W3C home > Mailing lists > Public > www-p3p-dev@w3.org > January 2004

Re: IE6, p3p, cookies

From: Curtis Lacy <cel1@ix.netcom.com>
Date: Wed, 14 Jan 2004 16:35:55 -0800
Message-ID: <000601c3daff$8ca6e790$e3e84b43@cel>
To: <www-p3p-dev@w3.org>
There is a workaround for the IE6.0 P3P/cookie problem stated in my earlier note.  [I had a policy built by the IBM P3P editor, put the reference file in the well-known location, had it checked by the validator, which said the policy was satisfactory for all levels of IE6.0 privacy, cookies wouldn't set.  Tried sending the compact policy as an HTTP header with the page which set the cookies; still no luck.]

The workaround is to send a 'bogus' compact policy which will satisfy IE 6.0, i.e.,  in PHP you can do

header('P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"'); 

This is not a satisfactory solution, since it may or may not bear any relation to your actual policy.  As it happens, our policy is to use info we collect strictly for tending to business on our website, and it goes no further.

Here's the compact policy generated by the editor, which said the policy was good for all privacy levels:

header('CP="NON DSP COR CUR ADMa DEVa OUR IND PHY ONL UNI FIN DEM"');

If anyone understands why IE 6.0 doesn't like this one, I'd be glad to learn about it.

Curtis Lacy
cel1@ix.netcom.com
Received on Wednesday, 14 January 2004 19:49:38 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 18 June 2010 00:12:47 GMT