[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7085 [Tor bundles/installation]: Integrate Cryptocat Browser Extension into Tor Browser Bundle



#7085: Integrate Cryptocat Browser Extension into Tor Browser Bundle
--------------------------------------+-------------------------------------
 Reporter:  kaepora                   |          Owner:  erinn                        
     Type:  enhancement               |         Status:  new                          
 Priority:  normal                    |      Milestone:  TorBrowserBundle 2.2.x-stable
Component:  Tor bundles/installation  |        Version:  Tor: unspecified             
 Keywords:                            |         Parent:                               
   Points:                            |   Actualpoints:                               
--------------------------------------+-------------------------------------

Comment(by ioerror):

 Replying to [comment:37 cypherpunks]:
 > IMO, it would be a bit awkward to include cryptocat in the TBB. I
 understand that shitty software like Firefox is already included in the
 TBB, but adding more shitty software is not a good idea.
 >
 > Nadim seems to be a good guy and enthusiastic about cryptocat, but his
 code and architecture is not too good yet. I don't blame him for that
 either, he is young, with no previous coding experience, and without any
 experienced coders/architects showing him how to do cryptocat properly.
 Seems like he got an audit from Mario Heiderich, and they found shitloads
 of issues in his code; that's not very promising. I just hope that the
 audit he got is not only followed by a series of bugfix commits, but also
 by a series of architecture changes that will not allow such issues in the
 future.
 >
 > Don't get me wrong, I would very much fancy a secure chat solution
 inside TBB, but I think that cryptocat as it is right now, is not the
 solution. Nadim seems to have lots of funding; I wish he would use some of
 that to get an experienced software architect to define the future
 direction of cryptocat and show him a couple of things.
 >
 > All in all, Nadim has been doing a great job for a person whose *first*
 serious software project is a secure in-browser chat framework, but he is
 not superman and his code stinks of inexperience. I just hope that the
 project itself was a bit more low-key and not used by thousands of
 activists every day.

 I have been emailed about this comment and I wanted to state for the
 record that I didn't write it. I generally agree with some of the points
 but that doesn't mean that I'm the only person on the planet who thinks
 it.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7085#comment:41>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs