From c3b09303c015c8f8116b0d866010fa883f8a1b6a Mon Sep 17 00:00:00 2001 From: "cotter%netscape.com" Date: Thu, 27 Jul 2006 14:33:38 +0000 Subject: [PATCH] help content updates per bugzilla 122806, r=oeschger; updates re p3p & SSL cipher UI changes. --- .../en-US/chrome/common/help/ssl_help.xhtml | 51 ++++++++++-- .../chrome/common/help/using_priv_help.xhtml | 82 +++++++++++++------ 2 files changed, 100 insertions(+), 33 deletions(-) diff --git a/suite/locales/en-US/chrome/common/help/ssl_help.xhtml b/suite/locales/en-US/chrome/common/help/ssl_help.xhtml index 206554711323..a21028b84efc 100644 --- a/suite/locales/en-US/chrome/common/help/ssl_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/ssl_help.xhtml @@ -9,9 +9,30 @@ - + + +

SSL Settings

+

This section describes how to set your SSL preferences and ciphers. +

 

+ + + + + +
+

In this section:

+

Privacy & Security Preferences - SSL

+

Edit Ciphers

+
+

 

+ + + + + + -

Privacy & Security Preferences - SSL

+

Privacy & Security Preferences - SSL

This section describes how to use the SSL preferences panel. If you are not already viewing the panel, follow these steps:

    @@ -31,13 +52,17 @@ between a web site and browser software and the encryption of information that f between them. The Transport Layer Security (TLS) protocol is an IETF standard based on SSL. TLS 1.0 can be thought of as SSL 3.1. -

    You should normally leave both SSL checkboxes and the TLS checkbox selected in the SSL Preferences panel to ensure that both older and newer web servers can work with the browser. - +

    You should normally leave these three checkboxes selected to ensure that both older and newer web servers can work with the browser: +

    Important note re TLS: Some servers that do not implement SSL correctly cannot negotiate the SSL handshake with client software (such as the browser) that supports TLS. Such servers are known as "TLS intolerant." -

    When the Enable TLS option in the SSL preferences panel is selected, the browser attempts to use the TLS protocol when making secure connections with a server. If that connection fails because the server is TLS intolerant, the browser will fall back to using SSL 3.0. +

     

    SSL Warnings

    @@ -66,12 +91,26 @@ information that isn't encrypted. If you send unencrypted information over t

    For short definitions, click authentication, encryption, or certificate.

    + + + +

    Edit Ciphers

    +

    This section describes how to use the Edit Ciphers dialog box. If you're not already viewing it, follow these steps: + +

      +
    1. Open the Edit menu and choose Preferences. +
    2. Under the Privacy & Security category, choose SSL. (If no subcategories are visible, double-click the category to expand the list.) +
    3. Click the Edit Ciphers button. +
    + +

    help text to come +

    Return to beginning of SSL section ]

    -

    8/31/2001 +

    26 March 2002 diff --git a/suite/locales/en-US/chrome/common/help/using_priv_help.xhtml b/suite/locales/en-US/chrome/common/help/using_priv_help.xhtml index 8abb2c3e1a0a..9c199b999814 100644 --- a/suite/locales/en-US/chrome/common/help/using_priv_help.xhtml +++ b/suite/locales/en-US/chrome/common/help/using_priv_help.xhtml @@ -114,7 +114,7 @@ Using the Cookie Manager

  1. Select one or more cookies and click Remove Cookie, or click Remove All Cookies.
-

To prevent the removed cookies from being reaccepted later, click the checkbox labeled "Don't allow removed cookies to be reaccepted later." Click OK when you're through. +

To prevent the removed cookies from being reaccepted later, click the checkbox labeled "Don't allow removed cookies to be reaccepted later." Click OK when you're through.

