[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18944 [Applications/Tor Browser]: Remove block-malicious-sites-checkbox on TLS error page

Subject: Re: [tor-bugs] #18944 [Applications/Tor Browser]: Remove block-malicious-sites-checkbox on TLS error page
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 02 May 2016 11:09:13 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 02 May 2016 07:09:22 -0400
In-reply-to: <042.297767711af9b51ccca91bc575bfd460@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <042.297767711af9b51ccca91bc575bfd460@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18944: Remove block-malicious-sites-checkbox on TLS error page
--------------------------------------------+--------------------------
 Reporter:  gk                              |          Owner:  tbb-team
     Type:  defect                          |         Status:  new
 Priority:  Medium                          |      Milestone:
Component:  Applications/Tor Browser        |        Version:
 Severity:  Normal                          |     Resolution:
 Keywords:  ff45-esr, TorBrowserTeam201605  |  Actual Points:
Parent ID:                                  |         Points:
 Reviewer:                                  |        Sponsor:
--------------------------------------------+--------------------------

Comment (by gk):

 The first thing is We are not in the business of identifying and blocking
 malicious sites. We actually disabled that feature. Second, I see no
 reason why Mozilla should gather data related to a Tor Browser user.
 Third, this message is highly confusing in our context. Say, an exit node
 is MITMing a user. Why should the user report that to Mozilla in order to
 identify and block malicious sites? What is Mozilla supposed to do with
 that information?

 We can think about ways to deal with MITM attacks in Tor Browser but that
 would be another ticket and would need at least a repurposed checkbox.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18944#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #18944 [Applications/Tor Browser]: Remove block-malicious-sites-checkbox on TLS error page
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #18545 [Applications/Tor Browser]: Review Firefox Developer Docs and Undocumented bugs since FF38esr
Next by Author: Re: [tor-bugs] #18940 [- Select a component]: Danger : verifying digital certificate and fake response !
Previous by thread: Re: [tor-bugs] #18944 [Applications/Tor Browser]: Remove block-malicious-sites-checkbox on TLS error page
Next by thread: Re: [tor-bugs] #18944 [Applications/Tor Browser]: Remove block-malicious-sites-checkbox on TLS error page
Index(es):
- Author
- Thread