[tahoe-dev] privacy bug with google chart api

Greg Troxel gdt at ir.bbn.com
Sat Jul 24 20:04:11 UTC 2010


I was very surprised to see requests to

  http://chart.apis.google.com/chart

From the web UI.  It seems that while one can argue that sending the
hash of a serverid is not tha big a deal, it still reveals the IP
address of a tahoe client to google.

By default, I think the web UI should not generate any off-machine
traffic (other than what's necessary to do the tahoe ops requested).


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 194 bytes
Desc: not available
URL: <http://tahoe-lafs.org/pipermail/tahoe-dev/attachments/20100724/e57bb744/attachment.asc>


More information about the tahoe-dev mailing list