[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Firefox HTTP/S header filtering extension (Was: Re: Threats to anonymity set...)
- To: or-talk@xxxxxxxxxxxxx
- Subject: Firefox HTTP/S header filtering extension (Was: Re: Threats to anonymity set...)
- From: Anothony Georgeo <anogeorgeo@xxxxxxxxx>
- Date: Mon, 22 May 2006 22:40:41 -0700 (PDT)
- Delivered-to: archiver@seul.org
- Delivered-to: or-talk-outgoing@seul.org
- Delivered-to: or-talk@seul.org
- Delivery-date: Tue, 23 May 2006 01:40:46 -0400
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=uzISei/zxBDtidBHuslO4dwTlaYglEw6loFSNhBbvGN3Pf7fRsLTbA6F+ZN5BBaJoToEKgJrw6xf5yTQ7TIRNbAJLiNPsyypr0l42Pok6bgU92eHamuFQ0UMn8DrvY511x+ajgGTOE+SpR9GmAvO2lc75qiU7M53ly2h8B991zk= ;
- In-reply-to: <20060523010408.GA2748@fscked.org>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
--- Mike Perry <mikepery@xxxxxxxxxx> wrote:
>
> The only way to do this is via extensions to the
> browser. That way you do not interfere with CRL/OCSP
> for true cert verification (which sadly seems very
> broken in Firefox currently) and it makes it easy to
> switch components on/off if something doesn't work
> because one of your filters isn't quite right.
> And you get SSL for free, because your extensions
> see the web data AFTER the browser has performed
> (optional)rigorous checks to make sure the cert has
> not been revoked or otherwise compromised/spoofed.
>
> --
> Mike Perry
> Mad Computer Scientist
> fscked.org evil labs
>
That is a good point and as such I have posted a
request for a Firefox extension that can filter HTTP/S
headers:
<http://forums.mozillazine.org/viewtopic.php?t=419360>
I am not holding my breath, but it would be nice if
someone took up the project of making a Firefox
extension.
Any suggestions?
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com