Custom Query (173 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:


Results (1 - 100 of 173)

1 2
Ticket Summary Keywords Status Owner Type Priority
#13444 "GhostNode" - support relays that cannot accept incoming connections. anomity, circuit, torrc, security, needs-proposal research-program new project High
#21004 "JavaScript is disabled by default on all non-HTTPS sites" option shouldn't block JS on hidden services tbb-security-slider new tbb-team defect Medium
#29607 2019 Q1: Denial of service on v2 and v3 onion service tor-hs, tor-dos, network-team-roadmap-2019-Q1Q2, security, 041-longterm, 041-deferred-20190530 needs_information pidgin defect Immediate
#29506 <noscript> tag doesn't work when JS is blocked by security slider at Safer tbb-security-slider, ux-team, noscript new tbb-team defect Medium
#11458 A newer signing cert should innoculate us against older ones? needs-proposal tor-client tor-dirauth security certificates new enhancement Medium
#12500 Add an option to upload hidden service descriptors some time after startup tor-hs, easy, traffic-analysis, security, reviewer-was-teor-20190422 new enhancement Medium
#29790 Add build option to store profile in HOME directory tbb-security needs_information tbb-team task Medium
#26685 Add ed25519 id support for the hard-coded fallback and authority lists fallback, tor-ed25519, tor-security new enhancement Medium
#26686 Add ed25519 ids to the fallback whitelist fallback, tor-ed25519, tor-security new enhancement Medium
#17569 Add uBlock Origin to the Tor Browser new-addon, tbb-usability tbb-security, tbb-performance reopened tbb-team defect Medium
#13703 Adding doc/HARDENING hardening, security, opsec, docs, lorax, tor-relay, tor-doc accepted Jaruga enhancement Medium
#13033 Apply mixed content blocking patch? tbb-security new tbb-team task Medium
#24653 Apply security slider improvements made on desktop back to mobile tbb-mobile, tbb-torbutton, tbb-security-slider, tbb-parity new tbb-team enhancement Medium
#7501 Audit PDF.js tbb-security, ff60-esr assigned gk task Medium
#29049 Backport JS Poison Patch tbb-security, TorBrowserTeam201903, GeorgKoppen201903, ff68-esr-will-have new tbb-team enhancement Medium
#27141 Backport TLS1.3 patches tbb-security reopened tbb-team enhancement High
#12950 Backport Windows ASLR forcing patch tbb-security new tbb-team task Medium
#29148 Backport the distrust of Symantec, GeoTrust, RapidSSL, Thawte, Verisign certificates tbb-security new tbb-team defect Medium
#24351 Block Global Active Adversary Cloudflare security, privacy, anonymity, mitm, cloudflare assigned cypherpunks enhancement High
#13747 Block non .onion content on .onion addresses (mixed content blocking) tbb-security, TorBrowserTeam201903 new tbb-team enhancement High
#12089 BridgedDB can be forced to email arbitrary email addresses bridgedb-email, security, ex-sponsor-19 assigned defect High
#23591 Build Tor and Tor Browser with -mmitigate-rop tbb-security, tbb-rbm new tbb-team enhancement Low
#23357 Build with non-Cross-DSO CFI security, defence-in-depth, 033-triage-20180320, 033-removed-20180320 needs_revision enhancement Medium
#22985 Can we simplify and clarify click-to-play of audio/video? tbb-usability, tbb-security, ux-team new tbb-team defect Medium
#13697 Carry entropy across invocations tor-relay rng security new enhancement Medium
#21153 Changing the security level does not reload the page anymore tbb-security-slider, tbb-usability reopened tbb-team defect Medium
#16894 Check all logging output is appropriately escaped / escaped_safe_str_client security, logging, lorax, intro new task Medium
#16417 DEP/ASLR missing on some Tor Browser (Pluggable Transports) binaries on Windows tbb-security, tbb-rbm new tbb-team defect Medium
#12736 DLL hijacking vulnerability in TBB tbb-security, TorBrowserTeam201608 new tbb-team defect High
#23664 Deal with UUID for content sandbox temp folder on Windows and Mac tbb-security, tbb-disk-leak new tbb-team defect High
#25795 Decide which settings to hide in Tor Browser ux-team, tbb-security, tbb-fingerprinting new tbb-team defect Medium
#19850 Disable Plaintext HTTP Clearnet Connections tbb-security, https-everywhere new tbb-team enhancement High
#22981 Don't block audio/video on https sites under Medium Security tbb-usability, tbb-security-slider, ux-team new tbb-team defect Medium
#30040 Double-free bug on huge bandwidth file in some platforms teor-merge, security-low?, bw-auth, double-free, hackerone, bug-bounty, 040-backport, 035-backport, consider-backport-after-0405 merge_ready defect Medium
