Custom Query (139 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:


Results (1 - 100 of 139)

1 2
Ticket Summary Keywords Status Owner Type Priority
#2340 GPG signatures do not authenticate filenames tbb-security assigned tbb-team defect Very High
#15470 cannot edit the certificates in Tor browser, tbb-security, CNNIC reopened tbb-team defect Very High
#16352 Play with Intel's MPX for hardened Tor Browser builds tbb-security, TorBrowserTeam201711 new tbb-team task Very High
#16926 Multiple OS: Tor Browser leaks domains to system DNS management. tbb-security new tbb-team defect Very High
#19907 NoScript could not be verified and gets disabled after restart tbb-security new tbb-team defect Very High
#5221 Intelligently use capabilities/privileges and drop what we don't need for Windows security tor-client windows needs-insight needs-design new project High
#5222 Intelligently use capabilities/privileges and drop what we don't need for Mac OS X security tor-client osx needs-insight needs-design new nickm enhancement High
#7148 Even better parameter voting protocol needs-proposal, tor-dirauth security new defect High
#12089 BridgedDB can be forced to email arbitrary email addresses bridgedb-email, security, isis2015Q1Q2, isisExB, isisExC reopened isis defect High
#12427 Investigate Virtual Table Verification (VTV) hardening for Tor Browser on Linux and Windows tbb-security new tbb-team task High
#12736 DLL hijacking vulnerability in TBB tbb-security, TorBrowserTeam201608 new tbb-team defect High
#12968 Specify HEASLR (High Entropy Address Space Layout Randomization) in MinGW-w64 tbb-security, tbb-rbm, ff60-esr, TorBrowserTeam201806, boklm201806 needs_revision tbb-team enhancement High
#13444 "GhostNode" - support relays that cannot accept incoming connections. anomity, circuit, torrc, security, needs-proposal research-program new project High
#13753 Validate is_canonical more thoroughly tor-relay, security, tor-sponsorS-orphan new enhancement High
#13873 hard lock tails/torbrowser security, usability, fuzzing new tbb-team enhancement High
#13893 Torbrowser crashes on start when using MS EMET 5.x tbb-security, tbb-crash, tbb-usability-stoppoint-app, fuck-mingw-gcc, GeorgKoppen201609, TorBrowserTeam201610, ff52-esr reopened gk defect High
#14985 NoScript Clickjacking warning when clicking on embedded content tbb-security new tbb-team defect High
#15421 Relay crash when reloading and resolv.conf is empty tor-relay, resolv.conf, dns, dos-maybe, 034-triage-20180328, 034-included-20180405 034-must security crash accepted nickm defect High
#17901 Tor would bind ControlPort to public ip address if it has no localhost interface tor-control misconfiguration security easy new defect High
#18346 Separate the various roles that directory authorities play, from a configuration POV prop257, dirauth, tor-dos, security, needs-design accepted nickm enhancement High
#19850 Disable Plaintext HTTP Clearnet Connections tbb-security new tbb-team enhancement High
#20149 Test that static public key pins are working tbb-security assigned boklm enhancement High
#21009 sandboxed OSX browser hangs if printing is attempted tbb-security, tbb-sandboxing assigned mcs defect High
#21478 Extend HTTP fuzzer so it fuzzes the POST handler functions fuzz tor-relay security new enhancement High
#22699 Use browser pref for javascript at High Security Level tbb-security, tbb-security-slider, TorBrowserTeam201708 new tbb-team enhancement High
#22971 The XPI signing mechanism needs to use different hash functions. tbb-security, ff60-esr new tbb-team defect High
#23664 Deal with UUID for content sandbox temp folder on Windows and Mac tbb-security, tbb-disk-leak new tbb-team defect High
#24351 Block Global Active Adversary Cloudflare security, privacy, anonymity, mitm, cloudflare reopened tbb-team enhancement High
#4152 Implement Bottom Up Randomization (Windows platform) tbb-security assigned tbb-team enhancement Medium
#4280 build changes for TBB tbb-security assigned tbb-team defect Medium
#5791 Gather apparmor/selinux/seatbelt profiles for each component of TBB tbb-security assigned erinn project Medium
#7193 Tor's sybil protection doesn't consider IPv6 ipv6, intro, tor-dirauth security sybil new enhancement Medium
