Opened 6 years ago

Last modified 15 months ago

#9121 assigned enhancement

SSL Observatory: tell users when they're being MITMed by a locally-trusted root CA

Reported by: pde Owned by: mikeperry
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Normal Keywords:
Cc: gk Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

The Observatory knows when people are accepting non-standard certs issued by a local root CA that's deployed via a MITM proxy. It should tell the user this information.

Child Tickets

Change History (5)

comment:1 Changed 6 years ago by dantauerbach

[Annoyingly I misplaced by Trac credentials and there seems to be no way to reset them; this is my new account]

This is a great idea.

comment:2 Changed 5 years ago by browserprivacy

and a very important one!

comment:3 Changed 5 years ago by pde

Owner: changed from dtauerbach to mikeperry
Status: newassigned

Mike, this is the "Eye of Sauron" feature we've been talking about. Maybe we could make a logo inspired by the Packet Forensics icon or the Bluecoat icon or somesuch :)

comment:4 Changed 5 years ago by gk

Cc: gk added

comment:5 Changed 15 months ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

Note: See TracTickets for help on using tickets.