[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #7135 [HTTPS Everywhere: Chrome]: https everywhere breaks bahncard.bahn.de

To: undisclosed-recipients:;
Subject: [tor-bugs] #7135 [HTTPS Everywhere: Chrome]: https everywhere breaks bahncard.bahn.de
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Wed, 17 Oct 2012 17:38:54 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 17 Oct 2012 13:39:02 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#7135: https everywhere breaks bahncard.bahn.de
--------------------------------------+-------------------------------------
 Reporter:  hanno                     |          Owner:  pde
     Type:  defect                    |         Status:  new
 Priority:  normal                    |      Milestone:     
Component:  HTTPS Everywhere: Chrome  |        Version:     
 Keywords:                            |         Parent:     
   Points:                            |   Actualpoints:     
--------------------------------------+-------------------------------------
 In the newsletters from "Deutsche Bahn" (german railway company), they use
 links like this:
 http://bahncard.bahn.de/cgi-bin9/DM/t/mBwo0vAbY04S0BOtj0Fy

 These are only forwarding URLs.

 However, https everywhere changes them to https. But this domain does not
 have a valid ssl certificate configured.

 It seems https everywhere redirects all subdomains *.bahn.de to https.
 This works for www.bahn.de and also reiseauskunft.bahn.de (the two most
 common ones probably), but it seems not for others. It should restrict the
 forwarding rules to specific subdomains that definitely work with https.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7135>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #7135 [EFF-HTTPS Everywhere]: https everywhere breaks bahncard.bahn.de
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #7135 [EFF-HTTPS Everywhere]: https everywhere breaks bahncard.bahn.de
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #7134 [Tor]: Add statistics on time spent on crypto operations
Next by Author: [tor-bugs] #7136 [Tor]: Situations necesitating a text only web browser with Tor [e.g., "lynx-cur"]
Previous by thread: Re: [tor-bugs] #7134 [Tor]: Add statistics on time spent on crypto operations
Next by thread: Re: [tor-bugs] #7135 [EFF-HTTPS Everywhere]: https everywhere breaks bahncard.bahn.de
Index(es):
- Author
- Thread