Return to beginning of section ] @@ -125,25 +125,35 @@ Using the Cookie Manager

Setting Privacy Levels

-

A web site's privacy policy tells you what kind of information the site collects, to whom it gives that information, and how it uses the information. Some web sites publish privacy policies that determine how your browser will handle cookies according to the privacy level you set. +

Many web sites publish their privacy policies according to the Platform for Privacy Preferences (P3P) standard. A web site's privacy policy describes what kind of information the site collects, to whom it gives that information, and how it uses the information. -

To set the privacy level you want your browser to enforce for all web sites: +

You can choose to enable cookies based on the browser's privacy settings and the P3P standard. When cookies are enabled in this manner, the browser checks your current privacy settings against those published by the web site and takes appropriate action. + +

For example, your privacy settings may require the browser to reject cookies that collect personal information without informing you. Alternatively, you can adjust your privacy settings so that the browser simply warns you when a cookie is used in this way, while allowing the action to take place. + +

The browser defines three levels of privacy: low, medium, and high. You can select one of these predefined privacy levels, or you can create your own custom privacy policy. + +

To control the privacy settings you want your browser to enforce for all web sites:

  1. Open the Edit menu and choose Preferences.
  2. Under the Privacy & Security category, choose Cookies. (If no subcategories are visible, double-click the category to expand the list.) -
  3. Select the option labeled "Enable cookies based on privacy levels." +
  4. Select the option labeled "Enable cookies based on privacy settings."
  5. Click View. -
  6. In the privacy level dialog box, select the level of privacy you want. +
  7. In the Privacy Settings dialog box, select the level of privacy you want, or select "custom" and define your own privacy policy as discussed below. +
  8. Click OK to confirm your settings.
-

Your browser will handle cookies according to the settings under Cookie Acceptance Policy. For the low, medium, and high options, these settings are standardized. +

Your browser handles cookies according to the settings you select. For the low, medium, and high options, these settings are standardized. -

"First party cookies" are cookies set by the site you are visiting. "Third party cookies," also known as foreign cookies, are set by a sites other than the one you are viewing, and are therefore generally considered more dangerous. +

When the "custom" option is selected, you can define your own privacy policy. For each type of site listed under Cookie Acceptance Policy, and for each type of cookie, you can select whether you want the Cookie Manager to accept the cookie permanently, reject it permanently, accept it just for the current session (that is, until you exit the browser), or flag it. -

When the Custom option is set, you can define your own privacy level. For each type of site listed under Cookie Acceptance Policy, and for each type of cookie, you can set whether you want the Cookie Manager to accept the cookie permanently, reject it permanently, or accept it just for the current session (that is, until you exit the browser). +

If you choose Flag for a given category, the Cookie Manager displays the cookie notification icon near the lower-right corner of the browser window whenever a web site that fits the category sets a cookie. When this icon is displayed, you can click it to get information about the affected cookies. -

For more details, see Privacy Levels. +

"First party cookies" are cookies set by the site you are visiting. "Third party cookies," also known as foreign cookies, are set by a sites other than the one you are viewing, and are therefore considered more dangerous. + + +

For more details, see Privacy Settings.

Return to beginning of section ] @@ -165,7 +175,7 @@ Using the Cookie Manager

Privacy & Security Preferences - Cookies

Stored Cookies

Cookie Sites

-

Privacy Levels +

Privacy Settings

Cookie Notification @@ -193,7 +203,7 @@ Using the Cookie Manager

  • Enable cookies for the originating web site only: Choose this if you don't want to accept or return foreign cookies. Cookies received through email (when the message contains a web page) are treated as foreign cookies. -
  • Enable cookies based on privacy levels: Choose this if you handle cookies based on privacy levels. If you select this option, click the View button to set the privacy level you prefer. +
  • Enable cookies based on privacy settings: Choose this if you handle cookies based on your privacy settings. If you select this option, click the View button to confirm or modify your privacy settings.
  • Enable all cookies: Choose this to permit all web sites to set cookies on your computer and receive them back during subsequent visits. Note: If you select this option and later choose to disable all cookies, you may still have old cookies stored on your computer (though no new ones will be set). @@ -235,9 +245,12 @@ Using the Cookie Manager
  • Click Manage Stored Cookies. -

