[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser

Subject: Re: [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 21 Mar 2014 16:52:03 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 21 Mar 2014 12:52:26 -0400
In-reply-to: <047.f4201ef39eff8a7fc41c21c5dddfe18e@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.f4201ef39eff8a7fc41c21c5dddfe18e@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#11253: Turn on TLS 1.1 and 1.2 in TorBrowser
-------------------------------------+-------------------------------------
     Reporter:  YunoTLS              |      Owner:  mikeperry
         Type:  enhancement          |     Status:  new
     Priority:  critical             |  Milestone:
    Component:  Firefox Patch        |    Version:
  Issues                             |   Keywords:  tbb-pref,
   Resolution:                       |  MikePerry201403
Actual Points:                       |  Parent ID:
       Points:                       |
-------------------------------------+-------------------------------------
Changes (by mikeperry):

 * keywords:  TLS, SSL, security, privacy, TorBrowser => tbb-pref,
     MikePerry201403
 * cc: gk (added)


Comment:

 Seems reasonable on face. My only concern is that I would actually like to
 see Mozilla's reasoning for not enabling this yet (untested code? new code
 with higher vulnerability surface?).

 Note also that Mozilla does not usually backport security fixes in prefs
 that default to off, so if there have been vulnerabilities (or even
 generic memory safety hazards) in this new TLS code, fixes for them may
 not have been backported to 24ESR. We'll likely need to scan hg log of the
 NSS code to be sure of this (or at least ask people who work on NSS at
 Mozilla/Google/Redhat).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11253#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser
Next by Author: Re: [tor-bugs] #6718 [Website]: Investigate alternatives for social media
Previous by thread: Re: [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser
Next by thread: Re: [tor-bugs] #11253 [Firefox Patch Issues]: Turn on TLS 1.1 and 1.2 in TorBrowser
Index(es):
- Author
- Thread