[tor-bugs] #11112 [EFF-HTTPS Everywhere]: "imgs.xkcd.com uses an invalid security certificate"
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Mar 2 18:09:26 UTC 2014
#11112: "imgs.xkcd.com uses an invalid security certificate"
----------------------------------+----------------------------------
Reporter: cypherpunks | Owner: pde
Type: defect | Status: new
Priority: normal | Milestone: HTTPS-E 4.0dev15
Component: EFF-HTTPS Everywhere | Version: HTTPS-E 4.0dev14
Keywords: | Actual Points:
Parent ID: | Points:
----------------------------------+----------------------------------
The HTTP Everywhere 4.0development.15 ruleset for xkcd rewrites this URL:
http://imgs.xkcd.com/comics/regular_expressions.png
However, in regards to the cert for imgs.xkcd.com, Firefox 27.0.1 on Mac
10.9.2 reports, "The certificate is only valid for the following names:
*.voxcdn.com , voxcdn.com".
So, attempting to load the image in Firefox results in a broken image, as
Firefox refuses to load the image, with the error
"ssl_error_bad_cert_domain".
What happens: broken image
What should happen: image should be displayed properly
This bug is particularly ironic because the page at https://www.eff.org
/https-everywhere has this link:
[a href="https://www.xkcd.com/208"]clever technology[/a]
which triggers the broken image on that xkcd page.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11112>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list