    The Stored Cookies tab lists all the cookies stored on your computer and the sites they belong to. When you select a cookie in this list, information about that cookie appears: -

     

    +

    The Stored Cookies tab lists all the cookies stored on your computer, the sites they belong to, and their current status. +

    If you can't see the Status column, click the icon in the upper-right corner of the table and select Status. This column indicates which cookies have been flagged, accepted, or rejected according to your Privacy Settings. + +

    When you select a cookie in this list, the following information about that cookie appears in the bottom portion of the tab: +
      @@ -271,7 +284,7 @@ Using the Cookie Manager - + @@ -316,14 +329,14 @@ Using the Cookie Manager

     

    -

    Privacy Levels

    +

    Privacy Settings

    -

    This section describes how to use the Privacy Levels window. If you're not already viewing it, follow these steps: +

    This section describes how to use the Privacy Settings window. If you're not already viewing it, follow these steps:

    1. Open the Edit menu and choose Preferences.
    2. Under the Privacy & Security category, click Cookies. (If no subcategories are visible, double-click the category to expand the list.) -
    3. Select the radio button labeled "Enable Cookies Based on Privacy Levels." +
    4. Select the radio button labeled "Enable cookies based on privacy settings."
    5. Click View.

     

    @@ -345,14 +358,14 @@ Using the Cookie Manager

    The level of privacy you set here determines how your browser treats cookies according to privacy policies published by some web sites and the settings displayed under Cookie Acceptance Policy for first party and third party cookies. -

    "First party cookies" are cookies set by the site you are visiting. "Third party cookies," also known as foreign cookies, are set by a site other than the one you are viewing, and are considered more dangerous than first party cookies. +

    "First party cookies" are cookies set by the site you are visiting. "Third party cookies," also known as foreign cookies, are set by a site other than the one you are viewing, and are considered more dangerous than first party cookies.

    You can select one of the following privacy levels:

    • low: Select this if you're not too concerned about cookies. When this setting is selected, the Cookie Manager accepts all first party cookies permanently, without regard for a site's privacy policy. It also accepts all third party cookies—but, in the case of sites that may be collecting information without your consent, only until you exit the browser.
    • medium: Select this if you don't want to accept third party cookies set by sites that may be collecting personally identifiable information without your consent.
    • high: Select this if you want to accept only cookies set by sites that explicitly ask for your consent when they collect personally identifiable information. -
    • custom: Select this only if you want to set your own custom Cookie Acceptance Policy. The default settings for "custom" are the same as for "high." You can modify them by selecting from the drop-down menus in the bottom portion of the dialog box. +
    • custom: Select this only if you want to set your own custom Cookie Acceptance Policy. The default settings for "custom" are the same as for "high." You can modify them by selecting from the drop-down menus in the bottom portion of the dialog box.

     

    @@ -360,18 +373,22 @@ Using the Cookie Manager

    Cookie Acceptance Policy

    -

    If you select the "custom" level of privacy in the top portion of the Privacy Levels dialog box, you can choose from three different settings in each of the eight categories shown in the bottom portion. You can choose one of these options for each category: +

    If you select the "custom" level of privacy in the top portion of the Privacy Settings dialog box, you can choose one of four settings from the drop-down list in each of the eight categories shown in the bottom portion. These settings cause Cookie Manager to perform the following actions:

      -
    • Accept: Causes Cookie Manager to accept permanently all cookies in the category. -
    • Session: Causes Cookie Manager to accept all cookies in the category for the current session only—that is, until you exit the browser. -
    • Reject: Causes Cookie Manager to reject permanently all cookies in the category. +
    • Accept: Permanently accept all cookies in the category. +
    • Session: Accept all cookies in the category for the current session only—that is, until you exit the browser. +
    • Reject: Permanently reject all cookies in the category. +
    • Flag: Accept all cookies in the category, but display the cookie notifiation icon each time it does so.
    +

