[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #5566 [HTTPS Everywhere: Chrome]: One magic flag to hardening Chrome CRX and prevent CSP abuse - {"manifest_version": 2}
#5566: One magic flag to hardening Chrome CRX and prevent CSP abuse -
{"manifest_version": 2}
--------------------------------------+-------------------------------------
Reporter: jaedo | Owner: pde
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: HTTPS Everywhere: Chrome | Version:
Keywords: | Parent:
Points: | Actualpoints:
--------------------------------------+-------------------------------------
Comment(by pde):
We could accept a patch that implements manifest version 2 along with a
good Content Security Policy!
Note that there are probably a lot of ways for a website to detect that
the client has HTTPS Everywhere installed, and I doubt it will ever be
possible to prevent that.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5566#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs