Closed Bug 42942 Opened 25 years ago Closed 25 years ago

enhance cookie manager to block domain cookies

Categories

(Core :: Networking: Cookies, enhancement, P3)

Product:
Core
Component:
Networking: Cookies
Platform:
x86
All
Type:
enhancement

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: jmbelo, Assigned: morse)

Details

Could you please enhance cookie manager to block domain cookies, it looks rather dumb if it blocks host cookies but not host cookies. I found out that out by testing cookie manager against www.quios.com, please see bug 40946. thanks joao
The right-context menu item of "block cookies form this site" was really just a convenience add-on to the cookie manager. The real functionality of the cookie manager is in the cookie nag box which contains the checkbox "do you want to remember this decision?". At this time, if you reject a domain cookie and have the checkbox checked, the domain that tried to set the cookie is indeed blocked from ever setting a cookie in the future. That's the feature you really want. From the right-context menu, there is no way of knowing what domain you are talking about. If you are at the site a.b.c.d.com, does that mean you want to block domain cookies from .b.c.d.com or from .c.d.com or from .d.com or from .com or from all of them? How can you specifiy that you want to block certain domains and not all of them? It's not as clear-cut as you probably thought at first. Note in particular the irony of blocking all cookies from the .com domain. Well you could argue and say that .com isn't a valid domain name after all. In fact, the cookie code goes to great lengths to not allow you to have such a domain cookie because that cookie would wind up being broadcast to every .com site. That was easy to test for. But what about the a.b.co.nz site? This is currently an unsolved problem because there is no way that we can prevent such a site from setting a .co.nz domain cookie (see bug 9422) and that cookie will indeed get broadcast to all sites in New Zealand. With all that said, I hope you now appreciate the reason that the right-context menu does not provide for blocking domain cookies. So I'll mark this as invalid. If you still want to have this be considered for an enhancement request, then reopen it and I'll give it an M30 target milestone (which is my own indication of enhancement bugs to be reconsidered for 6.1).
Status: UNCONFIRMED → RESOLVED
Closed: 25 years ago
Resolution: --- → INVALID
i don't know if understood all your explanation, but going back to prefrences->view stored cookies->, removing a the cookie with "don't allow removed cookies to be reaccepted later" option does the trict for me. ( did i had this option in Build id 2000052320 NT4/2000 ?) From your explanation on , http://bugzilla.mozilla.org/show_bug.cgi?id=40946, i got the impretion that there was no way one could block suck a cookie. So from my point of view the enhancement that i required i allready implemented. So i leave it as RESOLVED INVALID thanks for your help joao
Correction to last post: So from my point of view the enhancement that i required IS allready implemented.
You need to log in before you can comment on or make changes to this bug.