[tor-bugs] #7575 [EFF-HTTPS Everywhere]: WebAssign site produces litany of "Security Warning" alerts
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Nov 29 22:20:14 UTC 2012
#7575: WebAssign site produces litany of "Security Warning" alerts
----------------------------------+-----------------------------------------
Reporter: cypherpunks | Owner: pde
Type: defect | Status: new
Priority: normal | Milestone:
Component: EFF-HTTPS Everywhere | Version:
Keywords: | Parent:
Points: | Actualpoints:
----------------------------------+-----------------------------------------
Comment(by cypherpunks):
To add a little, the warning is happening due to a giant form on
webassign.net's site that uses an absolute http URL to POST to that then
gets converted to https by HTTPS Everywhere. This conversion must take
place after the Firefox logic that detects posting to a non-https URL from
an https one.
Is there a way for HTTPS Everywhere to rewrite the URL before the Firefox
posting logic sees it in order to rid ourselves of this error?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7575#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list