Last modified: 2012-10-22 02:32:42 UTC
When on a secure wiki page (SSL), such as http://en.wikipedia.org/wiki/File:Vulpicida_canadensis_44260.jpg and you click a non-secure (http not https) link, such as http://www.mushroomobserver.org/image/show_image/44260 the referer is sent. This is against RFC 2616. No referer should be sent. Per RFC 2616 ยง 15.1.3 (http://tools.ietf.org/html/rfc2616#section-15.1.3): Clients SHOULD NOT include a Referer header field in a (non-secure) HTTP request if the referring page was transferred with a secure protocol. General http referer info: http://en.wikipedia.org/wiki/HTTP_referer
Seems it doesn't send...my mistake.