#20146: Tor browser certificate pinning bypass for addons.mozilla.org and other
pinned sites
--------------------------------------+--------------------------
 Reporter:  mancha                    |          Owner:  tbb-team
     Type:  defect                    |         Status:  new
 Priority:  Immediate                 |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Critical                  |     Resolution:
 Keywords:                            |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------
Changes (by gk):

 * cc: gk (added)


Comment:

 Replying to [comment:3 arma]:
 > This logic makes me like 'option 2' even more.

 Yes, if we can afford it release-wise that sounds like a good way forward
 to deal with the extensions issue. I am not sure what we want to do with
 the hotfix updates, though. I guess studying that a bit more (what got
 fixed in the past etc.) could help making a decision.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20146#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Reply via email to