[tor-bugs] #5477 [EFF-HTTPS Everywhere]: Surprising DOM origins before HTTPS-E/NoScript redirects have completed
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Wed Apr 18 21:42:05 UTC 2012
#5477: Surprising DOM origins before HTTPS-E/NoScript redirects have completed
------------------------------------------------------+---------------------
Reporter: Drugoy | Owner: ma1
Type: defect | Status: needs_revision
Priority: major | Milestone:
Component: EFF-HTTPS Everywhere | Version:
Keywords: address spoofing, critical vulnerability | Parent:
Points: | Actualpoints:
------------------------------------------------------+---------------------
Comment(by ma1):
I've just attached a script (depending on bash and perl) to be put at the
root of the tree (like noscript-diff.sh), which downloads and unpacks
latest NoScript stable (optionally, pass "-n" to skip) then extracts the
relevant bits from noscriptService.js and ChannelReplacement.js, merges
them into IOUtil.js and makes the relevant changes to ensure compatibility
with HTTPSEverywhere (e.g. removes dependencies on ABE/NS and switches
back to CC/CI convention).
Hope it helps.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5477#comment:20>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list