[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[tor-bugs] #19119 [Applications/Tor Browser]: Repurpose block-malicious-sites-checkbox on TLS error page in Tor Browser
#19119: Repurpose block-malicious-sites-checkbox on TLS error page in Tor Browser
------------------------------------------+----------------------
Reporter: gk | Owner: tbb-team
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
------------------------------------------+----------------------
Right now the checkbox on the neterror page sends a report about an TLS
error to Mozilla (containing host, port, timestamp, useragent, update
channel, buildid, certificate chain and version of that feature). We might
want to repurpose that checkbox as, first, I see no reason why Mozilla
should gather data related to a Tor Browser user. Second, this message is
highly confusing in our context. Say, an exit node is MITMing a user. Why
should the user report that to Mozilla in order to identify and block
malicious sites? What is Mozilla supposed to do with that information?
We could think about having an own infrastructure for this that might help
detecting bad relays
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19119>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs