Sharovatov’s Weblog

McAfee scanalert img src

Posted in http by sharovatov on 23 April 2009

Recently I’ve blogged about URL Common Internet Scheme Syntax, and today when I was adding ADDTHIS bookmark button to our corporate website, I noticed that McAfee Secure uses this scheme when specifying source URL for the McAfee Secure image:

<img width="94" height="54" border="0" src="//{companyname}/13.gif" alt="McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams" oncontextmenu="alert(‘Copying Prohibited by Law – McAfee Secure is a Trademark of McAfee, Inc.’); return false;">

Here we can see the best usecase for the URL notation I’ve been talking about – it doesn’t matter if client visits a page with this code in HTTPS or HTTP mode – the image will always be there. No overhead for cases when clients are in HTTP mode, no mixed content security warnings when the page’s accessed in HTTPS.

Well done, McAfee!

Share :

Tagged with: , , ,