Firefox Extension HTTPS Everywhere Does What It Sounds Like

climenole writes "HTTPS Everywhere is a Firefox extension produced as a collaboration between The Tor Project and the Electronic Frontier Foundation. It encrypts your communications with a number of major websites. Many sites on the web offer some limited support for encryption over HTTPS, but make it difficult to use. For instance, they may default to unencrypted HTTP, or fill encrypted pages with links that go back to the unencrypted site. The HTTPS Everywhere extension fixes these problems by rewriting all requests to these sites to HTTPS."

noscript?

[Cmdr-Absurd]

noscript has a means of doing this on a per-site basis. Wildcards are accepted.

Re:noscript?

[Jojoba86]

I did not know that. However at least this user-friendly extension from the EFF will hopefully be a better solution for less technically inclined people, and be able to raise awareness of the difference between using http and https.

Re:noscript?

[himitsu]

Thank you sir! I've been looking for another extension to force the Firefox searchbar to user Google SSL for 30 minutes now.

Why install another extension when I already have good old NoScript.

Re:noscript?

Can you tell me why a no-script extension would have reason to enforce SSL on websites? Talk about bloat... this has nothing at all to do with the original intentions of the addon.

Re:noscript?

[clone53421]

Why use an extension when you can just change the Firefox search plugin?

Shut down Firefox, browse to %programfiles%\Mozilla Firefox\searchplugins\google.xml and make all the <Url template=""> addresses contain https instead of http. Restart Firefox.

Re:noscript?

[himitsu]

Learning new things all the time, thanks!

I do like the NoScript wildcard https enforcement though, its got a slightly different use.

Re:noscript?

[Dishevel]

Would someone tell me how this happened? We were the fucking vanguard of websites in this country. Slashdot was the website to comment on. Then the other guy came out with https. Were we scared? Hell, no. Because we hit back with a little thing called httpss. That's got double t's and double s's. For security. But you know what happened next? Shut up, I'm telling you what happened—the bastards went to four s's. Now we're standing around with our cocks in our hands, selling tdouble t's and double s's. Securitye or no, suddenly we're the chumps. Well, fuck it. We're going to five s's. Sure, we could go to four s's next, like the competition. That seems like the logical thing to do. After all, three worked out pretty well, and four is the next number after three. So let's play it safe. Let's make a thicker algorithm and call it the slashdot htppssss. Why innovate when we can follow? Oh, I know why: Because we're a business, that's why! You think it's crazy? It is crazy. But I don't give a shit. From now on, we're the ones who have the edge in the multi-s's game. Are they the best a man can get? Fuck, no. Slashdot is the best a man can get. What part of this don't you understand? If two s's is good, and three s's is better, obviously five s's would make us the best fucking website that ever existed. Comprende? We didn't claw our way to the top of the website game by clinging to the two-s's industry standard. We got here by taking chances. Well, five s's is the biggest chance of all. Here's the report from Engineering. Someone put it in the bathroom: I want to wipe my ass with it. They don't tell me what to invent—I tell them. And I'm telling them to stick two more s's in there. I don't care how. Make the s's so thin they're invisible. Put some after the /. I don't care if they have to cram the fifth s in perpendicular to the other four, just do it! You're taking the "safety" part of "safety website" too literally, grandma. Cut the strings and soar. Let's hit it. Let's roll. This is our chance to make website history. Let's dream big. All you have to do is say that five s's can happen, and it will happen. If you aren't on board, then fuck you. And if you're on the board, then fuck you and your father. Hey, if I'm the only one who'll take risks, I'm sure as hell happy to hog all the glory when the five-s website becomes the shaving tool for the U.S. of "this is how we shave now" A. People said we couldn't go to three. It'll cost a fortune to manufacture, they said. Well, we did it. Now some egghead in a lab is screaming "Five's crazy?" Well, perhaps he'd be more comfortable in the labs at Norelco, working on fucking electrics. Rotary s's, my white ass! Maybe I'm wrong. Maybe we should just ride in facebook's wake and make social networking sites. Ha! Not on your fucking life! The day I shadow a penny-ante outfit like Facebook is the day I leave the website game for good, and that won't happen until the day I die! The market? Listen, we make the market. All we have to do is put her out there with a little jingle. It's as easy as, "Hey, commenting with anything less than five s's is like scraping your beard off with a dull hatchet." Or "You'll be so smooth, I could snort lines off of your chin." Try "Your neck is going to be so friggin' soft, someone's gonna walk up and tie a goddamn Cub Scout kerchief under it." I know what you're thinking now: What'll people say? Mew mew mew. Oh, no, what will people say?! Grow the fuck up. When you're on top, people talk. That's the price you pay for being on top. Which Slashdot is, always has been, and forever shall be, Amen, five s's, sweet Jesus in heaven. Stop. I just had a stroke of genius. Are you ready? Open your mouth, baby birds, cause Mama's about to drop you one sweet, fat nightcrawler. Here she comes: Put another PGP key on that fucker, too. That's right. Five s's, two security algoritims, and make the second one PGP. You heard me—the second bit of security is PGP. It's a whole new way to think about commenting. Don't question it. Don't say a word. Just key the music, and call the chorus girls, because we're on the edge—the website's edge—and I feel like dancing.

