Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: Michael Kunde
Michael Kunde Author
User level: Level 1
105 points

Google PREF cookie sets itself, even if I am not browsing

Would someone with some advanced web knowledge please try this and explain to me what is going on here:

Launch Safari. Close all Safari windows, but don't quit the app.
Go into Safari > Preferences.
Click on advanced.
Click on "Show Cookies."
Click the "Remove All" button, then confirm by clicking "Remove All" again.
Leave the cookies window OPEN. Do not open any new Safari windows or navigate to any web pages. Just let Safari sit idle like this for 10-30 minutes.
...OK... wait for it...
Eventually, a cookie called "PREF" will spontaneously appear in your cookies window! It points to ".google.com" and expires in 2 years.

I thought cookies were only set by web pages that *I request*. How can Google just decide to send me a cookie when I have not requested any web pages at all? Isn't that a little... um, intrusive?

Also, my Safari preferences are set to "ONLY ACCEPT COOKIES ONLY FROM SITES I NAVIGATE TO." I haven't navigated to google.com, or anywhere else for that matter, but Safari is accepting this cookie. Why?

Any input would be appreciated.

Message was edited by: mwkdesign

MacBook Pro 15" - 2.5 GHz Intel Core 2 Duo - 2GB RAM, Mac OS X (10.5.3)

Posted on Jan 10, 2009 8:27 AM

Reply
Question marked as Best reply
User profile for user: iBod
iBod
User level: Level 7
29,345 points

Posted on Jan 10, 2009 8:31 AM

Hi,

Cookies can't be 'pushed' so something must be requesting a page from Google. Note that the cookie file is a shared resource and other internet-facing resources may be using Google.

Do you have any widgets, etc, that might be using Google? It may also be the 'Fraudulent sites' feature that is the source of the cookie. The black-listed sites Safari get are retrieved from Google.

I would test this myself, but I'm not on my Mac at present, sorry 🙂
View in context
5 replies
Question marked as Best reply
User profile for user: iBod
iBod
User level: Level 7
29,345 points

Jan 10, 2009 8:31 AM in response to Michael Kunde

Hi,

Cookies can't be 'pushed' so something must be requesting a page from Google. Note that the cookie file is a shared resource and other internet-facing resources may be using Google.

Do you have any widgets, etc, that might be using Google? It may also be the 'Fraudulent sites' feature that is the source of the cookie. The black-listed sites Safari get are retrieved from Google.

I would test this myself, but I'm not on my Mac at present, sorry 🙂
Reply
User profile for user: Michael Kunde
Michael Kunde Author
User level: Level 1
105 points

Jan 11, 2009 5:38 PM in response to iBod

Thank you for the tip!

According to Little Snitch, *Safari is automatically requesting the PREF cookie from Google*. Even if I am not browsing the web at all.

Specifically, Safari sends 2 requests. First to " safebrowsing.clients.google.com" on Port 80. The Google PREF cookie gets set immediately following this request. A couple seconds later, Safari sends a request to " static.cache.l.google.com"

Hmmmm... interesting.
Reply

Google PREF cookie sets itself, even if I am not browsing

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up