Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×
Internet Explorer

Journal Lumpish Scholar's Journal: I feel so secure now 5

Journal by Lumpish Scholar

I was paying my credit card bill online, and my credit card company warned me I might not be able to do so if I was using the latest version of Internet Explorer with a recent patch. They pointed me to here:

You may not be able to log on to a Web site or complete an Internet transaction after you install the 832894 (MS04-004) security update. For example, when you submit your user name and password to an SSL-secured Web site by using a form on a HTTPS Web page, you may receive an HTTP 500 (Internal Server Error) Web page....

This problem may occur after you apply the 832894 security update (MS04-004) or the 821814 hotfix on a computer that runs Microsoft Windows XP, Windows 2000, Windows NT 4.0, Windows Millennium Edition, or Windows 98....

The 832894 security update (MS04-004) and the 821814 hotfix change how the Internet extensions for Windows (Wininet.dll) retries POST requests when a Web server resets the connection. Programs that use Windows Internet (Wininet) application programming interface (API) functions to post data (such as a user name or a password) to a Web server retry the POST request without including the POST data if the Web server closes (or resets) the initial connection request.

Note A POST request does not include POST data if its content length is set to 0 or is empty.

Sometimes, this behavior prevents another reset and permits authentication to complete. However, you may receive an HTTP 500 (Internal server error) Web page if the Web server must have the POST data included when Wininet retries the POST request.

Mind you, I was running Firefox when I saw this message, but I really, really look forward to explaining this to my mother.

If I win the lottery, the first thing I'm doing is buying a Mac for every member of my family.

This discussion has been archived. No new comments can be posted.

I feel so secure now More

I feel so secure now

Comments Filter:
  • As you probably know I work for a bank doing their ebanking app. At a certain point a bug was filed because some sessions would never timeout. Strangely enough we found out that it was only the case with fully patched WinXP machines.

    So I started to look around and indeed found this little gem in the MS knowledge base. Needless to say, I copy/pasted the article in the bug-database and marked it "not a bug". After all, I can't work around IE bugs on *that* level.

    Nobody should use IE, ever... alas ever

    • Heheh... I think we should port IE over to linux, just to fuck with the Linux zealots!

      BTW- I'm using NS7 which is based on Mozilla.

      • I think we should port IE over to linux, just to fuck with the Linux zealots!

        You are truly evil, my friend....

        I'm using NS7 which is based on Mozilla.

        Strangely enough that is exactly the same browser I'm using right now. But that's because I'm at a training and have internet over the day (Yay! Yay! Yay!) At home I standardized on Mozilla and everybody seems to like it. My sis is an absolute fan of tabbed browsing ;-) At least one real convert!

Slashdot Top Deals

Anyone can make an omelet with eggs. The trick is to make one with none.

Close