[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #17113 [Tor Browser]: check is it possible to check if a specific CA is intalled in the browser

Subject: [tor-bugs] #17113 [Tor Browser]: check is it possible to check if a specific CA is intalled in the browser
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 20 Sep 2015 04:57:17 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 20 Sep 2015 00:57:25 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17113: check is it possible to check if a specific CA is intalled in the browser
-------------------------+--------------------------
 Reporter:  elypter      |          Owner:  tbb-team
     Type:  task         |         Status:  new
 Priority:  normal       |      Milestone:
Component:  Tor Browser  |        Version:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
-------------------------+--------------------------
 is it possible to do active probing on installed certificates without
 showing a certificate warning? maybe hidden in an iframe or popup or using
 webrtc. everything that could load if the certificate is installed and be
 blocked otherwise.
 if possible it could be misused to find out if a user is vulnerable to a
 hiden mitm attack.
 users of goagent, shaddow socks and cooperate content filters could be
 vulnerable.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17113>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #17113 [Tor Browser]: check is it possible to check if a specific CA is intalled in the browser
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #17112 [Censorship analysis]: GoAgent and Shadowsocks got deleted
Next by Author: Re: [tor-bugs] #17113 [Tor Browser]: check is it possible to check if a specific CA is intalled in the browser
Previous by thread: Re: [tor-bugs] #17112 [Censorship analysis]: GoAgent and Shadowsocks got deleted
Next by thread: Re: [tor-bugs] #17113 [Tor Browser]: check is it possible to check if a specific CA is intalled in the browser
Index(es):
- Author
- Thread