Re:noscript?

[Beardo+the+Bearded]

I got the Onion reference. This would have been an Epic FP.

Re:noscript?

[Peach+Rings]

No, noscript can't do this. Noscript just changes http to https. If you want more complex rewriting like

http://en.wikipedia.org/wiki/Main_Page
to
https://secure.wikimedia.org/wikipedia/en/wiki/Main_Page
then you need something like this extension.

Of course, it's useless in the case of wikipedia, because no images at all are available from the secure server. The extension will let images through unencrypted, so it's very easy to tell what page you're looking at. You can just go to the image pages and scroll down to "what links here," and the page that appears in every list is the page that the person is looking at.

You can block unsecure content with noscript but articles are unusable without the helpful diagrams and pictures.

Re:noscript?

And then Google redirects you back to an unencrypted http connection.... if only there was a script to fix that.

Re:noscript?

[clone53421]

Except that it doesn’t?

Re:noscript?

Wow! Someone has much too much time on his hands.

Re:noscript?

[Dishevel]

The replace function in most text editors make it a 3 minute job. I could have done better but I did not want to put lots of effort into it.

NoScript has done this for years

[Coopjust]

http://noscript.net/features#options

Preferences for enhancing HTTPS behavior and cookies:
Force the following sites to use secure (HTTPS) connections - a space-separated list of site patterns

Then again, if you don't trust the NoSript author after the controversy, this might be a good alternative. I figure NoScript is under more scrutiny than any other extension and the author learned his lesson.

Re:NoScript has done this for years

[hitmark]

either the database could not take the /. attention, or the page is dead.

Default to HTTP?

[SpazmodeusG]

Geez. What kind of poorly written site would do something like quietly defaulting to unencrypted HTTP on a HTTPS request.

https://www.slashdot.org/

Re:Default to HTTP?

[nedlohs]

HTTPS is hearder on the server.

slashdot has exactly zero stuff that needs encrypting. Yes, including slashdot login/password details.

So that makes perfect sense.

Re:Default to HTTP?

So I guess you'd be ok with just telling me your login and password, rather than making me go through the effort to sniff them, right?

I eagerly await your response.

Re:Default to HTTP?

[suso]

Maybe its because they want more control over what clients are doing? Using SSL consumes more CPU you know, on both the client and the server side.

As a sysadmin for a web hosting provider, I see lots of these types of extensions that are written with no consideration of the server side of the equation. The people writing them seem to think that the server side has infinite CPU, RAM and bandwidth, which is just not true.

Re:Default to HTTP?

If you're on a network that my traffic to and from Slashdot passes through, knock yourself out. It will give you the ability to post as me, but not much more.

Oh, wait, you are already posting as me. Bastard.

Re:Default to HTTP?

[icebraining]

If anyone wants to protect his/her login data, why don't they use OpenID and a secure provider?

Re:Default to HTTP?

[Burz]

O RLY?

Try using Slashdot (or most other sites) all day in an airport or at a cafe with your laptop, then see how long it takes for someone to start F-ing around with the Javascript that your browser is receiving in the clear. And then there are those lovely residential ISPs that screw with your web pages for not very different reasons.

The EFF wants to see the web prepared for an assault that looks likely to intensify.

BTW, there is such a thing as being too cheap.

Re:Default to HTTP?

[e2d2]

Poorly written because it defaults to HTTP? I disagree. Programmers like myself avoid using HTTP for delivering things that simply don't need to be encrypted. Why? Because it's more resource intensive on both the server and the client. We use the optimal solution - HTTP.

Re:Default to HTTP?

[nedlohs]

Surely that still results in a cookie that can be snooped over the HTTP stream and used as a login token?

Re:Default to HTTP?

So I guess you'd be ok with just telling me your login and password, rather than making me go through the effort to sniff them, right?

I eagerly await your response.

User: Anonymous Coward
Password: hunter2

Re:Default to HTTP?