#7501 Audit PDF.js tbb-security, ff60-esr assigned gk task Medium
#10393 Torbrowser updates are verified through the Tor consensus tbb-security new tbb-team project Medium
#10394 Torbrowser's updater updates HTTPS-everywhere tbb-security, TorBrowserTeam201805 reopened tbb-team task Medium
#10397 Torbrowser's updater integrates additional protections from Thandy's threat model tbb-security new tbb-team project Medium
#10498 Noscript. Path of trust. tbb-security reopened erinn defect Medium
#11096 Randomize MAC address before start of Tor tbb-security assigned tbb-team enhancement Medium
#11397 Keep using too-dirty circuits if no new circuit can be built? tor-client needs-design security-relevant circuit-usage not-sure-if-good-idea new enhancement Medium
#11458 A newer signing cert should innoculate us against older ones? needs-proposal tor-client tor-dirauth security certificates new enhancement Medium
#11511 Investigate why TorLauncher is sometimes not loaded when starting TBB tbb-security assigned tbb-team task Medium
#12418 TBBs with UBSan create lots of errors when running tbb-security, TorBrowserTeam201711 assigned tbb-team defect Medium
#12420 Investigate deploying STACK to check for optimization-unstable code tbb-security, TorBrowserTeam201711, GeorgKoppen201711 new tbb-team task Medium
#12425 Investigate setjmp/longjmp-based exception handling for Tor Browser on Windows tbb-security new tbb-team task Medium
#12429 Enable Assertions in Tor Browser release builds tbb-security, tbb-firefox-patch new tbb-team enhancement Medium
#12500 Add an option to upload hidden service descriptors some time after startup tor-hs, easy, traffic-analysis security new enhancement Medium
#12820 Test+Recommend Tor Browser with MS EMET (Enhanced Mitigation Experience Toolkit) tbb-security, tbb-isec-report, GeorgKoppen201610, TorBrowserTeam201610, ff52-esr assigned gk project Medium
#12950 Backport Windows ASLR forcing patch tbb-security new tbb-team task Medium
#13033 Apply mixed content blocking patch? tbb-security new tbb-team task Medium
#13056 Some stack canaries are still missing on Tor Browser binaries tbb-security needs_information tbb-team defect Medium
#13065 counter downgrade / stale mirror attacks on RecommendedTBBVersions - sign / verify tbb versions file tbb-security new tbb-team defect Medium
#13155 I can use an extend cell to remotely determine whether two relays have a connection open needs-insight needs-design security maybe-wontfix new defect Medium
#13367 Rate limit gyroscope sampling frequency on FF mobile tbb-security, tbb-mobile new tbb-team defect Medium
#13697 Carry entropy across invocations tor-relay rng security new enhancement Medium
#13703 Adding doc/HARDENING hardening, security, opsec, docs, lorax, tor-relay, tor-doc accepted Jaruga enhancement Medium
#13730 Make use of MAR files with more than one signature tbb-security new tbb-team enhancement Medium
#13747 Block non .onion content on .onion addresses tbb-security new tbb-team enhancement Medium
#13912 Key Security: Zeroing Buffers Is Insufficient (AES-NI leaves keys in SSE registers) security registers aesni memwipe tor-relay new defect Medium
#14676 Implement update verification via Tor consensus in Tor Browser tbb-security new tbb-team task Medium
#15238 Improve or replace TorFlow SponsorZ security needs-proposal new enhancement Medium
#15514 Trim the NoScript whitelist tbb-security, noscript assigned tbb-team defect Medium
#15660 [feature suggestion] Need signal to totally switch to the new set of circuits security needs-design tor-client new defect Medium
#15687 Make Tor Browser work with AppLocker tbb-security, tbb-usability-stoppoint-app new tbb-team defect Medium
#15729 Proposal: Hidden Service Revocation tor-hs, tor-spec stalled security revocation new Nathaniel enhancement Medium
#15825 webgl.disable-extensions true about:config setting may allow DoS tbb-security new tbb-team defect Medium
#16417 DEP/ASLR missing on some Tor Browser (Pluggable Transports) binaries on Windows tbb-security, tbb-rbm new tbb-team defect Medium
#16894 Check all logging output is appropriately escaped / escaped_safe_str_client security, logging, lorax, intro new task Medium
