[tor-bugs] #20861 [Applications/TorBirdy]: X-Mozilla-Keys (offline messages) in forwarded message (as an attachment)
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Dec 2 17:50:47 UTC 2016
#20861: X-Mozilla-Keys (offline messages) in forwarded message (as an attachment)
---------------------------------------+----------------------------
Reporter: cypherpunks | Owner: sukhbir
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/TorBirdy | Version:
Severity: Normal | Keywords: TorBirdy 0.2.1
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
---------------------------------------+----------------------------
When Thunderbird (TorBirdy 0.2.1) downloads and saves an email locally it
at adds X-Mozilla-Keys, if the user forwards those email as an attachment
the X-Mozilla-Keys are still in the email (resp *.eml-file) (what makes
perfectly sense for signed emails)
excerpt from the received email's source code:
{{{
--------------
Content-Type: message/rfc822;
name="test.eml"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
filename="test.eml"
X-Mozilla-Keys:
To:
}}}
And thereby it leaks the users email agent.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20861>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list