[tor-bugs] #3768 [EFF-HTTPS Everywhere]: pagead2.googlesyndication.com shouldn't be sent to https
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Fri Aug 19 18:57:42 UTC 2011
#3768: pagead2.googlesyndication.com shouldn't be sent to https
----------------------------------+-----------------------------------------
Reporter: gene_wood | Owner: pde
Type: defect | Status: new
Priority: normal | Milestone:
Component: EFF-HTTPS Everywhere | Version:
Keywords: | Parent:
Points: | Actualpoints:
----------------------------------+-----------------------------------------
Currently HTTPS Everywhere redirects this URL :
http://pagead2.googlesyndication.com/pagead/show_ads.js
to this URL :
https://pagead2.googlesyndication.com/pagead/show_ads.js
due to this rule :
https://gitweb.torproject.org/https-
everywhere.git/blob/HEAD:/src/chrome/content/rules/GoogleServices.xml#l21
https://gitweb.torproject.org/https-
everywhere.git/blob/HEAD:/src/chrome/content/rules/GoogleServices.xml#l74
Unfortunately the https page that it redirects to is served up by google
with a certificate for "*.googleadservices.com , googleadservices.com"
This results in a certificate check failure and no ads being shown.
Please remove the rule that matches this URL since google isn't providing
a valid cert.
To reproduce this problem :
1. Running Firefox 6 with HTTPS Everywhere 1.0.1 installed browse to
"http://pagead2.googlesyndication.com/paged/show_ads.js"
2. You'll get back a "Untrusted Connection" error page from Firefox (see
attachment of what it looks like)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3768>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list