Closed Bug 90986 Opened 23 years ago Closed 23 years ago

Prefrences are ignored for security box pop-ups

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED WORKSFORME

People

(Reporter: colint, Assigned: ssaux)

Details

From Bugzilla Helper:
User-Agent: Mozilla/4.77 [en] (X11; U; Linux 2.2.16-22 i686)
BuildID:    

When going to any banking website a security box will either pop-up before or
after you visit the site even if you disable this in the prefrences.

Reproducible: Always
Steps to Reproduce:
1.Disable pop up security warnings windows in the prefrences 
2.Go to a SSL secure site
3.Leave the site by going to any other or backing out

Actual Results:  Security box will still warn you about the site.

Expected Results:  If the boxes are disabled in the pref's then you should never
see them.
Assignee: sgehani → mstoltz
Status: UNCONFIRMED → NEW
Component: Preferences → Security: General
Ever confirmed: true
QA Contact: sairuh → ckritzer
I think this is reported. over to security
->PSM. How many Colins are there at oeone?
Assignee: mstoltz → ssaux
Component: Security: General → Client Library
Product: Browser → PSM
QA Contact: ckritzer → junruh
Version: other → 2.0
The cloneing process has only churned out 2 thus far.
WFM. Try a newer build. If you migrated from a 4.7 profile, you could have a 
security warning pref set for which an older build of Mozilla did not have a UI 
to turn off.
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → WORKSFORME
The profile was created by 0.9.2 (4.x was never on this machine).  I dont think
this is the issue.
Under Edit>Prefs>Privacy>SSL, there should be 5 checkboxes (with a very recent 
build). Unchecking them should add the following lines to your prefs.js file. 
Once these lines are in the prefs.js file, you should receive no more security 
warnings of this type. This works for me. Reporter, does this help you 
investigate what is happening in your case?

user_pref("security.warn_entering_secure", false);
user_pref("security.warn_entering_weak", false);
user_pref("security.warn_leaving_secure", false);
user_pref("security.warn_submit_insecure", false);
user_pref("security.warn_viewing_mixed", false);

We ahve all but the following:

user_pref("security.warn_leaving_secure", false);

Would adding that one likely solve this problem?
Can you try to remove that pref and see if you end up with the same behaviour?
I'm sure I would get a security warning if I removed that line from the 
prefs.js. The point is that you should be using a recent build with 5 
checkboxes, not just 4, and that unchecking all 5 should add all 5 lines to the 
prefs.js file. At that point, you should get no more warnings of this type.
Ahhh, so this only works on builds > 0.9.2 then.

Our code is based on 0.9.2.  We can't move to 0.9.3 until we know it's stable
and adds value to us.  If you can prove that, we'll try it out.
Marking verified with the 8/1 WinNT trunk build. Reporter, with 0.9.2, the first 
time you see a security warning, you should be able to turn it off permanently 
by unchecking the box on the dialog itself.
Status: RESOLVED → VERIFIED
Product: PSM → Core
Version: psm2.0 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.