[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #3368 [Website]: Add *.torproject.org to Chrome STS list

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #3368 [Website]: Add *.torproject.org to Chrome STS list
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Thu, 09 Jun 2011 14:57:18 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 09 Jun 2011 10:57:28 -0400
In-reply-to: <051.24e6bc95d8b79b69cef1db04f634a5c7@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bugs reporting list for trac <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.24e6bc95d8b79b69cef1db04f634a5c7@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#3368: Add *.torproject.org to Chrome STS list
----------------------------+-----------------------------------------------
    Reporter:  cypherpunks  |       Owner:          
        Type:  enhancement  |      Status:  reopened
    Priority:  normal       |   Milestone:          
   Component:  Website      |     Version:          
  Resolution:               |    Keywords:          
      Parent:               |      Points:          
Actualpoints:               |  
----------------------------+-----------------------------------------------
Changes (by phobos):

  * status:  closed => reopened
  * resolution:  wontfix =>


Comment:

 Having read the draft standard on ietf's site, and now looking through the
 chromium sts list.  This appears to be nothing more than the equivalent of
 our firefox extension https everywhere for chromium.  For the vast
 majority of users, great, they can get to our https-enabled sites by
 default.

 If the user has never visited *.torproject.org, doing so over https isn't
 going to stop an ssl mitm.  Correct?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3368#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #3368 [- Select a component]: Add *.torproject.org to Chrome STS list
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #3370 [Tor Client]: Race condition - file system access in Tor
Next by Author: Re: [tor-bugs] #3368 [Website]: Add *.torproject.org to Chrome STS list
Previous by thread: Re: [tor-bugs] #3368 [Website]: Add *.torproject.org to Chrome STS list
Next by thread: Re: [tor-bugs] #3368 [Website]: Add *.torproject.org to Chrome STS list
Index(es):
- Author
- Thread