[HTTPS-Everywhere] SSL observatory works when disabled

[Mike Cardwell]

On 16/08/11 18:08, Peter Eckersley wrote:

> That's a serious bug! I presume by "disabled in prefs" you mean in the UI?

That is what I mean yes.

> Can you send a copy of the about:config settings you have that contain the
> word "observatory"?

The only one that is different to the default is:

extensions.https_everywhere._observatory.use_custom_proxy: true

The rest are default values and are:

extensions.https_everywhere._observatory.enabled: false
extensions.https_everywhere._observatory.testing: false
extensions.https_everywhere._observatory.use_tor_proxy: true
extensions.https_everywhere._observatory.submit_during_tor: true
extensions.https_everywhere._observatory.submit_during_nontor: true
extensions.https_everywhere._observatory.cache_submitted: true
extensions.https_everywhere._observatory.popup_shown: false
extensions.https_everywhere._observatory.proxy_host: ""
extensions.https_everywhere._observatory.proxy_port: 0
extensions.https_everywhere._observatory.proxy_type: "direct"
extensions.https_everywhere._observatory.alt_roots: false
extensions.https_everywhere._observatory.priv_dns: false
extensions.https_everywhere._observatory.send_asn: true

"Use the Observatory?" is unchecked in the preferences UI. I think I
might have enabled it at one point to test it, but it's currently
unchecked. I have tried checking/unchecking and it makes no difference.
I can see the requests going out using the Firefox TamperData plugin.

-- 
Mike Cardwell https://grepular.com/  https://twitter.com/mickeyc
Professional  http://cardwellit.com/ http://linkedin.com/in/mikecardwell
PGP.mit.edu   0018461F/35BC AF1D 3AA2 1F84 3DC3 B0CF 70A5 F512 0018 461F

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: <http://lists.eff.org/pipermail/https-everywhere/attachments/20110816/56e9f7e4/attachment.sig>