[HTTPS-Everywhere] HTTPS Everywhere 4.0development.3 released
Seth David Schoen
schoen at eff.org
Wed Dec 5 17:38:33 PST 2012
https://www.eff.org/files/https-everywhere-4.0development.3.xpi
4.0development.3 (2012-12-3)
* Hacky solution to a very nasty bug in which <securecookie> directives
would cause cookies to be flagged as secure even if they were set from
HTTP origins!
https://trac.torproject.org/projects/tor/ticket/7491
https://mail1.eff.org/pipermail/https-everywhere-rules/2012-November/001397.html
* Ship 245 new rulesets
* Fixes include: Internet Archive, Rackspace
* Disable broken: American Public Media, Verizon, Nieuwsblad.be, MyOpenID
* (Plus fixes and rulesets disabled between 4.0dev2 and 3.0.4)
* Observatory-only translations: Croation, Hebrew
Note: we could really use help testing the securecookie functionality!
If you use a site that you know has a securecookie rule, it would be
great if you could try it out and make sure that it still seems to work
properly and that HTTPS Everywhere still secures the cookie.
--
Seth Schoen <schoen at eff.org>
Senior Staff Technologist https://www.eff.org/
Electronic Frontier Foundation https://www.eff.org/join
454 Shotwell Street, San Francisco, CA 94110 +1 415 436 9333 x107
More information about the HTTPS-everywhere
mailing list