Closed Bug 228753 Opened 21 years ago Closed 17 years ago

reject policy for third-party cookies seems to be ignored

Categories

(Core :: Networking: Cookies, enhancement)

x86
All
enhancement
Not set
normal

Tracking

()

RESOLVED DUPLICATE of bug 200716

People

(Reporter: uhlar, Unassigned)

Details

Attachments

(2 files)

User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6b) Gecko/20031217
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6b) Gecko/20031217

I have policy Flag for first-party cookies (for every site) and Reject for
third-party cookies.

if "ask me before storing cookie" is turned off, third-party are accepted (flagged).

if "ask me before storing cookie" is turned on, mozilla asks if to store them.

Verified on linux (1.5 + cvs) and windows (1.5 release)

Reproducible: Always

Steps to Reproduce:



Expected Results:  
if policy for third-party cookies is reject, cookied should get completely
ignored, if asking for storing is turned on or off.
Can you provide a testcase, or an url where this happens?
www.zive.cz - just tested with mozilla-1.5 on windows.
sets cookies for ad.adrenaline.cz, adarbo2.bbmedia.cz, adrenaline.cz and
www.zive.cz ;
the last is OK, the others are not.

before going to that sice I removed all cookies and cookie permissions.

checked with "ask before setting a cookie" set to on and off, both.
please generate a cookie log for the site (instructions for windows can be found
at http://bugzilla.mozilla.org/show_bug.cgi?id=193951#c1, same idea on linux),
and attach it here.

thanks!
This is a log of cookies that were received and sent by mozilla, when visiting
www.zive.cz, while preference was set to reject all third-party cookies.
Asking for cookies was turned off.
mozilla-1.5 release on windows XP
This problem persists with mozilla1.6
could anyone confirm it? Thank you.
Related to bug 149115/bug 200716?
This is an automated message, with ID "auto-resolve01".

This bug has had no comments for a long time. Statistically, we have found that
bug reports that have not been confirmed by a second user after three months are
highly unlikely to be the source of a fix to the code.

While your input is very important to us, our resources are limited and so we
are asking for your help in focussing our efforts. If you can still reproduce
this problem in the latest version of the product (see below for how to obtain a
copy) or, for feature requests, if it's not present in the latest version and
you still believe we should implement it, please visit the URL of this bug
(given at the top of this mail) and add a comment to that effect, giving more
reproduction information if you have it.

If it is not a problem any longer, you need take no action. If this bug is not
changed in any way in the next two weeks, it will be automatically resolved.
Thank you for your help in this matter.

The latest beta releases can be obtained from:
Firefox:     http://www.mozilla.org/projects/firefox/
Thunderbird: http://www.mozilla.org/products/thunderbird/releases/1.5beta1.html
Seamonkey:   http://www.mozilla.org/projects/seamonkey/
This bug has been automatically resolved after a period of inactivity (see above
comment). If anyone thinks this is incorrect, they should feel free to reopen it.
Status: UNCONFIRMED → RESOLVED
Closed: 19 years ago
Resolution: --- → EXPIRED
OK, this forced me to do something finally, after waiting when I'll have time
(no, I didn't forget about this issue, it still really annoys me).

I set up:
set NSPR_LOG_FILE=c:\mozilla.log
set NSPR_LOG_MODULES=cookie:3,nsHTTP:4

and accessed http://www.zive.cz/default.asp with clean settings: no cookies, no
cache, flag all first-party and reject all third-party cookies.

then I started mozilla suite 1.7.12 Gecko/20051017 (last nightly build)

then I repeated it all with NSPR_LOG_MODULES=cookie:4,nsHTTP:5
to have more logs (I wondered why mozilla refused to send cookie to .gemius.pl -
it should not be set at all so mozilla shouldn't know about the cookie).

I'll attach logs here, but need to do some work first...
Severity: normal → enhancement
this is the log from NSPR_LOG_MODULES=cookie:4,nsHTTP:3
ran from clean environment (no cookies, no cache)
the only loaded page was http://www.zive.cz/default.asp
and note to add.. after this page I had following cookies from 3rd parties:

Gtesta for .hit.gemius.pl
Gtestb for .hit.gemius.pl
UNICOOK for .adrenaline.cz
Server32 for ad.adrenaline.cz

seems that all of them were set by javascript executed in page.
so it looks this IS a dupe of bug 200716 ... should I mark is as such?
Status: RESOLVED → UNCONFIRMED
Resolution: EXPIRED → ---
-> default owner
Assignee: darin → nobody
Status: UNCONFIRMED → RESOLVED
Closed: 19 years ago17 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.