[nedlohs]

Why would I do that. You do realise that security isn't black and white.

There are levels of security.

My online banking details are something I wouldn't send over HTTP, and yet I'm perfectly willing to send my slashdot details over HTTP.

It's possible to get my online banking details, they are not perfectly secure. It is just more difficult than if I logged into my bank via HTTP.

It's possible to get my slashdot details, they are not perfecctly secure. It is just more difficult than if I posted them in a slashfot post.

In this case the cost/benefit is on the part of slashdot. They bear the cost of paying for the extra resources to do HTTPS on their traffic. There's a benefit to them as well, if login credentials were exposed it would reduce the popularity of the site since a lot of the content generating users would go away if anyone could use their account at anytime.

And simple cookie login tokens over HTTP is enough security so that they don't go away. There's no need to pay for more.

Do you also think slashdot should send every user an RSA SecureID hardware token?

Re:Default to HTTP?

[Tacvek]

Well, sure, that, a login token in the URL, or passed around by means of hidden fields in a form, are the only concievable ways of having a persistant login.

The other alternative is to wait till somebody performs any actions that require authentication and at the last possible second (already pushed the submit button on the form), and then ask them for the openID, go through the authentication process, and committing the action upon successful verification. But people generally want to be able to perform multiple actions without having to authenticate for each action.

But there are ways to make a login token harder to use even if sniffed, such as tying it to the IP address.

That would then require the sniffer to either (a) be behind the same NAT (if any) as you or (b) have full intercept and injection capability, as well as being on the routing path between you and the site. (That allows to to forge packets that claim to be from your IP, and prevent the replies from reaching you. Mere sniffing only requires that you get a copy of the packets, which is far simpler, since not everything does full switching. (Early cable modems (and perhaps even current ones) could be modified to run in promiscuous mode, delivering all packets on that cable line, which would normally include at least your whole neighborhood, and perhaps more.)

Thus (b) basically requires a rouge ISP, which is not particularly likely. However (a) is still a legitimate concern. Other techniques are also possible to make using the login token difficult, such as also tying it to your exact User-agent string, and your "accepts" header line, which most browsers don't make it easy to manually configure, and perhaps a few other things. That would make it enough of a pain to use your sniffed login tokens that only somebody particularly determined will be able to use them. For many uses that is probably good enough. For those where it is not, HTTPS is usually already the norm.

Re:Default to HTTP?

[profplump]

It's only the optimal solution for you. If the client choose HTTPS and you change back to HTTP then *you're* deciding that their content shouldn't be encrypted, even if they think it should be. You can choose not to offer HTTPS if you think the burden is too high on your end, but you're lying to yourself by calling it the "optimal" solution for both sides.

You might not care that your web browsing is encrypted. But I might be on a monitored network and don't want my overlords to know that I downloaded a cheesecake recipe because it would ruin their surprise birthday party. That or any of 1,000 other scenarios might lead me to desire encrypted communications even for information that you don't consider worthy of encryption.

Frankly I think *all* communications should be routinely encrypted just to discourage eavesdropping. Plus if encryption became the status quo your browser could offer sane warning messages about unencrypted transfers, rather than putting up no warning for unencrypted transfers and then freaking out when you have an encrypted but unauthenticated transfer.

Re:Default to HTTP?

[e2d2]

You're shit out of luck because _we_ pay the bills here and _we_ build the websites so yes it's not being out of line to think that we should control how it's delivered. Take your entitlement to someplace that honors that currency. I'm a hacker too, but this whole "I want everything in the world my way" shit is getting old. Live with it, or don't. But it's not an "issue" in any way as far as I'm concerned. Don't like it? Go elsewhere.

Re:Default to HTTP?

[Beardo+the+Bearded]

hunter2

Re:Default to HTTP?

A good alternative is to do SSH tunneling. I used to do this with my laptop while I was between classes at my university.
I just connected to my home PC and set up a SOCKS5 proxy and tunneled http and dns traffic through it. Sure you still have unencrypted traffic going from your SSH server to the web, but it'll stop anyone sniffing the public wifi you're on.

Re:Default to HTTP?

Unless you work for my or slashdots isp I don't think you can. If you are working for any of them and you do this I expect that you will be looking for a new job pretty soon.

Also, unless you exchange your keys on another line then the one you communicate on and you don't use signed certificates the man in the middle can just feed you a fake https connection and still sniff the traffic.

If you do not trust your isp you should change immediatly because it will take at least a decade until all you traffic (Not only http-connections.) are encrypted enough for you to be able to have a hostile man in the middle.

