MSIE Privacy Warning on Pro Domain

rdlugosz

Hi folks - I'm working on my SM site to fix my IE Javascript issues and decided to grab a few screenshots of the "Privacy Warning" that MSIE users receive when visiting a SM site with a Pro Domain.

I believe the issue is related to the fact that the cookie comes from smugmug.com while the browser is pointed to gallery.rrdphoto.com - incidentally, moonriverphotography.com displays the same behavior.

Any chance this could be placed on the bug list for someone to look in to? "Privacy" warnings are never good to see on a site that someone may want to buy something from!! Below are a couple of screenies that illustrate the problem.

Here's a mention on MSDN of the P3P Privacy Policy that may be of reference.

One thought: Would it be possible to distribute the cookie from the custom domain instead of smugmug.com? That should remove the third-party cookie privacy issue.

My IE security settings (which I think are the default; I don't really use IE):


The Privacy Warning:

Andy

I don't get any privacy warnings on IE6 or 7

rdlugosz

Andy wrote:

I don't get any privacy warnings on IE6 or 7

Really? I just got one on IE 7, different computer, your site... see screen shot:

scwalter

You are not alone, here's a thread I started and JT eventually said:

http://www.dgrin.com/showthread.php?t=65304

{JT} wrote:

Yes, the cookiemonster.js is blocked by IE - SmugMug does not have a site wide P3P policy - so behaves as it was designed to. That file does not provide an absolutely necessary function for the site to operate. As for the cart error, I can understand how that is jarring, I will look in to changing that in our future cart revision.

JT

rdlugosz

scwalter wrote:

You are not alone, here's a thread I started and JT eventually said:

http://www.dgrin.com/showthread.php?t=65304

Interesting. So could we request that SmugMug add a "site wide P3P Policy" and fix this?

Either that or don't send that cookie in the first place on custom domains?