[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7774 [EFF-HTTPS Everywhere]: HTTPS Everywhere rule for etsy.com appears broken.

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #7774 [EFF-HTTPS Everywhere]: HTTPS Everywhere rule for etsy.com appears broken.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 17 Jan 2013 16:33:59 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 Jan 2013 11:34:11 -0500
In-reply-to: <051.e1fe6cd293d5fc5f5195bca998cb293c@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.e1fe6cd293d5fc5f5195bca998cb293c@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#7774: HTTPS Everywhere rule for etsy.com appears broken.
----------------------------------+-----------------------------------------
 Reporter:  bgshacklett           |          Owner:  pde
     Type:  defect                |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:  httpse-ruleset-bug    |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
Changes (by pde):

 * cc: MB (added)


Comment:

 Barn, I'm merging your changes into master, and taking the additional step
 of removing the securecookie directive, because that looks quite
 inappropriate for this ruleset (any site that sometimes redirects back to
 HTTP is liable to break if it can't see the cookies that have been flagged
 secure).

 In the 3.0 branch, I'm just going to disable this ruleset altogether until
 we like what we have in 4.0development releases.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7774#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #7033 [Company]: derive plan to mitigate risks found during forensic analysis of tbb on Win7/OSX
Next by Author: [tor-bugs] #7980 [Tor]: Correct typo in dir-spec related to network-status-version
Previous by thread: Re: [tor-bugs] #7774 [EFF-HTTPS Everywhere]: HTTPS Everywhere rule for etsy.com appears broken.
Next by thread: Re: [tor-bugs] #7774 [EFF-HTTPS Everywhere]: HTTPS Everywhere rule for etsy.com appears broken.
Index(es):
- Author
- Thread