[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #3882 [EFF-HTTPS Everywhere]: HTTPS Everywhere 1.0 causing crashes on multiple sites



#3882: HTTPS Everywhere 1.0 causing crashes on multiple sites
-------------------------------------+--------------------------------------
    Reporter:  jorgev                |       Owner:  pde   
        Type:  defect                |      Status:  closed
    Priority:  critical              |   Milestone:        
   Component:  EFF-HTTPS Everywhere  |     Version:        
  Resolution:  fixed                 |    Keywords:        
      Parent:                        |      Points:        
Actualpoints:                        |  
-------------------------------------+--------------------------------------
Changes (by pde):

  * status:  reopened => closed
  * resolution:  => fixed


Comment:

 Replying to [comment:7 vic]:
 > Why do you need to disable the nsIContentPolicy::shouldLoad / forceURI
 path?
 >

 Because the Firefox patch isn't in Firefox 4-7, and we'd prefer not to
 crash those browsers?

 >
 > Please restore the nsIContentPolicy::shouldLoad / forceURI path in
 stable version.

 Despite Giorgio's concerns, we haven't yet found any cases in which
 disabling nsIContentyPolicy caused an insecure HTTP load.  If we find any,
 we'll try to turn it back on just for those cases.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3882#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs