206359 - Script permission prefs for hiding toolbar, nav bar, etc

Status: VERIFIED DUPLICATE of bug 152256

(Core :: Security: CAPS, enhancement)

Description

[mozilla]

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3) Gecko/20030312
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.3) Gecko/20030312

Using the security preferences it is already possible to disable hiding of the
status bar and changing the status bar text.  It would also be nice to disable
hiding the browser window menu, hiding the navigation toolbar, etc.  Once a
malicious web page kills those two items, it can become impossible to continue
to use Mozilla.

Reproducible: Always

Steps to Reproduce:
1. Load the page given with the URL
2. Click on any picture
3. Wait for the page to completely load.

Actual Results:  
Page loads, navigation disappears, menu disappears.

Expected Results:  
This is the expected behaviour because there's currently no way to stop this
from happening.  It's impossible to escape pages that do this, because there's
no "back" button to hit.  This site in particular also disables the right-click,
so you can't even right click and hit "back".

It would be really nice to see security prefs for disabling the ability of
javascript to muck with the current window.  There's probably a need for them to
be able to muck with windows that they open themselves, but it should be
possible for the user to force his window to remain intact.

In lieu of or in addition to this, some means of right clicking on the Mozilla
title bar to access the "View" or "New" menu would be nice as well.

Comment 1

[Mitchell Stoltz (not reading bugmail)]

Good idea.

Comment 2

[Mitchell Stoltz (not reading bugmail)]

*** This bug has been marked as a duplicate of 152256 ***

Comment 3

[Charles Rosendahl]

mass verify