From Bugzilla Helper: User-Agent: Mozilla/5.0 (X11; U; Linux 2.4.1 i686; en-US; 0.8) Gecko/20010212 BuildID: 2001021208 We already block popups. However, we should also block using javascript to make the window full screen. Reproducible: Always Steps to Reproduce: Open the site Actual Results: It made the window fullscreen Expected Results: Mozilla should not let javascript move the window manager's controls (title bar, borders, etc) out of the visible screen area. There should be a preference to completely block javascript from moving a window and/or resizing it (else a site can annoyingly make a window "dance" in front of a user). It can be a hidden pref like popup blocking. Additional notes: popup blocking works too well. Form data saving works poorly. An iteraction between both made me lose my previous attempt of reporting this, since the bug form couldn't open its popup. Augh.

Setting severity to Enhancement and adding [RFE].

According to pointers from shaver, this is one of the issues covered by http://www.mozilla.org/projects/security/components/configPolicy.html and from a quick read, bug 858. The problem is a lack of UI to let the user define the security policies. I'm not familiar with this area. I'll cc myself and see what happens. mstoltz/ckritzer: what is the situation with this?

confirming to aid discussion

UI for this is coming. I'll leave this bug open rather than duping it so we remember to add this specific case to the list of things that can be blocked.

Changing description to be more...descriptive

Mass changing milestone to Moz1.0 - stuff targeted for late spring/early summer.

See also bug 60323, Don't allow JS in Web pages to resize my browser window. I added a list of hidden prefs to set in order to stop sites from resizing/moving windows at http://www.mozilla.org/projects/security/components/configPolicy.html#examples. cesarb@dcc.ufrj.br: when you load http://www.warezcrawler.net/, does part of the window end up off of the screen? If so, that's a bug. What window manager are you using?

Only the window border (i.e., the part Enlightenment 0.16.5 manages) gets out of the screen. Mozilla seems to have saved the size of that window (I think there's another bug on it), and it's exactly 1024x768 (after closing the window, I used Ctrl+N to create a new window. This new window was partly offscreen, since the border wasn't; E put it at +0+0) So, none of mozilla was out of the screen; but Enlightenment's border for Mozilla's window was completely out of the screen. Quite exciting for a kiosk mode, pretty annoying for anything else. I don't know whether it's possible to figure the size of the window borders from within mozilla.

*** Bug 75586 has been marked as a duplicate of this bug. ***

This is pretty much a dup of bug 75371, UI prefs to control pop-up (popup) windows and other Javascript annoyances. cesarb: please should file a bug on the fact that a window can become large enough to make the titlebar disappear. If a site did that and also told Mozilla not to display menus and toolbars, a site could create a full-screen browser window with no UI. Some porn sites *already* exploit a similar (but intentional) bug in Internet Explorer in order to make it hard for you to close their pop-up ads before reading them. Mozilla's policy is that web pages shouldn't be able to make their windows larger than a maximized window without chrome privs (see "JavaScript Features Requiring Privileges" on http://www.mozilla.org/projects/security/components/signed-scripts.html), and from your description it sounds like that isn't working correctly under Enlightenment.

OK, filed bug 103454.

Bugs targeted at mozilla1.0 without the mozilla1.0 keyword moved to mozilla1.0.1 (you can query for this string to delete spam or retrieve the list of bugs I've moved)

Fixed in bug 75371. Porn surfers, rejoice! (If you didn't get enough rejoicing from the other parts of bug 75371, that is.) For reference: this new option is under Edit, Preferences, Advanced, Scripts&Windows. *** This bug has been marked as a duplicate of 75371 ***