web500.com - serverside detection busted

RESOLVED FIXED

Status

RESOLVED FIXED
16 years ago
4 years ago

People

(Reporter: mozilla, Assigned: mozilla)

Tracking

Details

(Whiteboard: [TOOL][Web500 CMS], URL)

Attachments

(3 attachments)

(Assignee)

Description

16 years ago
identifies Mozilla as Netscape 4.x

try spoofing Mozilla as MSIE and see the difference

If they get their system in order a whole lot of sites ought to be fixed, as
they are the originator for a tool used on a lot of websites.

see bug #185766 & bug 185767
These bugs are the reason I found this site

I'll attach two screenshots:
one with Mozilla as user agent, one with MSIE as user agent
(Assignee)

Updated

16 years ago
Blocks: 185766
(Assignee)

Updated

16 years ago
Blocks: 185767
(Assignee)

Comment 1

16 years ago
Created attachment 110073 [details]
screenshot with Mozilla userAgent

user agent string used:
Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; da-DK; rv:1.3b; MultiZilla
v1.1.33 (a)) Gecko/20021223
This is also how the websites in bug 185766 & bug 185767 behave
(Assignee)

Comment 2

16 years ago
Created attachment 110074 [details]
screenshot with MSIE userAgent & Mozilla cookie

user agent string used:
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
this is also how the website in bug #185767 behaves
the website in bug #185766 works perfectly with user agent spoofing
(Assignee)

Comment 3

16 years ago
OK - this is a danish company.
Do you have a Dane that can contact them ???
Otherwise, I'll be happy trying to contact them.

I know there's a form letter or something tech evangelism uses.
Please give me directions on the form you'll want my contact to take.
Whiteboard: [TOOL][Web500 CMS]
(Assignee)

Comment 4

16 years ago
workaround:
Finally solved why these sites sometimes worked with user agent spoofing and
sometimes not:

You can get the websites depending on this tool to work under the following
circumstances:
1) set the user agent to some kind of MISE 6
2) delete all cookies set by the site
3) (re)load the page !BUT! be sure *only* to have the server name in the URL bar

Of course this is not an acceptable workaround as it involves user agent spoofing
(Assignee)

Comment 5

16 years ago
Created attachment 110199 [details]
screenshot with MSIE userAgent & no cookie

this is a screenshot of the frontpage with user agent spoofing to MSIE 6 and
making sure no cookies were present before entering the website
(Assignee)

Comment 6

16 years ago
contact established.
according to the contact person, the newest version ought to correct this
problem and it seems so : try http://www.uni2.dk/ , so as their customers
upgrades this ought to fix itself automagically. I'll keep an eye on things
periodically.

Updated

16 years ago
Attachment #110073 - Attachment description: screenshot of webpage → screenshot with Mozilla userAgent

Updated

16 years ago
Attachment #110074 - Attachment description: screenshot of webpage → screenshot with MSIE userAgent & Mozilla cookie

Updated

16 years ago
Attachment #110199 - Attachment description: screenshot of frontpage → screenshot with MSIE userAgent & no cookie

Comment 7

16 years ago
All Web500 CMS sites behave the same in Windows and Mac versions of Mozilla.
OS: MacOS X → All
Hardware: Macintosh → All
(Assignee)

Comment 8

16 years ago
I read somewhere, that in a situation like this, one should
1) file a bug against the tool
2) file bugs against all websites using the tool

Do you want me to track down all sites still using older versions of this tool
and file bugs against these ???

By the way, why don't they update their own site when a fix is available ???
Bjarne: thats what we do. 
see bug 85104  for instance.
(Assignee)

Updated

16 years ago
No longer blocks: 185766
Depends on: 185766
(Assignee)

Updated

16 years ago
No longer blocks: 185767
Depends on: 185767
(Assignee)

Updated

16 years ago
Depends on: 191358
(Assignee)

Updated

16 years ago
Depends on: 191360
(Assignee)

Updated

16 years ago
Depends on: 191361
(Assignee)

Updated

16 years ago
Depends on: 191363
(Assignee)

Updated

16 years ago
Depends on: 191364
(Assignee)

Updated

16 years ago
Depends on: 191365
(Assignee)

Updated

16 years ago
Depends on: 191366
(Assignee)

Comment 10

16 years ago
workaround - updated
1) use the cookie manager to delete all cookies set by the site
2) spoof the user agent to MSIE 6
3) reload the main URL *without* anything else attached to it
4) reset your user agent to Mozilla

Seems, that once sites using this tool has set their session cookies, they no
longer do any checking on the user agent. Thus, except for the main page we are
able to browse as ourselves and will thus turn up as Mozilla in the user agent
logs :-)
(Assignee)

Updated

16 years ago
Depends on: 191367
(Assignee)

Updated

16 years ago
Depends on: 191369
(Assignee)

Updated

16 years ago
Depends on: 191371
(Assignee)

Updated

16 years ago
Depends on: 191372
(Assignee)

Updated

16 years ago
Depends on: 191374
(Assignee)

Updated

16 years ago
Depends on: 191425
(Assignee)

Updated

16 years ago
Depends on: 191427
(Assignee)

Updated

16 years ago
Depends on: 191430
(Assignee)

Updated

16 years ago
Depends on: 191432
(Assignee)

Updated

16 years ago
Depends on: 191434
(Assignee)

Comment 11

16 years ago
OK - I've been through all sites on this page :
http://www.web500.com/tempfiles/120.asp
which is a list of references, as well as the recent news about new customers

Schedule : 
1) translate the evangelism form letter into danish
   ought to have been accomplished over this weekend
2) go through the sites one at a time but at most one a day

I've reassigned the bug to myself, as I've had personal contact with them
Assignee: nitot → mozilla

Comment 12

16 years ago
other
Component: Europe: West → Other
(Assignee)

Comment 13

15 years ago
OK - they have fixed their own homepage
It now works in both Mozilla 1.6a and Safari on Mac OS X 10.2.8

Updated

15 years ago
Component: Other → Danish
fixed
Status: NEW → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → FIXED
Product: Tech Evangelism → Tech Evangelism Graveyard
You need to log in before you can comment on or make changes to this bug.