Phishing filter and malware protection do not warn. Then do they work at all?

VERIFIED WORKSFORME

Status

()

--
major
VERIFIED WORKSFORME
11 years ago
5 years ago

People

(Reporter: ehasl, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

11 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; nb-NO; rv:1.9b4) Gecko/2008030714 Firefox/3.0b4
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; nb-NO; rv:1.9b4) Gecko/2008030714 Firefox/3.0b4

I was reading the release notes and clicked the "Try it here!" links. Two of them did not act as expected, namely the phishing filter and the malware protection. Both showed the pages, respectively, "It's a trap!" and "It's an attack!", and neither displayed any warning. I have (obviously) not tested it with real malware or phishing sites, but I cannot say I trust the filters now.

Reproducible: Always

Steps to Reproduce:
1a. http://www.mozilla.com/firefox/its-an-attack.html
1b. http://www.mozilla.com/firefox/its-a-trap.html
Actual Results:  
The pages are shown.

Expected Results:  
It should have "warned me away".

There were no error messages in the error message window.

I checked the security settings, and the boxes for phishing filter and malware protection were checked.

This was a totally fresh installation. I chose not to make FireFox the default browser. There are two other browsers on the system, IE7 and Opera 9.02.

In case you did not notice from the cryptic build identifier string, I am running the Norwegian version, on a system with Norwegian Windows and locale.

The machine is connected to the internet through a "wiremore" (as opposed to wireless) connection.
I can't confirm this, since it works for me, but certainly there's a problem here if, with those options checked, the warning pages don't come up.

Dave, any thoughts on how we might reproduce this situation locally?

Updated

11 years ago
Group: security
Could it be an issue of a new install with no downloaded data yet? I think the test URLs are now part of the server data rather than baked-in. It's a more honest test of the feature, but disconcerting if you immediately try it out before you've gotten all the data.
(Reporter)

Comment 3

11 years ago
(In reply to comment #2)

You may be right. I tested the pages now, and was warned away.
I think it is a problem that the test URLs do not work right after installation, as that's when people are expected to test them.

Comment 4

11 years ago
Is there a way for users to tell that Firefox is in the process of population its local copy of the phishing/malware hash database?  Maybe there should be a short message in Options > Security, near the checkboxes for turning the checking on and off, while the database is still being downloaded?

Comment 5

11 years ago
How protected are people who only use the Web once a week and read their email in Thunderbird?
There hasn't been any discussion on this bug from the reporter or any triagers for over a year. I'm pushing this to WFM and will wait for any qualms.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → WORKSFORME
Status: RESOLVED → VERIFIED
(Assignee)

Updated

5 years ago
Component: Phishing Protection → Phishing Protection
Product: Firefox → Toolkit
You need to log in before you can comment on or make changes to this bug.