[tbb-bugs] #19119 [Applications/Tor Browser]: Repurpose block-malicious-sites-checkbox on TLS error page in Tor Browser
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu May 19 11:26:57 UTC 2016
#19119: Repurpose block-malicious-sites-checkbox on TLS error page in Tor Browser
------------------------------------------+----------------------
Reporter: gk | Owner: tbb-team
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
------------------------------------------+----------------------
Right now the checkbox on the neterror page sends a report about an TLS
error to Mozilla (containing host, port, timestamp, useragent, update
channel, buildid, certificate chain and version of that feature). We might
want to repurpose that checkbox as, first, I see no reason why Mozilla
should gather data related to a Tor Browser user. Second, this message is
highly confusing in our context. Say, an exit node is MITMing a user. Why
should the user report that to Mozilla in order to identify and block
malicious sites? What is Mozilla supposed to do with that information?
We could think about having an own infrastructure for this that might help
detecting bad relays
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19119>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list