Bug#783579: epiphany-browser: leaks DNS queries when used with Tor
Christoph Anton Mitterer
calestyo at scientia.net
Mon Jun 1 22:34:50 UTC 2015
Control: forwarded -1 https://bugzilla.gnome.org/show_bug.cgi?id=750249
On Mon, 2015-06-01 at 20:55 +0200, Michael Biebl wrote:
> Too bad you see it that way.
Well,... since you've asked so kindly, I've forwarded it upstream,
though I don't expect anything to happen and don't make me responsible
to keep that tracked ;-)
> hyperbole, eh? I'm sure it kills kittens, too.
Well,... ask people like Bradley/Chelsea Manning or others like from
totalitarian countries (CN, AF, CU, SA,... and so on).
I guess if any of those would have relied on anonymity just to find out
that the respective regime was laughing at it when they saw&caught him
by using epiphany... they wouldn't consider it hyperbole.
> Feel free to talk to the debian security team. If they confirm your
> assessment of the severity, I have no objections to raise the severity
> again.
Nah,... I'm really tired of these severity-wars and as e.g. #702976
(which is open for some years now and describes any TLS in epiphany
being effectively useless - but as said I haven't checked whether it's
fixed already) shows, the security team doesn't necessarily handle
things better.
IMHO, having bugs open with higher severities shouldn't be considered a
personal offence / shame / whatever by the maintainers... but rather as
a simple means of reaching people through the proper means (e.g.
apt-listbugs) which may be heavily affected by an issue.
Cheers,
Chris.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5313 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20150602/20a6c0d9/attachment.bin>
More information about the pkg-gnome-maintainers
mailing list