Posted by Bruno on 10/19/06 11:45

"Gordon Burditt" <gordonb.rolqx@burditt.org> wrote in message
news:1245jv48o8et64e@corp.supernews.com...
> >A little further investigation into the privacy settings - IE's default
>>setting (Medium) specifies that it:
>>- blocks thrid-party cookies that do not have a compact privacy policy
>>(what's this about?)
>
> Your web site can publish a privacy policy. Google "compact privacy
> policy" and select "How to Deploy P3P Policies on Your Web Site"
> (on msdn.microsoft.com). Typically it's in the URL /w3c/p3p.xml.
>
>>- blocks thrid-party cookies that use personally identifiable information
>>without implicit consent
>
> If you don't publish a policy to not use personally identifiable
> information, it's presumed that you do, and sell it to Satan, and
> use it to rape and pillage the user.
>
>>So I guess it's one of these things that is blocking the cookie.
>>
>>Not sure why my cookie would violate any of these restrictions: My cookie
>
> Your *LACK OF A POLICY* violates those restrictions. IE can't read your
> mind or figure out what you encrypted into that cookie (if anything).
>
>>is not using any personally identifiable information. The source page has
>>a
>>list of links to be chosen among. When the user clicks a link, it chains
>>to
>>a page which accesses a settings file on the server, saves relevant values
>>to a cookie for the remainder of the session, and chains to the final
>>target
>>page which requires these values to operate.
>
> PHP doesn't have a function called chain(). This probably doesn't
> refer to a method of attaching your partner to the bed. Are you
> using it in the context of "when the user clicks the submit button
> or a link, the browser goes to this other page"? Or something that
> doesn't require user action?
>
> Gordon L. Burditt



Thanks for your insights Gordon.

I will look into Microsoft's privacy policy information and see if it is
worthwhile doing this - I tend to stay away from any code that is MS
specific, so I may just resort to a compromise that does not require this.

• Next in forum: Re: deny direct access to a single folder with .htaccess
• Prev in forum: Re: Cookie & Frame from another domain?
• Thread view: Re: Cookie & Frame from another domain?

[Reply to this message]