#17091 Support our own hotfix mechanism tbb-security new tbb-team defect Medium
#17216 Make Tor Browser's updater work over Hidden Services tor-hs tbb-security new tbb-team enhancement Medium
#17505 UBSan is freezing Tor Browser tbb-security, tbb-crash needs_information tbb-team defect Medium
#17521 Support capsicum(4) on FreeBSD tor-relay, security, sandboxing, BSD, capsicum, 034-triage-20180328, 034-removed-20180328 assigned shawn.webb enhancement Medium
#17569 Add uBlock Origin to the Tor Browser tbb-usability tbb-security, tbb-performance reopened tbb-team defect Medium
#17579 Split tor-gencert into "make cert" and "sign" portions tor-relay key-management cli security new enhancement Medium
#18288 Sign Tor Browser binaries on Windows (not just the setup executable) tbb-security, tbb-usability new erinn enhancement Medium
#18375 HTTPSEverywhere/NoScript becomes disabled and not shown in about:addons after some launches. tbb-security needs_information tbb-team defect Medium
#18643 Replace the most error-prone binary parsers with trunnel tor-dos security tor-relay tor-client technical-debt parsing trunnel new enhancement Medium
#18644 Replace our routerparse.c core with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing assigned task Medium
#18645 Replace our http parser with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing new task Medium
#19162 Make it even harder to become HSDir tor-hs tor-dirauth prop224 security needs-design accepted arma defect Medium
#19280 Replace or fork NoScript in the Tor Browser tbb-security reopened tbb-team project Medium
#19722 Compile tor with selfrando tbb-security assigned tbb-team enhancement Medium
#19983 Is openssl 1.1.0's "secure heap" feature useful for us? openssl hardening security tor-relay tor-client new enhancement Medium
#20055 Remove relays that fail to rotate onion keys from the consensus tor-spec, tor-dirauth, security, key-rotation new enhancement Medium
#20146 Firefox bug - (CVE-2016-5284) ESR-45/Tor Browser certificate pinning bypass for addons.mozilla.org and other built-in sites tbb-security needs_review tbb-team defect Medium
#20212 Tor can be forced to open too many circuits by embedding .onion resources guard-discovery, TorBrowserTeam201803, 034-roadmap-proposed, security, tor-hs new tbb-team enhancement Medium
#20322 SafeSEH support for mingw-w64 for Tor Browser on Windows tbb-security, TorBrowserTeam201711, GeorgKoppen201711 new tbb-team defect Medium
#20326 Tor Browser forgets HTTPS sometimes tbb-security new tbb-team defect Medium
#20361 Investigate CFI means for usage in Tor Browser tbb-security new tbb-team task Medium
#20744 add 'media.source.enabled' only where JS is enabled in security settings tbb-security-slider, tbb-usability-website new tbb-team defect Medium
#20955 Tor Browser memory hardening tbb-security new tbb-team defect Medium
#20957 Get DieHarder working with Tor Browser tbb-security needs_revision tbb-team defect Medium
#20967 Show security level in Torbutton icon or make it more visible in general tbb-torbutton, tbb-security-slider, tbb-usability new tbb-team defect Medium
#20971 Try building Tor Browser with SafeStack tbb-security new tbb-team defect Medium
#21004 "JavaScript is disabled by default on all non-HTTPS sites" option shouldn't block JS on hidden services tbb-security-slider new tbb-team defect Medium
#21030 Test integration of PartitionAlloc/HardenedPartitionAlloc in Tor Browser tbb-security new tbb-team task Medium
#21065 Make it easier to switch between security levels in Tor Browser tbb-torbutton, tbb-security-slider, tbb-usability new tbb-team enhancement Medium
#21153 Changing the security level does not reload the page anymore tbb-security-slider, tbb-usability reopened tbb-team defect Medium
#21448 Identify what build flags we should be using for security, and use them tbb-security new tbb-team defect Medium
#21601 media.webaudio.enabled is not a thing anymore -- we should not govern it with our security slider tbb-torbutton, tbb-security-slider new tbb-team defect Medium
#21908 Tor Browser breaks response headers sometimes tbb-security new tbb-team defect Medium
1 2
Note: See TracQuery for help on using queries.