Re:Default to HTTP?

[Tolkien]

https://www.google.com/

Re:Default to HTTP?

[Tolkien]

Heh. I posted that before I had signed out of google.ca, it appears to work. The sign-in process for iGoogle (at least with google.ca) redirects to https and back to http once you're logged in though. Meh.

Re:Default to HTTP?

So I guess you'd be ok with just telling me your login and password, rather than making me go through the effort to sniff them, right?

I eagerly await your response.

Username: AC
Password: hunter2

Re:Default to HTTP?

[Bryansix]

You missread the parent. They are not saying they are entitled to anything from anyone. They are however entitled to ONE thing. Know what that one thing it? Its an opinion! And do you know how consumers vote with their opinion? They take their hard earned cash somewhere else. Slashdot is carrying on a morally bankrupt business decision by redirecting HTTPS to HTTP without any notification. A BETTER solution which would not cost them any money and only about five minutes of configuration would be to ask if that person was a subscriber and if they were not to then WARN them that they were about to send all their information over an unencrypted pipe. Once again, this solution would cost Slashdot NOTHING except maybe .5 man hours.

Re:Default to HTTP?

[slashqwerty]

slashdot has exactly zero stuff that needs encrypting. Yes, including slashdot login/password details.

Homeland Security Secretary Janet Napolitano wants to monitor everything you read so she can ascertain if you are the sort of person who is likely to go on a shooting spree.

"The First Amendment protects radical opinions, but we need the legal tools to do things like monitor the recruitment of terrorists via the Internet," Napolitano told a gathering of the American Constitution Society for Law and Policy.

Underscoring her comments are a number of recent terror attacks over the past year where legal U.S. residents such as Times Square bombing suspect Faisal Shahzad and accused Fort Hood, Texas, shooter Maj. Nidal Hasan, are believed to have been inspired by the Internet postings of violent Islamic extremists.

Re:Default to HTTP?

You're shit out of luck because _we_ pay the bills here and _we_ build the websites so yes it's not being out of line to think that we should control how it's delivered. Take your entitlement to someplace that honors that currency. I'm a hacker too, but this whole "I want everything in the world my way" shit is getting old. Live with it, or don't. But it's not an "issue" in any way as far as I'm concerned. Don't like it? Go elsewhere.

Damn, you old MySpace admins are getting bitter!

Just because Facebook ate your lunch and nobody talks to you any more ain't no reason to be grumpy.

Re:Default to HTTP?

[Rich0]

Yup. I think this is a major weakness of internet protocols - the inability to at least partially secure a connection without completely securing it.

Sure, true security involves encryption, authentication, etc. However, ssl doesn't let you do one without the other. Ditto for WPA/etc. I can't secure a connection to a WiFi router without some kind of shared secret.

We really need to view security as a continuum and not as an on/off thing. Sure, encryption without authentication is less secure than encryption with authentication. However, even with the risk of MITM encryption is still more secure than no encryption at all. Encryption is a lot easier to do than authentication, so there should be at least an option to employ one without the other.

I think we'd have a lot more security if internet protocols were designed with this in mind. There is no reason to have cleartext traffic over the internet at large. Sure, sometimes authentication is too much of a pain to be worth it, but encryption ought to be pretty cheap these days.

Link?

For those of you without google ... http://www.eff.org/https-everywhere

Re:Link?

Shouldn't that be https://www.eff.org/https-everywhere ?

Re:Link?

[Meneth]

EFF says:

In an ideal world, every web request could be defaulted to HTTPS

I say:
In an ideal world, you wouldn't NEED to use HTTPS.

Re:Link?

[phyrexianshaw.ca]

I second you there!

Re:Link?

No because really no one cares about encrypting their traffic to a site with no content that matters at all

Re:Link?

[Myopic]

How the hell did this article get published without a link to the software described? Seriously? How? How could that possibly happen?

Re:Link?

[Sir_Lewk]

There are realistic ideal worlds, and there are unrealistic ideal worlds.

Much needed extension

[Jojoba86]

Oh wow, this is awesome. I've used greasemonkey scripts with facebook but it's pretty ugly, seems to load the http page before the https page. This sounds perfect. Here's the link https://www.eff.org/files/https-everywhere-latest.xpi which is missing from TFS.

Re:Much needed extension

[Fnkmaster]

Hmm... if you are trying to encrypt your communications with *Facebook* something tells me you are worrying about the wrong people getting their hands on your personal data.

Re:Much needed extension

Or maybe he doesn't want the firewall at work reading his personal communication.

