[tor-bugs] #32469 [Applications/Tor Browser]: Keep an eye on potential omni.ja signing

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Nov 12 10:25:33 UTC 2019


#32469: Keep an eye on potential omni.ja signing
------------------------------------------+--------------------------------
     Reporter:  gk                        |      Owner:  tbb-team
         Type:  defect                    |     Status:  new
     Priority:  Medium                    |  Milestone:
    Component:  Applications/Tor Browser  |    Version:
     Severity:  Normal                    |   Keywords:  tbb-security,
                                          |  ff78-esr
Actual Points:                            |  Parent ID:
       Points:                            |   Reviewer:
      Sponsor:                            |
------------------------------------------+--------------------------------
 Over in https://bugzilla.mozilla.org/show_bug.cgi?id=1515712 Mozilla
 started to implement possible checks for a signed `omni.ja`. That is
 currently being a pref `corroborator.enabled` but we should keep track of
 this, so we are not surprised once this really hits us.

 I think the idea is to sign our `omni.ja` ourselves once this actually
 lands.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32469>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list