Comments on: McAfee Anti-Phishing filter for Internet Explorer causes onclick events to not fire? http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/ making the web work for you Thu, 23 Jul 2009 21:18:42 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: Sergio http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/comment-page-1/#comment-25328 Sergio Wed, 10 Dec 2008 00:57:04 +0000 http://www.letsgomurphys.com/2008/03/21/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/#comment-25328 I have the same problem. Solution: Disable Mcafee Phishing Filter in browser complements!!!! I have the same problem. Solution: Disable Mcafee Phishing Filter in browser complements!!!!

]]> By: Michael http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/comment-page-1/#comment-21756 Michael Sun, 28 Sep 2008 00:47:59 +0000 http://www.letsgomurphys.com/2008/03/21/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/#comment-21756 @Nick, Interesting. No, I don't have any documentation about the upcoming fix. I'll email you info for my contact at McAfee and maybe he can help you. @Nick,

Interesting. No, I don’t have any documentation about the upcoming fix. I’ll email you info for my contact at McAfee and maybe he can help you.

]]> By: Nick http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/comment-page-1/#comment-21473 Nick Mon, 15 Sep 2008 20:37:36 +0000 http://www.letsgomurphys.com/2008/03/21/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/#comment-21473 I have experienced a very similar problem recently on a web application for my company. We have some form fields that have an onKeyPress event handler associated with them. They are either formatting a dollar amount or a date, but in both cases they are monitoring the key press event and doing some formatting. The problem we're seeing is that numbers typed into these fields are being duplicated. For instance, when a 2 is typed it appears as 22. So far only three people have reported this problem. Two of them confirmed that disabling the McAfee anti-phishing filter stopped the double-digits. Do you have a link to any documentation on the upcoming fix? I have experienced a very similar problem recently on a web application for my company. We have some form fields that have an onKeyPress event handler associated with them. They are either formatting a dollar amount or a date, but in both cases they are monitoring the key press event and doing some formatting.

The problem we’re seeing is that numbers typed into these fields are being duplicated. For instance, when a 2 is typed it appears as 22. So far only three people have reported this problem. Two of them confirmed that disabling the McAfee anti-phishing filter stopped the double-digits.

Do you have a link to any documentation on the upcoming fix?

]]> By: Michael http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/comment-page-1/#comment-18880 Michael Mon, 14 Jul 2008 19:54:52 +0000 http://www.letsgomurphys.com/2008/03/21/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/#comment-18880 Al, Sorry for the delay. With so much spam, occassionally legit comments get overlooked. I'm glad to hear from you. I've posted this issue in a handful of forums but haven't run into anybody experiencing the same problems. I haven't turned up anything at MSDN or the McAfee site either. We were able to verify from one of our customers that new Dell laptops are shipping with McAfee by default. Yikes! The good news is that I did report this finding to McAfee (with some examples of failing sites) and they do plan a patch to be released sometime during summer 2008. Until then he recommends the javascript:void(0) fix that we're using. Not sure how that will work with the problems you're describing. Good luck! Al,

Sorry for the delay. With so much spam, occassionally legit comments get overlooked.

I’m glad to hear from you. I’ve posted this issue in a handful of forums but haven’t run into anybody experiencing the same problems. I haven’t turned up anything at MSDN or the McAfee site either.

We were able to verify from one of our customers that new Dell laptops are shipping with McAfee by default. Yikes!

The good news is that I did report this finding to McAfee (with some examples of failing sites) and they do plan a patch to be released sometime during summer 2008. Until then he recommends the javascript:void(0) fix that we’re using. Not sure how that will work with the problems you’re describing.

Good luck!

]]> By: Al Sparber http://www.letsgomurphys.com/usability/2008/03/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/comment-page-1/#comment-18069 Al Sparber Sat, 14 Jun 2008 05:52:19 +0000 http://www.letsgomurphys.com/2008/03/21/mcafee-anti-phishing-filter-for-internet-explorer-causes-onclick-events-to-not-fire/#comment-18069 Hi Michael, It's not just links with explicit onclick events. Excrutiatingly correct DOM scripting techniques that programatically assign click events also fail in the same way with MacAfee phishing filter. Consider this link that fails: "<a href="p7ssm_img_3/fullsize/ab112_fs.jpg" rel="nofollow"></a>" A user with MacAfee will see the HREF executed, which in this case opens an image, even though a script is dynamically assigning an onclick. MacAfee is doing its deed at a much deeper level than you might think. THe above link is taken from an image slide show application that we market and a good number of folks are reporting failures - all being traced to MacAfee's filter. Here is the actual page: http://www.projectseven.com/products/galleries/ssm/ssm_03.htm What's scary is that it looks like Dell is installing this filter on its new computers. If you here from MacAfee, please let us know. We will do the same. -- Al Sparbner Hi Michael,

It’s not just links with explicit onclick events. Excrutiatingly correct DOM scripting techniques that programatically assign click events also fail in the same way with MacAfee phishing filter. Consider this link that fails:

A user with MacAfee will see the HREF executed, which in this case opens an image, even though a script is dynamically assigning an onclick. MacAfee is doing its deed at a much deeper level than you might think. THe above link is taken from an image slide show application that we market and a good number of folks are reporting failures – all being traced to MacAfee’s filter. Here is the actual page:

http://www.projectseven.com/products/galleries/ssm/ssm_03.htm

What’s scary is that it looks like Dell is installing this filter on its new computers.

If you here from MacAfee, please let us know. We will do the same.


Al Sparbner

]]>