[tor-bugs] #7336 [EFF-HTTPS Everywhere]: Coursera.org assessment details page issues
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Nov 9 23:13:11 UTC 2012
#7336: Coursera.org assessment details page issues
----------------------------------+-----------------------------------------
Reporter: sofianeh | Owner: pde
Type: defect | Status: new
Priority: normal | Milestone:
Component: EFF-HTTPS Everywhere | Version:
Keywords: | Parent:
Points: | Actualpoints:
----------------------------------+-----------------------------------------
Changes (by pde):
* cc: MB (added)
Comment:
I can't test this directly without a Coursera account, but the fact that a
reload is required strongly suggests that this is a problem with part of
the site not functioning if the cookies are secure. I'm therefore going
to push 3.0.4 with the securecookie directive removed from the Coursera
ruleset (this, by the way, is a dire security flaw that Coursera needs to
fix on their end).
There's a chance that the problem with the ruleset is deeper, though, in
which case 3.0.4 won't fix it.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7336#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list