Cannot POST to 'malicious website'




Safe Browsing
10 years ago
3 years ago


(Reporter: Martin Smith, Unassigned)


Firefox Tracking Flags

(Not tracked)


(Whiteboard: lacks testcase url)



10 years ago
User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-GB; rv: Gecko/2008111318 Ubuntu/8.10 (intrepid) Firefox/3.0.4
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-GB; rv: Gecko/2008111318 Ubuntu/8.10 (intrepid) Firefox/3.0.4

The ignore link in the bottom right corner of the red page warning that the user is going to a malicious website forgets all POST data, making it impossible to POST to a page that Mozilla deems malicious

Reproducible: Always

Steps to Reproduce:
1. Find a site to the malicious site blacklist
2. Try POSTing to a form on it
3. Try POSTing to the form in another browser (e.g. Opera) that is not blacklisting the site
4. Compare results
Actual Results:  
The site through Opera seemed to be aware of POSTed data; in Firefox it did not

Expected Results:  
Same result on both browsers

This is my first use of Bugzilla, so go easy on me if I missed something glaringly obvious :)

Yes, there are times when you'd want to use a malicious site, such as false postives or when they've since cleaned up their act

Comment 1

10 years ago
This seems to be bug 441101 again
Duplicate of this bug: 441101
Is there a test page we can create a steps to reproduce with and get a confirmation?
I'm going to set this to closeme status from a month from now. If there aren't any comments from the reporter about a suggested test url, then we'll close this as resolved:incomplete.
Whiteboard: closeme 8-13-09

Comment 5

9 years ago
please use ISO dates for closeme of the form yy-mm-dd, eg
 closeme 09-08-13
Last Resolved: 9 years ago
Keywords: testcase-wanted
Resolution: --- → INCOMPLETE
Whiteboard: closeme 8-13-09 → lacks testcase url

Comment 6

9 years ago
bleh (need sleep) yyyy-mm-dd,e eg closeme 2009-08-13


4 years ago
Component: Phishing Protection → Phishing Protection
Product: Firefox → Toolkit
Keywords: testcase-wanted
You need to log in before you can comment on or make changes to this bug.