[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #7781 [EFF-HTTPS Everywhere]: problem with Gmail and https-everywhere chrome extension

To: undisclosed-recipients:;
Subject: [tor-bugs] #7781 [EFF-HTTPS Everywhere]: problem with Gmail and https-everywhere chrome extension
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 22 Dec 2012 10:29:46 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 22 Dec 2012 05:29:57 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#7781: problem with Gmail and https-everywhere chrome extension
----------------------------------+-----------------------------------------
 Reporter:  kargig                |          Owner:  pde            
     Type:  defect                |         Status:  new            
 Priority:  normal                |      Milestone:                 
Component:  EFF-HTTPS Everywhere  |        Version:  HTTPS-E 4.0dev3
 Keywords:                        |         Parent:                 
   Points:                        |   Actualpoints:                 
----------------------------------+-----------------------------------------
 Using the dev version of https-everywhere google chrome extension upon
 entering Gmail, a cookie called GMAIL_STAT_xxxx is stored. This cookie
 grows larger and larger while doing stuff inside Gmail. Upon the cookie
 reaching a certain size, Gmail becomes unavailable and replies with error
 400.
 Sometimes there are 2 versions stored of this cookie, one that has the
 secure flag on and one that doesn't.
 The issue goes away by removing those GMAIL_STAT_xxxx cookies, but after
 some activity inside Gmail it re-appears.

 That cookie doesn't get stored using an xpi for Firefox built from the
 same git repo version (HEAD). So it's a google-chrome specific issue.

 The problem also goes away when one removes the 'mail' entry from the
 securecookie regexp inside GoogleServices.xml

 Google Chrome version: 23.0.1271.97

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7781>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #7622 [Flashproxy]: Add -4 and -6 options to flashproxy-client and flashproxy-reg-http
Next by Author: Re: [tor-bugs] #7200 [Tor]: Implement restored semantics of TLS ClientHello
Previous by thread: Re: [tor-bugs] #5699 [Analysis]: Make Tor able to handle VoIP applications people already want to use
Next by thread: [tor-bugs] #7782 [- Select a component]: where can I get some private obfs2 bridges?
Index(es):
- Author
- Thread