#12429 Enable Assertions in Tor Browser release builds tbb-security, tbb-firefox-patch new tbb-team enhancement Medium
#27607 Enabling SVG sets security slider back to "Safer" tbb-security-slider, tbb-8.0-issues, tbb-regression, tbb-8.0.1-can new tbb-team defect Medium
#7148 Even better parameter voting protocol needs-proposal, tor-dirauth security new defect High
#21478 Extend HTTP fuzzer so it fuzzes the POST handler functions fuzz tor-relay security new enhancement High
#20146 Firefox bug - (CVE-2016-5284) ESR-45/Tor Browser certificate pinning bypass for addons.mozilla.org and other built-in sites tbb-security, tls needs_review tbb-team defect Medium
#5791 Gather apparmor/selinux/seatbelt profiles for each component of TBB tbb-security, apparmor assigned erinn project Medium
#20957 Get DieHarder working with Tor Browser tbb-security needs_revision tbb-team defect Medium
#26407 Go over security slider governed preferences and update them where needed ff60-esr, tbb-security-slider, TorBrowserTeam201904 new tbb-team task High
#22660 Guard against stack smashing attacks in tor with additional compiler options. tor-hardening, security, 029-backport, review-group-19, 032-unreached, 034-triage-20180328, 034-removed-20180328, 031-unreached-backport, 032-unreached-backport, 033-backport-unreached needs_revision defect Medium
#29583 HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s) tor-hs, scaling, onionbalance, 040-backport, 035-backport, needs-proposal, network-team-roadmap-september, security, 041-longterm, 041-deferred-20190530 new defect High
#18375 HTTPSEverywhere/NoScript becomes disabled and not shown in about:addons after some launches. tbb-security, noscript new tbb-team defect Medium
#23660 Handle exceptions in content sandboxing code for Tor Browser on Windows properly tbb-security new tbb-team defect Medium
#13155 I can use an extend cell to remotely determine whether two relays have a connection open needs-insight needs-design security maybe-wontfix new defect Medium
#29699 INTRO2 replay warn logs with v3 onions tor-hs, security, 041-deferred-20190530 new defect Medium
#21448 Identify what build flags we should be using for security, and use them tbb-security new tbb-team defect Medium
#4152 Implement Bottom Up Randomization (Windows platform) tbb-security assigned tbb-team enhancement Medium
#27413 Implement better communication between NoScript and Tor Browser noscript, tbb-security-slider, tbb-torbutton, TorBrowserTeam201809 new tbb-team enhancement Very High
#14676 Implement update verification via Tor consensus in Tor Browser tbb-security, tbb-update new tbb-team task High
#23658 Improve content sandboxing Tor Browser users on Windows tbb-security new tbb-team project Medium
#25803 Infinite restart loop when daemon crashes systemd, tor-relay, security-low new defect Medium
#5222 Intelligently use capabilities/privileges and drop what we don't need for Mac OS X security tor-client osx needs-insight needs-design assigned enhancement High
#5221 Intelligently use capabilities/privileges and drop what we don't need for Windows security tor-client windows needs-insight needs-design new project High
#22982 Introduce a single "adjust security" toolbar button for security slider and noscript options tbb-usability, tbb-security-slider, ux-team new tbb-team defect Medium
#20361 Investigate CFI means for usage in Tor Browser tbb-security new tbb-team task Medium
#27123 Investigate PING/SETTINGS-related timing side-channels tbb-security new tbb-team defect Medium
#12427 Investigate Virtual Table Verification (VTV) hardening for Tor Browser on Linux and Windows tbb-security new tbb-team task High
#12420 Investigate deploying STACK to check for optimization-unstable code tbb-security, TorBrowserTeam201711, GeorgKoppen201711 new tbb-team task Medium
#12425 Investigate setjmp/longjmp-based exception handling for Tor Browser on Windows tbb-security new tbb-team task Medium
#11511 Investigate why TorLauncher is sometimes not loaded when starting TBB tbb-security assigned tbb-team task Medium
#19983 Is openssl 1.1.0's "secure heap" feature useful for us? tls openssl hardening security tor-relay tor-client new enhancement Medium
#11397 Keep using too-dirty circuits if no new circuit can be built? tor-client needs-design security-relevant circuit-usage not-sure-if-good-idea new enhancement Medium
#13912 Key Security: Zeroing Buffers Is Insufficient (AES-NI leaves keys in SSE registers) security registers aesni memwipe tor-relay new defect Medium
#27143 Look for parts of code that relies on non-trunnel code for binary wire format handling trunnel wireformat heartbleed-safety security parsing accepted rl1987 task Medium
