Full Version: Sprinter - WOE Problem
From: UncleSteve [#15]
13 Jan 2007
To: sprinter [#13] 13 Jan 2007
I believe my FIRST post about it WAS on your forum.... I won't ignore the same or similar questions here just because it is also being discussed on WOE......
If it is trying to put a security cookie on a system, that is what it should say just like many other sites do.
Cookies do NOT go on a clipboard. They are a small file that is downloaded, usually in the background. You should know that since you are a programmer.
As I said on BOTH forums, I am not worried about you and WOE, I just won't open up the machine to the world by changing the default in IE to blindly allow the access.
That is NOT a fix! That is sticking one's head in the sand like an ostrich.
From: Engravin' Dave (DATAKES) [#16]
13 Jan 2007
To: UncleSteve [#15] 13 Jan 2007
From: sprinter [#17]
13 Jan 2007
To: UncleSteve [#15] 13 Jan 2007
From: UncleSteve [#18]
13 Jan 2007
To: sprinter [#17] 13 Jan 2007
Answering questions, giving hints and tips, etc.
If there was anything behind his posting it here IN PUBLIC and not in the private folders, I don't think he would be so kind to your subscribers..
Don't try to read anything into something that doesn't exist.
From: sprinter [#19]
13 Jan 2007
To: UncleSteve [#18] 13 Jan 2007
I agree, he is helpful, and I help here. The problem I have with his post is it should have been to me or posted on WOE. Why should the members on EE even be concerned about WOE.
Actually after thinking about it, I should thank him, when ever something is posted about WOE we always gain a few more new members B-)
EDITED: 13 Jan 2007 by SPRINTER
From: Stunt Engraver (DGL) [#20]
13 Jan 2007
To: sprinter [#19] 13 Jan 2007
Ken,
The first post in this thread is addressed directly to you.
From: sprinter [#21]
13 Jan 2007
To: Stunt Engraver (DGL) [#20] 13 Jan 2007
From: Stunt Engraver (DGL) [#22]
13 Jan 2007
To: sprinter [#21] 13 Jan 2007
That's a question only Harvey can answer.
Actually, I wondered the same thing.
From: LaZerDude (C_BURKE) [#23]
13 Jan 2007
To: Engravin' Dave (DATAKES) [#16] 13 Jan 2007
From: UncleSteve [#24]
13 Jan 2007
To: Stunt Engraver (DGL) [#22] 13 Jan 2007
Until then :P
From: Mick [#25]
13 Jan 2007
To: Harvey only (HARVEY-ONLY) [#1] 13 Jan 2007
From: Franklin (FW_HAYNES) [#26]
13 Jan 2007
To: ALL
I must say that the comment:
"Actually after thinking about it, I should thank him, when ever something is posted about WOE we always gain a few more new members B-) " makes Sprinter seem a little opportunistic.
All for friendly competition and a little banter between sites keeps everyone on their toes, but with the recent changes in WOE going to pay site and now with the this, Ken a.k.a. sprinter I don't feel can be trusted.
Thanks unclesteve for keeping us educated on this.
From: Franklin (FW_HAYNES) [#27]
13 Jan 2007
To: sprinter [#21] 13 Jan 2007
Go back and read the first post. He says he would click it off and it would keep popping up so that would stand to reason that he couldn't access WOE because of this. The only alternative was to address it here in hopes that you would see it. I also find it interesting that you responded here before in WOE on this situation even though by the time you responded here there were a few comments about it in WOE
From: RALLYGUY (RALLYGUY1) [#28]
13 Jan 2007
To: UncleSteve [#7] 13 Jan 2007
I't not exactly a fix if it's not broken.
\
What I did was show people how to make a permanant choice so the popup didn't ask every time you logged in.
Sprinter removed the notification from the server to the browser, so it's a non issue now.
From: RALLYGUY (RALLYGUY1) [#29]
13 Jan 2007
To: UncleSteve [#18] 13 Jan 2007
You're absolutely right...that's why I was surprised to see this here......
From: RALLYGUY (RALLYGUY1) [#30]
13 Jan 2007
To: Franklin (FW_HAYNES) [#27] 13 Jan 2007
EDITED: 13 Jan 2007 by RALLYGUY1
From: sprinter [#31]
13 Jan 2007
To: RALLYGUY (RALLYGUY1) [#30] 13 Jan 2007
EDITED: 13 Jan 2007 by SPRINTER
From: RALLYGUY (RALLYGUY1) [#32]
13 Jan 2007
To: Franklin (FW_HAYNES) [#27] 13 Jan 2007
Here is a description of the security threat and how to handle it if you feel that it is necessary.
I will be adjusting my selection to the "trusted sites option" just in case this comes up again with another site.
It seems that this was a hole in the past that allowed someone to view whatever you copied but had not pasted....or whatever the last paste was.
Yes this information could be a security threat....but is very unlikely to be one. Windows decided that it would be extra secure and give a choice to people with a popup. My suggestion for making either a choice of yes or no every time was a cure for the problem, but it seems as if there is even a better solution.....selecting "trusted sites".
Sprinters solution of eliminating the popup, bu not having a website request to the browser essentially cures the issue for anyone that is using IE7.....
From: UncleSteve [#33]
13 Jan 2007
To: RALLYGUY (RALLYGUY1) [#32] 13 Jan 2007
Thank you for the update. The key is the following excerpt from the page you referenced:
"the behaviour occurs when you visit a website or webpage that tries to access the information stored in Clipboard’s memory,"
Please note that it occurs when the website tries to access the clipboard, not when it is looking for the cookie, etc.
Sprinter's "explanation" that it was trying to put a cookie on the clipboard is NOT what is happening. It IS trying to read the clipboard. At least an honest explanation by him would have been better, even if it was just "I have to look into it and get back to you with an answer" instead of the WRONG knee-jerk response like he was personally being attacked....
From: RALLYGUY (RALLYGUY1) [#34]
13 Jan 2007
To: UncleSteve [#33] 13 Jan 2007
Are you 100% sure that what he is saying couldn't cause the same popup?
I know exactly what the popup means. That doesn't mean that he was lying in his explanation of what was causing it for his website.
If his goal was to harvest information from computers, don't you think it would be stupid to have it cause a popup?
What this allows access to is very limited.....Not the whole hard drive as you suggested earlier on in this thread. It could potentially see copyboard data that was sitting in the memory of what you copied or pasted. Only If you chose to allow it....Period. If not....It wouldn't allow access to it.
I understand what you are saying is that he could potentially have access to that copied information....but only if someone allowed it...It was clearly a product of the upgrade and the security of IE.....not some sinister plot to harvest copied or pasted information. I mean C'mon....do you really believe anyone would bother with that????????!!!!!!!!!
It seems as if every other browser allows it without question up to this point. Wouldn't it have started right away when anyone upgraded to IE 7 and logged in to his site for the last month or two? Why did it only come up after the upgrade to his site?
You know the answer.....it's due to the upgrade, just like the problems that they have had with the beehive upgrade here....Upgrades tend to cause problems, no matter where they are made..........
Show messages: 1-14 15-34 35-54 55-57