Opened 6 years ago

Last modified 2 months ago

#9121 assigned enhancement

SSL Observatory: tell users when they're being MITMed by a locally-trusted root CA

Reported by: pde Owned by:
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Normal Keywords:
Cc: gk, mikeperry Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

The Observatory knows when people are accepting non-standard certs issued by a local root CA that's deployed via a MITM proxy. It should tell the user this information.

Child Tickets

Change History (6)

comment:1 Changed 6 years ago by dantauerbach

[Annoyingly I misplaced by Trac credentials and there seems to be no way to reset them; this is my new account]

This is a great idea.

comment:2 Changed 6 years ago by browserprivacy

and a very important one!

comment:3 Changed 6 years ago by pde

Owner: changed from dtauerbach to mikeperry
Status: newassigned

Mike, this is the "Eye of Sauron" feature we've been talking about. Maybe we could make a logo inspired by the Packet Forensics icon or the Bluecoat icon or somesuch :)

comment:4 Changed 6 years ago by gk

Cc: gk added

comment:5 Changed 21 months ago by teor

Severity: Normal

Set all open tickets without a severity to "Normal"

comment:6 Changed 2 months ago by gaba

Cc: mikeperry added
Owner: mikeperry deleted
Note: See TracTickets for help on using tickets.