[HTTPS-Everywhere] dev.twitter.com
https-everywhere at lists.grepular.com
https-everywhere at lists.grepular.com
Tue Dec 14 08:15:33 PST 2010
Hi,
dev.twitter.com is only accessible via http. The <securecookie/> tag in
Twitter.xml is making it impossible for me to log in and use
dev.twitter.com without disabling the ruleset.
Despite this, the securecookie has enough value that I don't think it's
worth removing. Perhaps the Twitter ruleset could be split into two? One
for normal users, and one for developers, where the developer version is
exactly the same but without the securecookie, and is disabled by default?
Or perhaps somebody here has contacts in Twitter who they can harass to
SSL enable dev.twitter.com?
--
Mike Cardwell https://secure.grepular.com/ https://twitter.com/mickeyc
Professional http://cardwellit.com/ http://linkedin.com/in/mikecardwell
PGP.mit.edu 0018461F/35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: OpenPGP digital signature
URL: <http://lists.eff.org/pipermail/https-everywhere/attachments/20101214/001c349a/attachment.sig>
More information about the HTTPS-everywhere
mailing list