n.onion or http://google.com, for instance.
I agree HS owners can do this with CSP1.1 right now (or the old
referrer tags, though i think that was reverted in Firefox?) but it's
important enough to prevent leaks that I think the client should handle it.
Cheers,
Yan
On 10/6/15 9:57 PM, T
To be clear, Tim is talking about "HTTPS Everywhere" in general, not the
browser extension!
On 4/24/15 8:05 PM, Mike Perry wrote:
Maciej Soltysiak:
http://www.w3.org/DesignIssues/Security-NotTheS.html
The problem with his argument is that the web (and any protocol, really)
needs a way to dem
Oops, sending again from my torproject account.
On 4/9/15 10:24 AM, yan wrote:
Hi Karan, that is great to hear. I've cc'ed Jacob, one of the current
maintainers of HTTPS Everywhere.
-Yan
On 4/8/15 11:40 PM, karan grover wrote:
Hello there!
I am Karan Grover. I am a 2nd year comput
magine the header semantics and processing would be similar to HSTS.
It would only be noted when sent over TLS and have the max-age and
include-subdomains fields.
-yan
yan wrote:
> Hi all,
>
> Some people have requested for the "Darkweb Everywhere" extension [1] to
> be integr
(resending to tor-dev with tp.o email address)
On 07/08/2014 03:30 AM, Yan Zhu wrote:
> On 07/08/2014 02:55 AM, Ben Laurie wrote:
>> On 7 July 2014 19:40, Red wrote:
>>> Despite the fact that the process for producing the signature in
>>> question[2] seemed to wor
(resending to tor-dev with tp.o email address)
On 07/08/2014 03:42 AM, Yan Zhu wrote:
> On 07/08/2014 12:07 AM, Jeroen Massar wrote:
>> On 2014-07-07 20:40, Red wrote:
>> [.. lots of cool work being worked on ..]
>>
>> Hi Zack,
>>
>> Seems you are doing lots
(Trying again with my tp.o email address)
On 06/15/2014 02:05 PM, Yan Zhu wrote:
> It's unclear whether this message went through to tor-dev (can't find it
> in the archives), but I've added this update to
> https://trac.torproject.org/projects/tor/wiki/doc/gsoc.
>
&g
On 03/17/2014 04:41 AM, Gunes Acar wrote:
> Hi Yan,
>
> Glad that you're interested in the project.
> It'd be very nice collaborate with you on this.
>
> Indeed, we've been corresponding with Peter for a related project and
> I mentioned my intention to wor
(resending to tor-dev because the original message didn't go through)
On 03/16/2014 11:52 PM, Yan Zhu wrote:
> On 03/16/2014 07:59 PM, Gunes Acar wrote:
>> Dear All,
>>
>> My name is Gunes Acar, a 2nd year PhD student at Computer Security and
>> Industrial Cryptogr
