id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc	difficulty
1075	[intarweb] Expires attribute of set-cookie-parser should use rfc1123 dates	RvdH	sjamaan	"A comment in {{{header-parsers.scm}}} says:

{{{
;; We're using http-date-subparser for 'expires' instead of rfc850-subparser
;; (which would be the correct thing to do) because several well-known web
;; server software packages (tested: PHP and Rails) get it wrong.  So we
;; will go by the robustness principle and allow any kind of HTTP date.
}}}

But according to RFC6265 (http://tools.ietf.org/html/rfc6265#section-4.1) the Expires attribute should use RFC1123 dates, not RFC850 dates.

So I think (at least) the comment is not correct.
"	defect	closed	major	someday	unknown	4.8.x	fixed