[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #12847 [HTTPS Everywhere: Chrome]: cdn rules for bigcommerce.com

Subject: [tor-bugs] #12847 [HTTPS Everywhere: Chrome]: cdn rules for bigcommerce.com
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 12 Aug 2014 08:20:07 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 12 Aug 2014 04:20:20 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#12847: cdn rules for bigcommerce.com
--------------------------------------+----------------------------------
 Reporter:  cypherpunks               |          Owner:  zyan
     Type:  defect                    |         Status:  new
 Priority:  normal                    |      Milestone:
Component:  HTTPS Everywhere: Chrome  |        Version:  HTTPS-E 4.0dev14
 Keywords:  https everywhere rules    |  Actual Points:
Parent ID:                            |         Points:
--------------------------------------+----------------------------------
 bigcommerce CDN names extend past cdn[12] and include:

   cdn.bigcommerce.com
   cdn1.bigcommerce.com
   cdn2.bigcommerce.com
   cdn3.bigcommerce.com
   cdn4.bigcommerce.com

 and more.  A more appropriate match would be:

 ^cdn\d*\.bigcommerce\.com$

 Leaking of bigcommerce.com CDN URLs can result very detailed tracking of
 items people are looking to buy, purchases etc for any stores run by them.
 This seems to be the case even for stores that use bigcommerce.com but
 that use their own domain name.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12847>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #12846 [Tor Browser]: Tor Browser fails to launch with error "Failed to connect to Tor network" (was: Tor Browser fails launch with error "Failed to connect to Tor network")
Next by Author: [tor-bugs] #12848 [Tor]: Tor wrongly process circuit as connected to n_chan even if create cell delivery not even tried
Previous by thread: Re: [tor-bugs] #12846 [Tor Browser]: Tor Browser fails to launch with error "Failed to connect to Tor network"
Next by thread: [tor-bugs] #12848 [Tor]: Tor wrongly process circuit as connected to n_chan even if create cell delivery not even tried
Index(es):
- Author
- Thread