[1855] in WWW Security List Archive
Re: how do I keep a browser from caching files
daemon@ATHENA.MIT.EDU (Will Day)
Sat Apr 20 03:23:16 1996
From: willday@rom.oit.gatech.edu (Will Day)
To: www-security@ns2.rutgers.edu
Date: Sat, 20 Apr 1996 00:31:10 -0400 (EDT)
Reply-To: willday@rom.oit.gatech.edu (Will Day)
In-Reply-To: <3177ACC9.2BC3@scus1.ctstateu.edu> from "Daryl Hawes" at Apr 19, 96 10:10:01 am
Errors-To: owner-www-security@ns2.rutgers.edu
A short time ago, at a computer terminal far, far away, Daryl Hawes wrote:
> My department is trying to run a program that will allow users to
>access sensitive data. We have the security/password part down, but
>most of the accesses will come fromunsecure lab room machines. DOes
>anyone know of a way, an HTML tag, a meta tag, or something that will
>instruct our university's Netscape 2.0 or better browsers not to cache
>the resulting files, so that if a user walks away from a machine
>someone else cannot come along and use the "back" button to view their
>information?
Would this work:
<HEAD>
<META HTTP-EQUIV="Pragma" CONTENT="no-cache">
</HEAD
I base this on the Q/A about caching and the Pragma header in the WWW FAQ:
http://www.boutell.com/faq/cnocache.htm
and the description of the META tag in the HTML3 spec:
http://www.w3.org/hypertext/WWW/MarkUp/html3/dochead.html
I can't try it right now, though, so I'm not sure if it works or not.
______________________________________________________________________________
Will Day <PGP mail preferred> OIT, Georgia Tech, Atlanta 30332-0715
willday@rom.oit.gatech.edu http://rom.oit.gatech.edu/~willday/
=-> Opinions expressed are mine alone and do not reflect OIT policy <-=
Those who would give up essential Liberty, to purchase a little temporary
Safety, deserve neither Liberty nor Safety.
Benjamin Franklin, Pennsylvania Assembly, Nov. 11, 1755
