[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #5154 [EFF-HTTPS Everywhere]: non-Torbutton SSL Observatory + hotel network => lots of cert warnings



#5154: non-Torbutton SSL Observatory + hotel network => lots of cert warnings
----------------------------------+-----------------------------------------
 Reporter:  pde                   |          Owner:  pde
     Type:  defect                |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:                        |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
Description changed by pde:

Old description:

> If the user enables the SSL Obseravtory in non-Torbutton mode, and they
> land on a network that causes cert warnings, the browser will launch a
> stream of certificate warnings.
>
> What we should do instead is save up the certs for submission once the
> network stops attacking us.
>
> This can be achieved with
> [https://developer.mozilla.org/en/nsIBadCertListener2
> nsIBadCertListener2].

New description:

 If the user enables the SSL Obseravtory in non-Torbutton mode, and they
 land on a network that MITMs TKS, the browser will render a stream of
 certificate warnings caused by Observatory submissions.

 What we should do instead is save up the certs for submission once the
 network stops attacking us.

 This can be achieved with
 [https://developer.mozilla.org/en/nsIBadCertListener2
 nsIBadCertListener2].

--

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5154#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs