[tor-commits] [Git][tpo/applications/tor-browser][tor-browser-102.8.0esr-12.5-1] 2 commits: fixup! Firefox preference overrides.

To: tor-commits@xxxxxxxxxxxxxxxxxxxx

Subject: [tor-commits] [Git][tpo/applications/tor-browser][tor-browser-102.8.0esr-12.5-1] 2 commits: fixup! Firefox preference overrides.

From: "Richard Pospesel \(@richard\) via tor-commits" <tor-commits@xxxxxxxxxxxxxxxxxxxx>

Date: Wed, 15 Feb 2023 13:53:38 +0000

Auto-submitted: auto-generated

Cc: "Richard Pospesel \(@richard\)" <git@xxxxxxxxxxxxxxxxxxxxx>

Delivered-to: archiver@xxxxxxxx

Delivery-date: Wed, 15 Feb 2023 08:53:50 -0500

Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=lists.torproject.org; s=2022-eugeni; t=1676469227; bh=NPF6AdJXgdNiNSrkdlcMI8/r44Gg+7ufgiu8l+NT/bc=; h=Date:To:Subject:List-Id:List-Unsubscribe:List-Archive:List-Post: List-Help:List-Subscribe:From:Reply-To:Cc:From; b=c0C1VkY8sm7XwaPF1UxlCIkpaDVOixudwqY7dXYrDvVieKW9pUtauHCuKL3SUHxjV XV0EuiYT5BKa0UJrgCsWaY7epZawpt0FZ0VBPocNYFWSvowcN23be0LfVuyRKootNt 70pRuLul+0DC0mHoF+yvMM/pympAh/5k4BWyPj480Tvwx8XOPnLLZnb7gsuC4o96SL TFuBH3C8n+czbCaATm+cG3Zjre8FLPiPiophKn2DtqNN/zWGntq4vniMiH3810SljE zpaXEHNzSavapaN6U8ddpgF/540WJ+jG20C0ZOQ514d8oP9SM2e02cMo57AQoraGfR oILY+JoDKeXPg==

List-archive: <http://lists.torproject.org/pipermail/tor-commits/>

List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>

List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>

List-post: <mailto:tor-commits@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>

Reply-to: noreply@xxxxxxxxxxxxxx

Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

Title: GitLab

Richard Pospesel pushed to branch tor-browser-102.8.0esr-12.5-1 at The Tor Project / Applications / Tor Browser

Commits:

90df17da

by Richard Pospesel at 2023-02-15T13:37:32+00:00

fixup! Firefox preference overrides.

bug 41627: Enable network.http.referer.hideOnionSource in base-browser

a697a2c0

by Richard Pospesel at 2023-02-15T13:38:06+00:00

fixup! Bug 40562: Added Tor Browser preferences to 000-tor-browser.js

bug 41627: Enable network.http.referer.hideOnionSource in base-browser

Changes:

browser/app/profile/000-tor-browser.js

@@ -38,9 +38,6 @@ pref("dom.securecontext.allowlist_onions", true);
  // Disable HTTPS-Only mode for .onion domains (tor-browser#19850)
  pref("dom.security.https_only_mode.upgrade_onion", false);
 -// tor-browser#22320: Hide referer when comming from a .onion address
 -pref("network.http.referer.hideOnionSource", true);
+-
  // Bug 40423/41137: Disable http/3
  // We should re-enable it as soon as Tor gets UDP support
  pref("network.http.http3.enabled", false);

browser/app/profile/001-base-profile.js

@@ -68,6 +68,12 @@ pref("browser.pagethumbnails.capturing_disabled", true);
  pref("dom.security.https_only_mode", true);
  pref("dom.security.https_only_mode_pbm", true);
 +// tor-browser#22320: Hide referer when comming from a .onion address
 +// We enable this here (rather than in Tor Browser) in case users of other
 +// base-browser derived browsers configure it to use a system Tor daemon
 +// to visit onion services.
 +pref("network.http.referer.hideOnionSource", true);
++
  // Require Safe Negotiation ( https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/27719 )
  // Blocks connections to servers that don't support RFC 5746 [2] as they're potentially vulnerable to a
  // MiTM attack [3]. A server without RFC 5746 can be safe from the attack if it disables renegotiations

_______________________________________________ tor-commits mailing list tor-commits@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits