Package: iceweasel Version: 2.0.0.11-1 Severity: normal My intuition says that although I can't be sure you will consider this a security bug, I will leave that decision to the maintainers.
Under the security warnings tab I have checked: "Show a warning dialogue when: I submit informations that's not encrypted". I rely on this dialogue as the best guarantee I can have that something I don't want sucked in to echelon's scope remains secure. This works just fine within any of the tabs. However, if you use the top-righthand side search engine bar and type in something and search with maybe Google or through Dictionary.com 1.) the security warning fails to show; 2.) but even worse, iceweasel sends data unencrypted regardless. I know you're thinking that this isn't a big thing, and maybe, just maybe, in the grand scheme of things it's not. However I'm of the philosophy that a security bug is a security bug, regardless of its order of magnitude. I hope you find this useful. -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.22-3-686 (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages iceweasel depends on: ii debianutils 2.28.2 Miscellaneous utilities specific t ii fontconfig 2.5.0-2 generic font configuration library ii libatk1.0-0 1.20.0-1 The ATK accessibility toolkit ii libc6 2.7-6 GNU C Library: Shared libraries ii libcairo2 1.4.14-1 The Cairo 2D vector graphics libra ii libfontconfig1 2.5.0-2 generic font configuration library ii libfreetype6 2.3.5-1+b1 FreeType 2 font engine, shared lib ii libgcc1 1:4.3-20080116-1 GCC support library ii libglib2.0-0 2.14.5-2 The GLib library of C routines ii libgtk2.0-0 2.12.5-2 The GTK+ graphical user interface ii libhunspell-1.1-0 1.1.9-1 spell checker and morphological an ii libjpeg62 6b-14 The Independent JPEG Group's JPEG ii libnspr4-0d 4.7.0~1.9b1-2 NetScape Portable Runtime Library ii libnss3-0d 3.12.0~1.9b1-2 Transition package for Network Sec ii libpango1.0-0 1.18.4-1 Layout and rendering of internatio ii libpng12-0 1.2.15~beta5-3 PNG library - runtime ii libstdc++6 4.3-20080116-1 The GNU Standard C++ Library v3 ii libx11-6 2:1.0.3-7 X11 client-side library ii libxft2 2.1.12-2 FreeType-based font drawing librar ii libxinerama1 1:1.0.2-1 X11 Xinerama extension library ii libxp6 1:1.0.0.xsf1-1 X Printing Extension (Xprint) clie ii libxrender1 1:0.9.4-1 X Rendering Extension client libra ii libxt6 1:1.0.5-3 X11 toolkit intrinsics library ii procps 1:3.2.7-5 /proc file system utilities ii psmisc 22.6-1 Utilities that use the proc filesy ii zlib1g 1:1.2.3.3.dfsg-11 compression library - runtime iceweasel recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