#30126 Make Tor Browser on macOS compatible with Apple's notarization tbb-security, TorBrowserTeam201907 new tbb-team task Very High
#15687 Make Tor Browser work with AppLocker tbb-security, tbb-usability-stoppoint-app new tbb-team defect Medium
#17216 Make Tor Browser's updater work over Hidden Services tor-hs, tbb-security, TorBrowserTeam201901, tbb-update new tbb-team enhancement Medium
#21065 Make it easier to switch between security levels in Tor Browser tbb-torbutton, tbb-security-slider, tbb-usability new tbb-team enhancement Medium
#19162 Make it even harder to become HSDir tor-hs tor-dirauth prop224 security needs-design accepted arma defect Medium
#22963 Make relay integrity digests harder to guess by padding cells with random bytes security, 034-triage-20180328, 034-removed-20180328 new enhancement Medium
#28525 Make tor_addr_is_internal_() aware of RFC 6598 (Carrier Grade NAT/Large Scale NAT) IPv4 Ranges consider-backport-after-040-stable, ipv6, 040-deferred-20190220, 040-backport, 035-backport, 029-backport, security-low merge_ready neel defect Medium
#13730 Make use of MAR files with more than one signature tbb-security, tbb-update new tbb-team enhancement Medium
#22315 Make use of interceptor to protect memory on Windows (spin-off from #12426) tbb-security new tbb-team enhancement Medium
#23113 Manage DNS state better when "All nameservers have failed" dns, security-low, 032-unreached new defect Medium
#25559 Miscellaneous security- and privacy-related prefs for Tor Browser tbb-security, ff60-esr new tbb-team defect Medium
#22584 More RWX memory pages for TBB on some Windows versions tbb-security assigned tom defect Medium
#16926 Multiple OS: Tor Browser leaks domains to system DNS management. tbb-security new tbb-team defect Very High
#22974 NoScript (and Tor Browser) vulnerable to Mozilla Add-On Code Execution tbb-security, noscript new tbb-team defect Medium
#14985 NoScript Clickjacking warning when clicking on embedded content tbb-security, noscript new tbb-team defect High
#10498 Noscript. Path of trust. tbb-security, noscript reopened erinn defect Medium
#30041 OOB access with huge buffers (src/lib/buf/buffers.c) security-low, hackerone, bug-bounty, 029-backport, 035-backport, 040-backport, consider-backport-after-0405 merge_ready defect Medium
#29174 Onion service can do self-reachability tests to detect overwhelmed guards guard, hidden, service, security, 041-longterm new defect Medium
#26687 Output ed25519 IDs in the authority and fallback lists fallback, tor-ed25519, tor-security new enhancement Medium
#22788 PDF.js overloads CPU when opening large PDFs on higher security slider levels tbb-security-slider new tbb-team defect Medium
#27327 Parse and generate CREATE, CREATE_FAST and CREATED cell wire format with trunnel trunnel wireformat heartbleed-safety security parsing new enhancement Medium
#26688 Parse ed25519 IDs in the authority and fallback lists fallback, tor-ed25519, tor-security new enhancement Medium
#16352 Play with Intel's MPX for hardened Tor Browser builds tbb-security, TorBrowserTeam201711 new tbb-team task Very High
#22947 Possible Security Issue (Information Disclosure) with Drupal on blog.torproject.org security needs_revision hiro defect Medium
#15729 Proposal: Hidden Service Revocation tor-hs, tor-spec stalled security revocation new Nathaniel enhancement Medium
#11096 Randomize MAC address before start of Tor tbb-security assigned tbb-team enhancement Medium
#13367 Rate limit gyroscope sampling frequency on FF mobile tbb-security, tbb-fingerprinting, tbb-mobile new tbb-team defect Medium
#27194 Reject protover extra commas in protover needs-consensus-method, rust, security-low, 029-backport, 035-backport, 040-backport, 041-backport, 032-unreached-backport, 035-deferred-20190115, 041-proposed, 033-backport-unreached needs_revision defect Medium
#20055 Remove relays that fail to rotate onion keys from the consensus tor-spec, tor-dirauth, security, key-rotation new enhancement Medium
#19280 Replace or fork NoScript in the Tor Browser tbb-security, noscript reopened tbb-team project Medium
#18645 Replace our http parser with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing new task Medium
#18644 Replace our routerparse.c core with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing new task Medium
#27326 Replace packed_cell_t and supporting code with stuff generated by trunnel trunnel wireformat heartbleed-safety security parsing new enhancement Medium
1 2
Note: See TracQuery for help on using queries.