[HTTPS-Everywhere] facebook secure cookie is not working for facebook apps
Peter Eckersley
pde at eff.org
Mon Nov 15 12:04:37 PST 2010
Stephan,
Thanks for reporting this. It needs to be fixed before our 0.3.0 stable
release. I've opened a Trac bug here:
https://trac.torproject.org/projects/tor/ticket/2193
Hopefully there's a way to prevent Facebook account hijacking without breaking
Apps. If not, perhaps we split the <securecookie> rules into a separate
Facebook Cookies rulefile that people can turn off if they want insecure apps?
On Mon, Nov 15, 2010 at 08:56:36AM +0100, neutrino at schmusemail.de wrote:
> Hi people,
>
> the secure facebook cookie is not working right. I'm not able to use any
> facebook app. I will always be locked out. I just removed the secure cookie
> and anything worked fine.
>
> greetings,
>
> Stephan
>
> --
> Stephan Hulin
> Camerloherstr. 125
> 80689 München
> Tel.: 089/37942587
> Mobil: 0178/3558387
> E-Mail: stephan.hulin at web.de
> _______________________________________________
> HTTPS-everywhere mailing list
> HTTPS-everywhere at mail1.eff.org
> https://mail1.eff.org/mailman/listinfo/https-everywhere
--
Peter Eckersley pde at eff.org
Senior Staff Technologist Tel +1 415 436 9333 x131
Electronic Frontier Foundation Fax +1 415 436 9993
More information about the HTTPS-everywhere
mailing list