WordPress.org

Make WordPress Core

Opened 4 years ago

Closed 4 years ago

Last modified 3 years ago

#43648 closed defect (bug) (invalid)

Browser "nag" appears when user agent indicates Linux and not Windows on FF 59.0.1 64bit

Reported by: bbogart Owned by:
Milestone: Priority: normal
Severity: normal Version: 4.9.4
Component: Security Keywords:
Focuses: Cc:

Description

My current (defauly) user agent:

Mozilla/5.0 (X11; Linux i586; rv:31.0) Gecko/20100101 Firefox/31.0

If I open dashboard, I get the browser nag: "It looks like you're using an insecure version of Firefox. Using an outdated browser makes your computer unsafe. For the best WordPress experience, please update your browser."

If I change my user agent to the same version of FF but on windows:

Mozilla/5.0 (Windows NT 10.0; WOW64; rv:56.0) Gecko/20100101 Firefox/56.0

The nag disappears.

Change History (3)

#1 @bbogart
4 years ago

  • Resolution set to invalid
  • Status changed from new to closed

#2 @bbogart
4 years ago

Never mind, the issue was due to user-agent being misreported (v31 vs v59).

Still, as I understand "version" should not be used, but the Gecko string for checking compatibility: " firefoxversion will generally represent the equivalent Firefox release corresponding to the given Gecko version. Some Gecko-based browsers may not opt into using this token; for this reason, sniffers should be looking for Gecko — not Firefox! " (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/User-Agent/Firefox)

#3 @netweb
3 years ago

  • Milestone Awaiting Review deleted
Note: See TracTickets for help on using tickets.