[tor-bugs] #11127 [BridgeDB]: reCaptcha verification is hardcoded to use plaintext HTTP
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Mar 4 03:33:55 UTC 2014
#11127: reCaptcha verification is hardcoded to use plaintext HTTP
----------------------------+----------------------
Reporter: isis | Owner: isis
Type: defect | Status: new
Priority: major | Milestone:
Component: BridgeDB | Version:
Keywords: bridgedb-https | Actual Points:
Parent ID: | Points:
----------------------------+----------------------
The reCaptcha API which BridgeDB uses hardcodes the CAPTCHA verification
submission to occur over plaintext HTTP. See
[https://recaptcha.googlecode.com/svn/trunk/recaptcha-
plugins/python/recaptcha/client/captcha.py their source code] and grep for
'verify'.
Their API is also blocking. BridgeDB would probably go faster if it were
asynchronous.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11127>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list