[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #4234 [Tor Browser]: Investigate the Firefox update process

To: undisclosed-recipients:;
Subject: [tor-bugs] #4234 [Tor Browser]: Investigate the Firefox update process
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Fri, 14 Oct 2011 23:16:31 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 14 Oct 2011 19:16:41 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#4234: Investigate the Firefox update process
-------------------------+--------------------------------------------------
 Reporter:  mikeperry    |          Owner:  mikeperry                    
     Type:  task         |         Status:  new                          
 Priority:  major        |      Milestone:  TorBrowserBundle 2.3.x-stable
Component:  Tor Browser  |        Version:                               
 Keywords:               |         Parent:                               
   Points:               |   Actualpoints:                               
-------------------------+--------------------------------------------------
 Sure, it's probably not hardened against version downgrade attacks,
 interruption attacks, no-progress attacks, and maybe not even against CA
 compromises.

 But it's gotta be better than nothing, and maybe it is easily serviceable
 into something that will work for us.

 Users are having a hard time manually working with our TBB packages if
 they want to preserve bookmarks, settings, and history, and are getting
 themselves into trouble by copying pieces of them over each other
 incorrectly while trying to manually upgrade:
 https://lists.torproject.org/pipermail/tor-talk/2011-October/021771.html

 I think any form of process that automates this for them is a step above
 status quo. It's just a matter of finding out if it is significantly less
 time+effort to deploy than Thandy, and what the security tradeoffs are.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4234>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #4234 [Tor Browser]: Investigate the Firefox update process
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #4234 [Tor Browser]: Investigate the Firefox update process
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #4233 [Tor Client]: Exact addition/summation and memory allocation
Next by Author: [tor-bugs] #4235 [Vidalia]: Vidalia doesn't exit when Firefox exits on Mac OSX
Previous by thread: [tor-bugs] #4233 [Tor Client]: Exact addition/summation and memory allocation
Next by thread: Re: [tor-bugs] #4234 [Tor Browser]: Investigate the Firefox update process
Index(es):
- Author
- Thread