Confirmed users
76
edits
Privacy/Roadmap/Tor/Planning: Difference between revisions
Jump to navigation
Jump to search
no edit summary
No edit summary |
No edit summary |
||
| Line 8: | Line 8: | ||
## Block access to Components.Interfaces and Components.lookup from non XUL javascript) | ## Block access to Components.Interfaces and Components.lookup from non XUL javascript) | ||
##* Related Bugs [https://trac.torproject.org/projects/tor/ticket/2874 Tor 2874 ], [https://trac.torproject.org/projects/tor/ticket/2873 Tor 2873 ], [https://bugzilla.mozilla.org/show_bug.cgi?id=429070 Bugzilla 429070] | ##* Related Bugs [https://trac.torproject.org/projects/tor/ticket/2874 Tor 2874 ], [https://trac.torproject.org/projects/tor/ticket/2873 Tor 2873 ], [https://bugzilla.mozilla.org/show_bug.cgi?id=429070 Bugzilla 429070] | ||
## Do not cache Basic authentication schemes unless explicitly entered by the user | ## Do not cache Basic authentication schemes unless explicitly entered by the user (or make the auth-headers available to on-modify request. | ||
##* Related Bugs: [https://trac.torproject.org/projects/tor/ticket/3907 Tor 3907]. | |||
##* Need to think on security implications of the Tor patch | |||
# Make the interaction with external helper applications and plugins explicit (click to play) | # Make the interaction with external helper applications and plugins explicit (click to play) | ||
## Click to run plugins | ## Click to run plugins | ||
| Line 14: | Line 16: | ||
## Click to enable WebGL (Related to entropy of the browser itself) | ## Click to enable WebGL (Related to entropy of the browser itself) | ||
#Prevent Cross-domain identifiaction | #Prevent Cross-domain identifiaction | ||
## Dual | ## Dual Keyed Cookies | ||
##* Related Bugs [https://trac.torproject.org/projects/tor/ticket/3246 Tor 3246] , [https://bugzilla.mozilla.org/show_bug.cgi?id=565965 Bugzilla 565965 ]. | |||
## Per domain cache (including web fonts) | ## Per domain cache (including web fonts) | ||
## per domain storage (including dom) | ## per domain storage (including dom) | ||
| Line 34: | Line 37: | ||
Dont know how to classyfy (here for completeness) | Dont know how to classyfy (here for completeness) | ||
* SafeCache key is ony 32 bits ([https://trac.torproject.org/projects/tor/ticket/3666 Tor 3666 ]) | * SafeCache key is ony 32 bits ([https://trac.torproject.org/projects/tor/ticket/3666 Tor 3666 ]) | ||
* Make | * Make content pref service memory-only + clearable ([https://trac.torproject.org/projects/tor/ticket/3229 Tor 3229]) | ||
* | * Prevent TLS state from accumulating in The browser ( [https://trac.torproject.org/projects/tor/ticket/2877]) | ||
Already Solved? | Already Solved? | ||
* Fix SOCKS Timeout ([https://trac.torproject.org/projects/tor/ticket/3247 Tor 3247 ] , [https://bugzilla.mozilla.org/show_bug.cgi?id=280661 Bugzilla 280661]) | * Fix SOCKS Timeout ([https://trac.torproject.org/projects/tor/ticket/3247 Tor 3247 ] , [https://bugzilla.mozilla.org/show_bug.cgi?id=280661 Bugzilla 280661]) | ||