    The cookie notification icon appears near the lower-right corner of the browser window whenever a web site in the category sets a cookie. When this icon is displayed, you can click it to get information about the affected cookies or modify your privacy settings. + +

    There are four categories for each of the two types of cookies shown:

      -
    • Site has no privacy policy: This kind of site does not publish any kind of privacy policy. There is no way of knowing what kinds of information such sites collect or what they do with it. In general, it's safest to reject cookies set by such sites, esecially third-party cookies. +
    • Site has no privacy policy: This kind of site does not publish any kind of privacy policy. There is no way of knowing what kinds of information such sites collect or what they do with it. In general, it's safest to reject cookies set by such sites, especially third-party cookies.
    • Site collects personally identifiable information without your consent: This kind of site publishes a privacy policy, but does not ask your permission when they collect information about your online activities. If you are concerned about such information being collected without your knowledge, you should reject cookies from such sites, especially third-party cookies.
    • Site collects personally identifiable information with only your implicit consent: This kind of site collects information about you based on your privacy level settings, but without asking you explicitly each time it does so
    • Site does not collect personally identifiable information without your explicit consent: This kind of site is relatively less dangerous, since you are warned, and given a chance to reject the request, each time such a site attempts to collect information about you. As for the other types of sites, third-party cookies are considered more dangerous than first party cookies. @@ -380,7 +397,18 @@ Using the Cookie Manager

      Cookie Notification

      -

      [text to come] +

      The cookie notification icon is located in the status bar near the lower-right corner of the browser window. It appears when a web site has used a cookie in a way that requires you to be notified according to your current Privacy Settings. + +

      This section describes how to use the Cookie Notification dialog box, which appears when you click the Cookie Notification icon. You can take the following actions from this dialog box: + +

        +
      • Turn Off Privacy Settings. Click this button to disable your Privacy Settings. This has the same effect as selecting "Enable all cookies" in Privacy & Security Preferences - Cookies. After you take this action, your browser will accept all cookies without warning you. +
      • View Cookie Manager. Click this button to open the Cookie Manager, where you can view the current status of all your cookies and identify the cookies that caused the notification icon to appear. Clicking this button also removes the cookie notification icon from the status bar. +
      • View Privacy Settings. Click this button to open the Privacy Settings dialog box. The settings in this dialog box determine how web sites can use cookies on your computer and what actions cause the cookie notification icon to be displayed. +
      • Close. Click this button to exit the Cookie Notification dialog box without taking any action. The cookie notification icon remains visible until you open the Cookie Manager to view your cookie status. +
      + +

      For more information on the use of privacy settings, see Setting Privacy Levels.

       

      @@ -610,7 +638,7 @@ Using the Cookie Manager

      Editing Stored Site Information

      -

      As explained in Saving Form Data, you can choose "Never for this site" when Form Manager prompts you to save data you've entered in a form. Similarly, you can choose not to display the Prefill Form Data dialog box on a site-by-site basis. +

      As explained in Saving Form Data, you can choose "Never for this site" when Form Manager prompts you to save data you've entered in a form. Similarly, you can choose not to display the Prefill Form Data dialog box on a site-by-site basis.

      Form Manager lets you change your mind about these decisions at any time. To view site-specific information about your saved form data:

        @@ -963,7 +991,7 @@ site" in response to the Form Manager's request to store form data.
        -

        14 March 2002

        +

        26 March 2002

        Copyright © 1994-2002 Netscape Communications Corporation.

    Server SecureThis indicates whether the server that originally sent the cookie uses a "secure" (HTTPS) connection. When this field is "Yes" it means that the browser checks the connection whenever the server asks for a cookie and will not send it unless the connection is encrypted.This indicates whether the server that originally sent the cookie uses a "secure" (HTTPS) connection. When this field is "Yes" it means that the browser checks the connection whenever the server asks for a cookie and will not send it unless the connection is encrypted.