[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #26318 [Applications/Tor Browser]: TBA - Consider different installation methods

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #26318 [Applications/Tor Browser]: TBA - Consider different installation methods
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 20 Jun 2018 13:42:28 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 20 Jun 2018 09:42:40 -0400
In-reply-to: <046.da3c18e506b0488327d8b9c3da3371ed@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.da3c18e506b0488327d8b9c3da3371ed@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#26318: TBA - Consider different installation methods
--------------------------------------+--------------------------
 Reporter:  sysrqb                    |          Owner:  tbb-team
     Type:  enhancement               |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:  tbb-mobile                |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by igt0):

 I have been thinking about this problem for some time and I propose two
 things:

 1. Add in the onboarding a link to the wiki about how to validate the APK.

 2. Add a button in the TBA menu called "Validate App". When the user
 clicks on it, TBA fetchs a json from the onion service with information
 about what is the current version and signin certificate and checks if the
 current certificate is the same of the installed app. We also should tech
 the user that this approach doesn't work if the app is tampered.

 sysrqb, GeKo: any thoughts?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/26318#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #26318 [Applications/Tor Browser]: TBA - Consider different installation methods
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #26310 [Core Tor/Tor]: Refusing to apply consensus diff because the base consensus doesn't match the digest as found in the consensus diff header.
Next by Author: Re: [tor-bugs] #26320 [Applications/Tor Browser]: Orfox 52.8.0esr-7.5-1 Crash
Previous by thread: Re: [tor-bugs] #26318 [Applications/Tor Browser]: TBA - Consider different installation methods
Next by thread: Re: [tor-bugs] #26318 [Applications/Tor Browser]: TBA - Consider different installation methods
Index(es):
- Author
- Thread