[tor-bugs] #7774 [EFF-HTTPS Everywhere]: HTTPS Everywhere rule for etsy.com appears broken.

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jan 17 16:33:59 UTC 2013


#7774: HTTPS Everywhere rule for etsy.com appears broken.
----------------------------------+-----------------------------------------
 Reporter:  bgshacklett           |          Owner:  pde
     Type:  defect                |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  EFF-HTTPS Everywhere  |        Version:     
 Keywords:  httpse-ruleset-bug    |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
Changes (by pde):

 * cc: MB (added)


Comment:

 Barn, I'm merging your changes into master, and taking the additional step
 of removing the securecookie directive, because that looks quite
 inappropriate for this ruleset (any site that sometimes redirects back to
 HTTP is liable to break if it can't see the cookies that have been flagged
 secure).

 In the 3.0 branch, I'm just going to disable this ruleset altogether until
 we like what we have in 4.0development releases.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7774#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list