[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8584 [EFF-HTTPS Everywhere]: Chrome - Apple Support site broken (mixed content)

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #8584 [EFF-HTTPS Everywhere]: Chrome - Apple Support site broken (mixed content)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 18 Apr 2013 23:41:17 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 18 Apr 2013 19:41:24 -0400
In-reply-to: <049.053c2319053c2e35f69b9ab8b7999c47@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.053c2319053c2e35f69b9ab8b7999c47@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8584: Chrome - Apple Support site broken (mixed content)
----------------------------------+-----------------------------------------
 Reporter:  alphawolf             |          Owner:  pde                     
     Type:  defect                |         Status:  new                     
 Priority:  normal                |      Milestone:  HTTPS-E Chrome 2013.4.1x
Component:  EFF-HTTPS Everywhere  |        Version:  HTTPS-E chrome 2013.3.7 
 Keywords:  httpse-ruleset-bug    |         Parent:  #6975                   
   Points:                        |   Actualpoints:                          
----------------------------------+-----------------------------------------
Changes (by pde):

 * cc: MB (added)
  * milestone:  => HTTPS-E Chrome 2013.4.1x


Comment:

 Flagging this ruleset as platform="mixedcontent" would disable HTTPS
 Everywhere protection for Apple.com completely on Chrome, which I think is
 rather drastic.  I'm going to make an Apple (mixedcontent) ruleset, move
 the support.apple.com site in there, and have it flagged to be disabled on
 Chrome (and Firefox 23+).  MB, this might be an appropriate approach to
 take for large/important sites with corners that have mixedcontent
 problems.

 We also need someone at Apple to start working on the problem of
 eradicating mixed content when people land on the site via https.  I'll
 send their security team to this ticket.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8584#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #6313 [Tor]: Many of Tor's complex functions should be refactored
Next by Author: [tor-bugs] #8738 [EFF-HTTPS Everywhere]: Chrome - www.fbi.gov broken (mixed content)
Previous by thread: Re: [tor-bugs] #6313 [Tor]: Many of Tor's complex functions should be refactored
Next by thread: Re: [tor-bugs] #8584 [EFF-HTTPS Everywhere]: Chrome - Apple Support site broken (mixed content)
Index(es):
- Author
- Thread