[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Towards a Tor-safe Mozilla Thunderbird

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Towards a Tor-safe Mozilla Thunderbird
From: tagnaq <tagnaq@xxxxxxxxx>
Date: Thu, 15 Sep 2011 23:21:59 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 15 Sep 2011 17:21:27 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:mime-version:to:subject:content-type :content-transfer-encoding; bh=6u2wkSez4DExLY+tfQRLJjlQpdPs/AJdDemhkuC1DZM=; b=oPEgHPqEqaILPHl5QiTsfOxSVIvebeBklJT79DYO/7hmGouIEm1j5BGdNAbeADzJ85 UqJe1IAxqIXbjdI4p43Xoa4Tyz4E5CHLIE5wLuTnw8gtEQzK0CIUowJp96BS5vcuWc4Z SBoEgdyr+/hYhpP1oVe3DQIyaYItUmFR8iBUU=
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi,

I uploaded a document [1] to the Tor wiki. It is about application-level
privacy leaks in Thunderbird including proposed solutions. It would be
great to get some review/feedback - especially on the proposed solutions.

btw: I won't be able to reply in a timely manner in the next few days.

[1] http://bit.ly/qDZm7C
SHA1:6c84e6a2147ff53d01f96d876ba23a47a5329c92

Since the document was written, proposal 171 (stream separation) was
implemented/released in 0.2.3.3 [2] and new Thunderbird version were
released (but didn't address the problems yet).

To mitigate a certain problem (bugzilla: 684035) described in section
4.1.4.I recommend every Thunderbird user to set the following
preferences to true:
network.protocol-handler.warn-external.http
network.protocol-handler.warn-external.https

Related bugzilla tickets:
- - https://bugzilla.mozilla.org/show_bug.cgi?id=664633
- - https://bugzilla.mozilla.org/show_bug.cgi?id=669238
- - https://bugzilla.mozilla.org/show_bug.cgi?id=684035


[2] https://trac.torproject.org/projects/tor/ticket/1865
https://lists.torproject.org/pipermail/tor-talk/2011-September/021229.html
-----BEGIN PGP SIGNATURE-----

iF4EAREKAAYFAk5ybHYACgkQyM26BSNOM7aN6wD8DjqiHBldD1BXR1Y7qD+jpcGU
LCsjCo7/+QY/aYfVczMA/3UGO6cmYobkKYQ1ZYfhaIYr5h5wzp8I9RFu+dHHYpAN
=E8+o
-----END PGP SIGNATURE-----
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: [tor-talk] PhD studentship at Cambridge for study of privacy/anonymous communications
Next by Author: Re: [tor-talk] Dutch CA issues fake *.torproject.org cert (among many others)
Previous by thread: [tor-talk] [info] Bodies hanging from bridge in Mexico are warning to social media users
Next by thread: [tor-talk] (no subject)
Index(es):
- Author
- Thread