[tor-bugs] #21537 [Applications/Tor Browser]: Consider ignoring secure cookies for .onion addresses
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Oct 3 06:36:55 UTC 2019
#21537: Consider ignoring secure cookies for .onion addresses
-------------------------------------------------+-------------------------
Reporter: micah | Owner: gk
Type: enhancement | Status: closed
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution: fixed
Keywords: tbb-usability, | Actual Points:
TorBrowserTeam201804R, GeorgKoppen201804, |
tbb-backported |
Parent ID: | Points:
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by gk):
Replying to [comment:25 sysrqb]:
> Replying to [comment:24 sysrqb]:
> > But this patch could be modified so the piece where URLs with a
`.onion` TLD are marked as secure is uplifted and the piece where we rip
out telemetry stuff is not uplifted.
> Okay, removing the keyword. We should uplift the `.onion is secure`
piece of this.
Actually I think it's worth uplifting everything which means doing the
telemetry part right instead of just removing it. I took the shortcut back
then because we didn't and don't use telemetry anyway but there is no
reason why this should not get fixed up while uplifting. To the contrary.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21537#comment:26>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list