[tahoe-dev] [tahoe-lafs] #127: Cap URLs leaked via HTTP Referer header, and to phishing filters (was: Cap URLs leaked via HTTP Referer header)

tahoe-lafs trac at allmydata.org
Thu Oct 29 23:46:47 UTC 2009


#127: Cap URLs leaked via HTTP Referer header, and to phishing filters
-------------------------------+--------------------------------------------
 Reporter:  warner             |           Owner:           
     Type:  defect             |          Status:  new      
 Priority:  major              |       Milestone:  undecided
Component:  code-frontend-web  |         Version:  0.7.0    
 Keywords:  security           |   Launchpad_bug:           
-------------------------------+--------------------------------------------

Comment(by davidsarah):

 We don't appear to have a separate ticket about cap URLs leaking to
 phishing filters. Let's consider this ticket to cover both issues, since
 it is possible that the same solution could work. If we depend on
 JavaScript, I think that the fragment + form technique in comment:21
 solves both.

-- 
Ticket URL: <http://allmydata.org/trac/tahoe/ticket/127#comment:23>
tahoe-lafs <http://allmydata.org>
secure decentralized file storage grid


More information about the tahoe-dev mailing list