[tor-bugs] #4399 [EFF-HTTPS Everywhere]: help.duckduckgo.com shouldnt be forced to https by HTTPS Everywhere
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sat Nov 5 23:31:17 UTC 2011
#4399: help.duckduckgo.com shouldnt be forced to https by HTTPS Everywhere
----------------------------------+-----------------------------------------
Reporter: Getty | Owner: pde
Type: defect | Status: new
Priority: normal | Milestone:
Component: EFF-HTTPS Everywhere | Version:
Keywords: | Parent:
Points: | Actualpoints:
----------------------------------+-----------------------------------------
Comment(by Anna):
I've been trying to learn rulesets and as I understand it, that sort of
problem should just need an exclusion line added in the site rule so I was
going to give it a shot but there's something strange going on here that I
don't really understand. Here's what I found trying to recreate the
problem:
1. When I visit the help page which appears to be http, the browser and
Perspectives both register a certificate for *assistly.com (which looks
like the website support company and the page loads a couple of images
from them, possibly more) and neither the browser nor Perspectives likes
that certificate. If that's the problem the user is encountering, that's
not a problem with https-everywhere.
2. Beyond the security certificate problem, the addon doesn't appear to
attempt to forward me to https and when I type https manually, it manages
to forward me to http without a redirect loop and I can access the content
just fine.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4399#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list