Opened 10 years ago
Last modified 2 years ago
#664 assigned enhancement (None)
Torbutton should not present custom certs if tor is enabled
| Reported by: | mikeperry | Owned by: | tbb-team |
|---|---|---|---|
| Priority: | High | Milestone: | |
| Component: | Applications/Tor Browser | Version: | |
| Severity: | Normal | Keywords: | |
| Cc: | mikeperry, arma | Actual Points: | |
| Parent ID: | #2482 | Points: | |
| Reviewer: | Sponsor: |
Description (last modified by )
Torbutton should hide random client and server certs the user has if they check an option.
Ideally, we should provide 'certificate jars', but that may not be immediately possible with
the current XPCOM apis.
I'm guessing the option will be optional and likely off by default, unless we can do the jar
thing.
[Automatically added by flyspray2trac: Operating System: All]
Child Tickets
Change History (3)
comment:1 Changed 8 years ago by
| Description: | modified (diff) |
|---|
comment:2 Changed 8 years ago by
| Parent ID: | → #2482 |
|---|
comment:3 Changed 2 years ago by
| Cc: | mikeperry,arma → mikeperry, arma |
|---|---|
| Component: | Applications/Torbutton → Applications/Tor Browser |
| Owner: | set to tbb-team |
| Severity: | → Normal |
| Status: | new → assigned |
| Version: | 1.1 |
Could you explain your enhancement in detail?
Note: See
TracTickets for help on using
tickets.
See also bug #1505, and the JonDoFox extension's implementation (http://www.jondos.org/en/node/1754). JonDos doesn't isolate all certs, but they claim that it is important to prevent (silent?) installation of new ones (!).