[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #13379 [Tor Browser]: Sign our MAR files



#13379: Sign our MAR files
-------------------------+-------------------------------------------------
     Reporter:           |      Owner:  mcs
  mikeperry              |     Status:  needs_review
         Type:  defect   |  Milestone:
     Priority:  major    |    Version:
    Component:  Tor      |   Keywords:  tbb-security, TorBrowserTeam201411R
  Browser                |  Parent ID:
   Resolution:           |
Actual Points:           |
       Points:           |
-------------------------+-------------------------------------------------

Comment (by mcs):

 Replying to [comment:25 gk]:
 > Replying to [comment:4 mcs]:
 > > I think they plan to use NSS on Linux, and we may want to use NSS
 everywhere for trust and auditability reasons.
 >
 > On the other hand there are the arguments in
 > https://bugzilla.mozilla.org/show_bug.cgi?id=699700#c25
 > https://bugzilla.mozilla.org/show_bug.cgi?id=699700#c28
 >
 > I guess we'll see how it goes :)

 I missed those comments -- thanks for pointing them out.
 It is kind of amusing that NSS is viewed as less reliable than the OS-
 provided APIs. but the arguments in those comments make sense.  But since
 we are stuck with NSS on Linux, I am still inclined to use it on Windows
 and Mac as well.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13379#comment:27>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs