Why does this facebook element work? I thought this was exactly the kind of thing ABE is supposed to block. Have I misunderstood something or has Facebook and/or Seamlessweb managed to get around ABE?
[INVALID] Facebook widgets seem to have defeated ABE?
-
jojojo
[INVALID] Facebook widgets seem to have defeated ABE?
My understanding of ABE, with the default facebook containment rule, is that it allows Facebook to run scripts only while you're on facebook.com. But recently I noticed this:
Why does this facebook element work? I thought this was exactly the kind of thing ABE is supposed to block. Have I misunderstood something or has Facebook and/or Seamlessweb managed to get around ABE?
Why does this facebook element work? I thought this was exactly the kind of thing ABE is supposed to block. Have I misunderstood something or has Facebook and/or Seamlessweb managed to get around ABE?
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:5.0) Gecko/20100101 Firefox/5.0
Re: Facebook widgets seem to have defeated ABE?
ABE is like a blacklist, allowing everything by default and requiring explicit denies to block something. There's a "Deny INC" missing from your rule.
Mozilla/5.0 (Windows NT 5.1; rv:5.0.1) Gecko/20100101 Firefox/5.0.1
-
jojojo
Re: Facebook widgets seem to have defeated ABE?
Thanks, don't know how that slipped through the cracks.
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:5.0) Gecko/20100101 Firefox/5.0