[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #8958 [EFF-HTTPS Everywhere]: Let <rule> elements specify an altenative hostname that should be accepted in a cert

To: undisclosed-recipients:;
Subject: [tor-bugs] #8958 [EFF-HTTPS Everywhere]: Let <rule> elements specify an altenative hostname that should be accepted in a cert
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 24 May 2013 17:20:02 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 24 May 2013 13:20:14 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8958: Let <rule> elements specify an altenative hostname that should be accepted
in a cert
----------------------------------+-----------------------------------------
 Reporter:  pde                   |          Owner:  pde
     Type:  enhancement           |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:                        |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
 For instance, you might want to accept an akamai cert for some given
 domain that is known to be served by akamai.

 This might require [https://bugzilla.mozilla.org/show_bug.cgi?id=644640 an
 API that doesn't exist yet] or it might be possible via
 [https://mxr.mozilla.org/mozilla-
 central/source/security/manager/ssl/public/nsICertOverrideService.idl the
 browser's whitelisting mechanism] in combination with
 [https://mxr.mozilla.org/mozilla-
 central/source/security/manager/ssl/public/nsIBadCertListener2.idl
 nsIBadCertListener2] or
 [https://bugzilla.mozilla.org/page.cgi?id=splinter.html&bug=700693&attachment=747679
 something equivalent]

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8958>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #8789 [Tor]: "err" target in connection_listener_new() should close socket s
Next by Author: Re: [tor-bugs] #8789 [Tor]: "err" target in connection_listener_new() should close socket s
Previous by thread: Re: [tor-bugs] #8957 [EFF-HTTPS Everywhere]: The SSL Observatory client should listen for and submit invalid certs
Next by thread: Re: [tor-bugs] #4282 [Tor]: Extract common "make private stats dir" code from rephist.c, geoip.c
Index(es):
- Author
- Thread