[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45

Subject: Re: [tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 20 Jan 2016 21:23:00 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 20 Jan 2016 16:23:14 -0500
In-reply-to: <042.71160c40af2eac2e45f1c8587921c3e2@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <042.71160c40af2eac2e45f1c8587921c3e2@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18042: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
------------------------------------+--------------------------
 Reporter:  gk                      |          Owner:  tbb-team
     Type:  task                    |         Status:  new
 Priority:  High                    |      Milestone:
Component:  Tor Browser             |        Version:
 Severity:  Major                   |     Resolution:
 Keywords:  tbb-security, ff45-esr  |  Actual Points:
Parent ID:                          |         Points:
  Sponsor:                          |
------------------------------------+--------------------------

Comment (by bugzilla):

 Seems that Mozilla is planning to do it as you want - in their 45.0esr.
 (status-firefox-esr45:  affected)
 But comment https://bugzilla.mozilla.org/show_bug.cgi?id=942515#c56
 greatly demonstrates that situation with SHA-1 is far from seamless
 resolution.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18042#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16990 [Tor Browser]: Circuit visualizer stops working after some time
Next by Author: Re: [tor-bugs] #17965 [Tor Browser]: Isolate HPKP pinning to url bar domain
Previous by thread: Re: [tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
Next by thread: Re: [tor-bugs] #9189 [Tor Browser]: Tor Browser forgets zoom level
Index(es):
- Author
- Thread