Last Comment Bug 591907 - third party cookies enabled by default, impossile to uncheck by default
: third party cookies enabled by default, impossile to uncheck by default
Status: UNCONFIRMED
[dupeme?]
:
Product: Firefox
Classification: Client Software
Component: Security (show other bugs)
: unspecified
: x86_64 Mac OS X
: -- major (vote)
: ---
Assigned To: Nobody; OK to take it and work on it
:
Mentors:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2010-08-30 06:05 PDT by Samuël
Modified: 2015-01-26 05:50 PST (History)
5 users (show)
See Also:
Crash Signature:
(edit)
QA Whiteboard:
Iteration: ---
Points: ---
Has Regression Range: ---
Has STR: ---


Attachments

Description Samuël 2010-08-30 06:05:35 PDT
User-Agent:       Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; nl; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8
Build Identifier: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; nl; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8

When check accept cookies from websites, accept cookies from third parties is checked by default.
Peoples should be able to decide for themselves if they want to accept third party cookies or not, instead it is checked by default.

Reproducible: Always

Steps to Reproduce:
1.Firefox > Preferences > Privacy
2.Check accept cookies from websites
3.See what happens to cookies from third parties
Actual Results:  
Third party cookies checked by default

Expected Results:  
Accept third party cookies should stay unchecked
Comment 1 Jo Hermans 2010-08-30 08:48:43 PDT
This was WONTFIX'ed in bug 324397 (see also bug 417800), mostly because some sites depend on it (and users wouldn't realize why some sites stop working).

Besides .. advertisers have learned how to work around it, using iframes, redirects, behind-the-scenes-communication, etc... The flag is basically useless in the current web, it gives a false impression that it can protect your privacy. At one moment, it was even hidden from the UI (and it's still difficult to find).

I'm not sure where the current bug is, the latest comments are in bug 324397
Comment 2 cprise 2010-12-01 14:23:27 PST
"some sites depend on it"

Yes, the browser makers have let the cat out of the bag with that one. The way it should have been would be to treat anything from outside the domain in the address bar as suspicious. Browsers should have asked the user if they want to "trust 3rd party content referenced from this site". Then people could have made the few exceptions they needed while answering 'No' on non-essential sites.

The Internet community needs to find a way to reduce the expectation by web hosts that users will load or run anything they casually reference offsite.
Comment 3 Mats Palmgren (:mats) 2014-01-13 08:50:47 PST
Why need-info me?  I know very little about cookies.

Note You need to log in before you can comment on or make changes to this bug.