Opened 7 years ago

Closed 7 years ago

#5945 closed defect (duplicate)

Tor Browser shouldn't keep certs on disk

Reported by: cypherpunks Owned by: mikeperry
Priority: Medium Milestone:
Component: TorBrowserButton Version:
Severity: Keywords: tbb-disk-leak
Cc: g.koppen@… Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

And/or it should encrypt them.

First one is the bookmarks which is saved unencrypted and also backed up each day. I think we need a tool in TBB to use them easily as encrypted (password protected). We need an extension or something?

The second is the certificate exceptions. This is a "nice history feature" where most people don't know the websites are saved in a text file (I just found it out too).

You can find your exceptions in these files:

cert_override.txt (Looking at this one is enough)
cert8.db

If possible, TBB should avoid saving permanent exceptions. Otherwise saving the exceptions permanently shouldn't be checked by default. Or any saved exceptions should be cleared at "New Identity" and exiting TBB.


If you can fix these issues, everyone including me can comfortably use TBB in any unencrypted storage.

Child Tickets

Change History (2)

comment:1 Changed 7 years ago by gk

Cc: g.koppen@… added

comment:2 Changed 7 years ago by mikeperry

Keywords: tbb-disk-leak added
Resolution: duplicate
Status: newclosed
Summary: Tor Browser shouldn't keep historyTor Browser shouldn't keep certs on disk

Vague bug is vague. This is a duplicate.

Note: See TracTickets for help on using tickets.