[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #28383 [HTTPS Everywhere]: HTTPS Everywhere's exceptions persist

To: undisclosed-recipients: ;
Subject: [tor-bugs] #28383 [HTTPS Everywhere]: HTTPS Everywhere's exceptions persist
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 08 Nov 2018 12:05:02 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 08 Nov 2018 07:05:11 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#28383: HTTPS Everywhere's exceptions persist
-----------------------+----------------------------------
 Reporter:  janbhez    |          Owner:  legind
     Type:  defect     |         Status:  new
 Priority:  Very High  |      Component:  HTTPS Everywhere
  Version:             |       Severity:  Critical
 Keywords:             |  Actual Points:
Parent ID:             |         Points:
 Reviewer:             |        Sponsor:
-----------------------+----------------------------------
 Using Tor it is recommended to try secure connections first. Unfortunately
 HTTPS Everywhere doesn't work this way by default: https://www.eff.org
 /https-everywhere/faq#why-use-a-whitelist-of-sites-that-support-https-why-
 cant-you-try-to-use-https-for-every-last-site-and-only-fall-back-to-http-
 if-it-isnt-available

 To try secure connections first, the user has to '''Disable all
 unencrypted requests'''. When HTTPS Everywhere is set to '''Disable all
 unencrypted requests''', [[span(style=background-color: #FFC8C8, the
 exceptions (the sites visited via HTTP) persist even after Tor Browser is
 closed.)]]

 When HTTPS Everywhere disabled on a site, '''Reset to Defaults''' is not
 available from the button. To clear the list the user has to open the
 '''about:addons''' page, select '''HTTPS Everywhere's options''' and
 remove sites 1-by-1 from the '''HTTPS Everywhere Sites Disabled''' list.
 There is no "clear all" button.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28383>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #28383 [HTTPS Everywhere]: HTTPS Everywhere's exceptions persist
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #28383 [HTTPS Everywhere]: HTTPS Everywhere's exceptions persist
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #28611 [Core Tor/Tor]: Add `-mstack-protector-guard=global` to CFLAGS instead of `--disable-gcc-hardening` configure option on Windows?
Next by Author: Re: [tor-bugs] #22074 [Applications/Tor Browser]: Review Firefox Developer Docs and Undocumented bugs since FF52esr
Previous by thread: Re: [tor-bugs] #28268 [Core Tor/sbws]: Change default directories when sbws is run from a system manager
Next by thread: Re: [tor-bugs] #28383 [HTTPS Everywhere]: HTTPS Everywhere's exceptions persist
Index(es):
- Author
- Thread