Look Banana, I am not pretending. As I have stated before, I am user who knows that if your browser one day starts turning https connections into http connections by itself, something is not right. Is it an attack? Is it a bug? Is it a addon malfunctioning? I don't know. BUT it makes you LESS SECURE and MORE EASY TO SPY ON! So, I did what anyone should do: run a few tests and after that, alerted the community. As for t3g, he raised some good points, you should give him credit for that! If it was a security issue with firefox, it's important that Trisquel gets updates out sooner and faster! Unless we are not worried about security, in that case, forgive me for suggesting you should keep an eye on your https connections to make sure they were acting normal. -.-

Look, I was serious and so was t3g. If you can't do the same, because for you it was not a big deal... good for you, click you red shoes twice and live in kansas. But we are not in kansas anymore, this is a far more dangerous place, and we should keep an eye on everything suspicious...

As for the references you want so badly (given the fact that my opinion and t3g's opinion is of no value to you without a link attached to it):
https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
this link (though it is about esr) shows that some critical security updates have been performed lately. Which means, there is a possibility that 0 day JS attacks might be performed in Trisquel Abrowser (and even non 0 day, because of the delay in updates).

Reply via email to