[HTTPS-Everywhere] dev.twitter.com
Chris Palmer
chris at eff.org
Tue Dec 14 09:50:41 PST 2010
The relevant parties have been harassed.
(Those responsible for harassing the relevant parties have been harassed.)
On 12/14/2010 08:15 AM, https-everywhere at lists.grepular.com wrote:
> dev.twitter.com is only accessible via http. The <securecookie/> tag in
> Twitter.xml is making it impossible for me to log in and use
> dev.twitter.com without disabling the ruleset.
>
> Despite this, the securecookie has enough value that I don't think it's
> worth removing. Perhaps the Twitter ruleset could be split into two? One
> for normal users, and one for developers, where the developer version is
> exactly the same but without the securecookie, and is disabled by default?
>
> Or perhaps somebody here has contacts in Twitter who they can harass to
> SSL enable dev.twitter.com?
(A möose byt my sister ønce...)
--
Chris Palmer
Technology Director, Electronic Frontier Foundation
More information about the HTTPS-everywhere
mailing list