Please report any other irregularities here.
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.7) Gecko/20040803 Firefox/0.9.3 Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.7) Gecko/20040803 Firefox/0.9.3 when i go to this page : http://www.d-traderz.com/ nothing appears.......only text. so that with internet explorer, this site is good......why ? ps : sorry for my english....i'm french...:-)) Reproducible: Always Steps to Reproduce: 1.go to the site 2.and see yourself 3.nothing appears.... Actual Results: the code source of the page appears.......
Assignee: justdave → firefox
Component: Bugzilla-General → General
Product: Bugzilla → Firefox
QA Contact: mattyt-bugzilla → firefox.general
Assignee: firefox → nobody
Component: General → Layout
Product: Firefox → Browser
QA Contact: firefox.general → core.layout
Version: unspecified → Trunk
Assignee: nobody → general
Component: Layout → Browser-General
QA Contact: core.layout → general
The main page only contains a frame of http://members.lycos.nl/dtraders/___________.htx The MIME type for this is text/plain, not text/html. Thus, either the authors of what looks to be a not-so-good site need to use .html for lycos or lycos needs to support .htx to be text.html. Not a Mozilla/Firefox bug.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 14 years ago
Resolution: --- → INVALID
You beat me to it. I made the same changes but got the mid-air collision ;). Anyways, I was going to suggest that maybe we should do better content-type sniffing (which is what I assume IE does to display that page). That could be filed as another bug, but it would resolve this problem.
How resolve this problem so ?
How reslove this problem so ?
(In reply to comment #2) > Anyways, I was going to suggest that maybe we should do better content-type > sniffing (which is what I assume IE does to display that page). That could be > filed as another bug, but it would resolve this problem. The content-sniffing is a security issue that Microsoft refuses to acknowledge. Web pages have mime types for a reason, and displaying a page as a different mime type than it's advertised as is a dangerous business. This is the entire reason that sending someone an executable file (virus) with an audio filetype used to auto-run the executable on Windows without intervention from the user. (In reply to comment #3) > How resolve this problem so ? The resolution to this problem is to complain to the webmaster of the site and get them to fix the page. Their page is broken, it only works in IE because it exploits a security hole in IE.
ok...thanks. i'm going to use IE for this site..... but i keep firefox for all others......more quick. :-))
Is there really a security risk in displaying text/plain as text/html if that's what it looks like? Also, as far as I know, sending an executable with an audio mime type would have that executable sent to the audio player as input, not executed.
You need to log in before you can comment on or make changes to this bug.