[tor-bugs] #20149 [Applications/Quality Assurance and Testing]: Test that static public key pins are working
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Sep 16 15:25:08 UTC 2016
#20149: Test that static public key pins are working
-------------------------------------------------+-------------------------
Reporter: gk | Owner: cypherpunks
Type: defect | Status: new
Priority: High | Milestone:
Component: Applications/Quality Assurance | Version:
and Testing | Keywords: tbb-
Severity: Major | security
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
-------------------------------------------------+-------------------------
It might be smart to have a test for verifying that the static PKPs in
Firefox are working. It seems to me we can use https://pinning-
test.badssl.com for that.
This seems especially worthwhile as the pinning woes are not over with the
switch to ESR 45.4.0 yet. See:
https://bugzilla.mozilla.org/show_bug.cgi?id=1303127 for more details.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20149>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list