[tor-bugs] #2098 [Trac]: Tor Trac sets cookies over HTTPS that can be sent over cleartext HTTP
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Thu Nov 18 20:41:25 UTC 2010
#2098: Tor Trac sets cookies over HTTPS that can be sent over cleartext HTTP
----------------------+-----------------------------------------------------
Reporter: rransom | Owner: erinn
Type: defect | Status: assigned
Priority: critical | Milestone:
Component: Trac | Version:
Keywords: | Parent:
----------------------+-----------------------------------------------------
Comment(by rransom):
Replying to [comment:4 dkg]:
> hrm, actually, this doesn't seem to be a problem to me. i think the
cookies for this web site are already marked with the secure flag.
The cookies are still marked as “Send for: Any type of connection” in my
browser.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2098#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list