The Omni Group Forums

The Omni Group Forums (http://forums.omnigroup.com/index.php)
-   OmniWeb General (http://forums.omnigroup.com/forumdisplay.php?f=8)
-   -   Blocking a specific cookie (http://forums.omnigroup.com/showthread.php?t=4233)

John Chrysostom 2007-07-19 10:09 AM

Blocking a specific cookie
 
There's a web site for which I'd like OmniWeb always to reject a cookie of a specific name while nevertheless accepting any other cookies.

Is there any way to accomplish this (e.g., by editing the Cookies.xml file)?

Terry 2007-07-19 11:25 AM

[QUOTE=John Chrysostom]There's a web site for which I'd like OmniWeb always to reject a cookie of a specific name while nevertheless accepting any other cookies.

Is there any way to accomplish this (e.g., by editing the Cookies.xml file)?[/QUOTE]

I'd imagine just clicking the Site Preferences icon in the toolbar would be sufficient. Click the Security tab and turn adjust how you want to handle cookies for the site

John Chrysostom 2007-07-19 02:22 PM

[QUOTE=Terry]I'd imagine just clicking the Site Preferences icon in the toolbar would be sufficient. Click the Security tab and turn adjust how you want to handle cookies for the site[/QUOTE]
I might be overlooking something obvious, but the Site Preferences only seem to allow the rejection of either [I]all[/I] cookies or none at all.

What I'd like is for OmniWeb to reject any cookie of a certain name, while still allowing others.

Terry 2007-07-19 05:16 PM

[QUOTE=John Chrysostom]I might be overlooking something obvious, but the Site Preferences only seem to allow the rejection of either [I]all[/I] cookies or none at all.

What I'd like is for OmniWeb to reject any cookie of a certain name, while still allowing others.[/QUOTE]

I'm pretty sure that cookie control in Site Preferences is for only that site.

From OmniWeb Help:

[QUOTE]You can adjust how OmniWeb handles cookies in general using the Security preference pane in OmniWeb preferences. [B]You can also set cookie preferences on a site-specific basis using Site Preferences[/B].[/QUOTE]

Ken Case 2007-07-19 05:23 PM

[QUOTE=John Chrysostom]What I'd like is for OmniWeb to reject any cookie of a certain name, while still allowing others.[/QUOTE]

If you open the Cookie Sheet (by clicking on the Cookie icon in the status bar at the bottom), you can select a cookie and change its status to Rejected.

Ken Case 2007-07-19 05:26 PM

P.S. — You can also get to a complete list of cookies by clicking on the Show Cookies button in Security Preferences.

troyb 2007-07-20 03:46 PM

You could also use the ad block setting "From blocked URLs" to block all content from a particular domain.

John Chrysostom 2007-07-24 12:47 AM

[QUOTE=Ken Case]If you open the Cookie Sheet (by clicking on the Cookie icon in the status bar at the bottom), you can select a cookie and change its status to Rejected.[/QUOTE]
I've tried this, but every time the page is loaded, the cookie with "rejected" status is simply replaced by a new one of the same name. They aren't automatically blocked.

troyb 2007-07-24 09:12 AM

Does adding the domain you'd like to prevent cookies from to the ad block list work? Click on the ad blocking site preference pane. Enable the setting "From blocked URLs". Click on the "Edit Blocked URLs" button. add the domain to be blocked to the top field like so: "troubledomain\.com" be sure you include the backslash but remove the quotes.

John Chrysostom 2007-07-24 03:41 PM

[QUOTE=troyb]Does adding the domain you'd like to prevent cookies from to the ad block list work? Click on the ad blocking site preference pane. Enable the setting "From blocked URLs". Click on the "Edit Blocked URLs" button. add the domain to be blocked to the top field like so: "troubledomain\.com" be sure you include the backslash but remove the quotes.[/QUOTE]
Unfortunately that won't work because there are other cookies from the same domain that I need to receive -- the goal is just to block one of them.

live4ever 2007-07-25 06:41 AM

What site and which cookie (if you can be more specific)? Usually the site-specific preferences work great for me, I could give it a try if you want.

Handycam 2007-07-27 05:21 AM

[quote]
If you open the Cookie Sheet (by clicking on the Cookie icon in the status bar at the bottom), you can select a cookie and change its status to Rejected.[/quote]

Am I to understand that if you do this, then theat cookie is supposed to be rejected [b]from now on[/b]? If yes, that would be most excellent. But it seems from the original poster's comments that's not the case.

I can see where this would be useful. For example, some sites have useful cookies like site preferences or remembering a login. But they also have, from the same domain, site tracking cookies I'd rather block.

Handycam 2007-07-27 05:24 AM

[quote]Does adding the domain you'd like to prevent cookies from to the ad block list work?[/quote]

I don't think this works. I've got .*adbrite\.com/.* on my block list, yet the site [url]www.popoholic.com[/url] seems to be able to set a cookie with the domain .adbrite.com

troyb 2007-07-27 09:58 AM

I guess that makes sense since the cookie is technically coming from popoholic but no data is transferred from adbrite.

Handycam 2007-07-27 04:36 PM

[QUOTE=Handycam]Am I to understand that if you do this, then that cookie is supposed to be rejected [b]from now on[/b]?[/QUOTE]

Troy, can you clarify the behavior here?

troyb 2007-07-27 07:38 PM

Well what I was thinking is that OmniWeb was allowing the cookie through because it was getting created by popoholic (and pointing to the ad site). But I'm actually not seeing this now. Deleting the cookie, adding "adbrite" to the blacklist and reloading the page seems to be working for me.

[CODE]
2007-07-27 20:22:58 filtering http://4.adbrite.com/mb/text_group.php?sid=105137&br=1&dk=7469636b6574735f345f325f776562 for document http://www.popoholic.com/
2007-07-27 20:22:58 Tx:
GET /meter.asp?site=s24popoholic&refer=&ip=76.22.99.143&w=1440&h=900&clr=24&tzo=420&lang=en&pg=http%3A//www.popoholic.com/&js=1&rnd=0.22150965883466864 HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
Referer: http://www.popoholic.com/
User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-US) AppleWebKit/522+ (KHTML, like Gecko, Safari/522) OmniWeb/v611
[/CODE]

dangerous 2007-07-27 10:02 PM

FWIW there should be no way popoholic.com could set or read a cookie from adbrite.com. That would be a [b]huge[/b] security hole!

Now to Handycam who has .*adbrite\.com/.* in his block list. I am not quite sure how OW works but I think possibly as these are regexes there is confusion to what the / do. If the / in a block filter are actually delimiters for the regex (which I am guessing they probably are) then that could be why it is failing. Try blocking /.*\.adbrite\.com/ instead and see if that fixes it.

troyb 2007-07-27 10:52 PM

[QUOTE=dangerous]FWIW there should be no way popoholic.com could set or read a cookie from adbrite.com. That would be a [b]huge[/b] security hole![/QUOTE]

That's a good point. Silly of me to think otherwise.

[QUOTE]Now to Handycam who has .*adbrite\.com/.* in his block list. I am not quite sure how OW works but I think possibly as these are regexes there is confusion to what the / do. If the / in a block filter are actually delimiters for the regex (which I am guessing they probably are) then that could be why it is failing. Try blocking /.*\.adbrite\.com/ instead and see if that fixes it.[/QUOTE]

Handycam's expresion should work. OmniWeb validates each expression as they are entered and marks invalid expressions red to make it easier to identify problems.


All times are GMT -8. The time now is 11:33 PM.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2022, vBulletin Solutions, Inc.