Changing Cookies/Popup Default Settings

[Martijn Klingens]

On Tuesday 23 August 2005 07:04, Stephan Binner wrote:
> On Monday 22 August 2005 23:08, Martijn Klingens wrote:
> > Does that mean that persistent login cookies like Bugzilla's also turn
> > into session cookies, thus making them basically useless?
>
> Yes, until configured otherwise.

That's counter-intuitive at best. I don't think many people would expect that, 
especially since the websites themselves refer to persistent cookies as 
'remember this or that'. And even for power users who know how it works 
(which is hard enough to explain IMO) it's downright user unfriendly to have 
to go into the config to change the policy. Konq's cookie manager isn't the 
fastest thing on earth from a workflow perspective.

> I just checked Firefox default and it accepts cookies, even if coming from
> others sites, forever. Is that the way to go!?

Nah, that's the other extreme. I would block cross-domain cookies by default, 
add a notification like the one we already have for blocked popups, and allow 
the user to unblock the cookies for once or forever from the status bar.

That same policy, while fine for cross-domain, is not for cookies from the 
originator. I tend to go to a default to accept cookies from the originating 
domain too, and also use status bar notification about cookies to easily 
switch policy if you don't want them (but without the passive popup, that'd 
be insane).

> > but if it makes me lose persistent cookies then I won't agree agree :)
>
> It's about new user defaults, your cookies should not be affected.

They will, since I reinstall systems and/or nuke ~/.kde from time to time. 
Plus, if the existing users don't want the new defaults, why would new users 
want them? The 'eat your own dog food' adagio applies here, and since I'm not 
willing to eat this dog food I don't want to enforce it to our users either.

-- 
Martijn