message-id: <[🔎] jm1kc1$cu7$1@dough.gmane.org>
References: <45A3FE4C.5060002@hands.com> <[🔎] 4F80D47B.9050901@debian.org> <[🔎] jltkt4$tta$1@dough.gmane.org> <[🔎] 20120409075658.GE18157@ktnx.net> <[🔎] 20120410151102.GA30919@gnu.kitenet.net>

Joey Hess wrote:

> Damyan Ivanov wrote:
>> This seems acceptable to me. You follow a link to the German
>> translation of the web site and the site keeps that preference unless
>> you tell it otherwise (or ignore cookies).
> 
> Lot of scope here for things like posts to Planet Debian
> containing "broken" <img> tags that change everyone's website
> language to Esperanto.

In which case, the practical effect is just a minor annoyance, and the 
person responsible gets kicked out.

> Only way to fully avoid such mischief is to use a POSTed form with
> an XSS prevention token.

Or set the cookie with javascript.

But if you want to consider all the cases, then you should also think of 
subdomains of debian.org setting a lang cookie for .debian.org, etc.

Cheers,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Reply to:

Follow-Ups:
- Re: What about a sticky language browsing?
  - From: Joey Hess <joeyh@debian.org>

References:
- What about a sticky language browsing?
  - From: David Prévot <taffit@debian.org>
- Re: What about a sticky language browsing?
  - From: David Prévot <taffit@debian.org>
- Re: What about a sticky language browsing?
  - From: Damyan Ivanov <dmn@debian.org>
- Re: What about a sticky language browsing?
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Coordinate work on the cvs webwml repository
Next by Date: Re: What about a sticky language browsing?
Previous by thread: Re: What about a sticky language browsing?
Next by thread: Re: What about a sticky language browsing?
Index(es):
- Date
- Thread