[HTTPS-Everywhere] google.com/jsapi
Peter Eckersley
pde at eff.org
Wed Feb 23 12:20:17 PST 2011
I've disabled google.com/jsapi in the Google APIs rule, because it was
breaking some embedded Google Maps:
https://trac.torproject.org/projects/tor/ticket/2335
It would be good to know how much insecurity this fix might create in various
places, and whether there's a way to distinguish between available and
unavaiable uses of https://www.google.com/jsapi.
--
Peter Eckersley pde at eff.org
Senior Staff Technologist Tel +1 415 436 9333 x131
Electronic Frontier Foundation Fax +1 415 436 9993
More information about the HTTPS-everywhere
mailing list