Re:Much needed extension

[denmarkw00t]

I'm sorry, but while OP may be concerned about Facebook, it's naive of you to think that s/he has separate passwords for other sites vs. FB - remember, we're talking about someone on the internet. I even use the same password in some places, but regardless it's either SSL login or no login or, if its somewhere I really want to login (/. for example), I use a username/password combo that I don't use anywhere else. Security's role shouldn't be diminished just because of the site you're going to - if there is a login box, HTTPS should be offered, because some people, like their passwords, refuse to change.

Re:Much needed extension

[tepples]

if there is a login box, HTTPS should be offered

The certificate company and the hosting company charge annual fees for HTTPS. These are a cost of doing business if you're deriving a significant chunk of revenue from the site. But how should the operator of every little blog and forum afford the annual fees for HTTPS?

Re:Much needed extension

[denmarkw00t]

While a very valid point, there is nothing to stop someone from self-signing a cert. Of course, having something signed by a CA carries a lot more weight, but if I trust the site and the owner/author makes it clear as to why they self-signed and provided a means of ensuring some amount of trust, I would feel much better. And like I said, at least use a different username/combo for those kinds of sites than something you use in more secure situations.

Re:Much needed extension

[Tim+C]

It also stops MITM attacks of course - while it's unlikely that anyone would intercept my latest status update or message and change it in flight, with HTTP it's possible.

(Not that I care, but that's one reason why the OP might.)

Re:Much needed extension

[BarryJacobsen]

While a very valid point, there is nothing to stop someone from self-signing a cert. Of course, having something signed by a CA carries a lot more weight, but if I trust the site and the owner/author makes it clear as to why they self-signed and provided a means of ensuring some amount of trust, I would feel much better. And like I said, at least use a different username/combo for those kinds of sites than something you use in more secure situations.

This was a great suggestion until the major browsers added the "super scary warnings". I've had to walk so many people through exactly what to do in order to get past those. Especially the type of people that say I typed in my password ROSEBUD just like I always do and I got this message. Those errors are too scary for the average user, and require too many clicks.

Re:Much needed extension

> there is nothing to stop someone from self-signing a cert

The fact that, when users visit your site, their browser will flip out, raise a "security warning" and lie to them saying your certificate is "invalid".

Re:Much needed extension

[Beardo+the+Bearded]

If you've got a corporate machine and it's set up correctly, they'll be able to read anything you do no matter what kind of setup you install on their box.

They know everything I do here, everything that gets installed, when certain types of files go onto the hard drive, every time I read /., etc. There's a guide book that says "employees should have no expectation of privacy" and they mean it.

They're paying me, they sort of deserve to know what they're getting for their money.

Re:Much needed extension

[Deanalator]

If you really can't part with 30 dollars a year or whatever, then self sign. Users will still get the security warning (as well they should), but it is infinitely more secure than exposing all your users data.

Re:Much needed extension

[tepples]

If you really can't part with 30 dollars a year or whatever

Then why do hosting providers even offer plans with PHP and MySQL and no SSL? If you use PHP and MySQL, you are probably running some sort of server-side web site revision system (such as a blog, forum, or wiki), and you probably need some way to authenticate users who upload new text. Plaintext passwords over HTTP aren't secure.

Re:Much needed extension

If you want actual security, you should be using digest auth anyway. Then you don't have to worry about login cookies being in the clear that someone might sniff. Of course, you still need a secure way to tell the server what your password is. (Client side certs are a way around that, but they require the user to have a copy of their private key at any computer they intend to login from, which is too much of a burden for most uses.)

Re:Much needed extension

[franl]

The fact that, when users visit your site, their browser will flip out, raise a "security warning" and lie to them saying your certificate is "invalid".

It depends on what "invalid" means. A lot of people consider an SSL/TLS cert to be valid if the signature chain contains only trusted CAs. If joeblow.com uses a self-signed cert (and joeblow.com is not itself a trusted CA), that cert is useless for validating the identity of the server. Yes, you get encryption, but that's only half of what SSL/TLS is for.

Saw it on boingboing

[pyster]

Saw it on the boingboing and installed it pronto. I use no script, adblocker, and vadalia (tor), along with some conviences addons that I am sure have their own set of security and privacy issues. Not sure why this addon wasnt just a standard feature all this time on all browsers.

Vaporware?

[tkjtkj]

"No results found." (returned by Firefox's 'Add-on' search)

Does what it sounds like...

[Nick+Fel]

...except not "everywhere", just major sites.

Re:Does what it sounds like...

[icebraining]

It probably has to be hardcoded per site - so it can be everywhere, if you help.

Re:Does what it sounds like...

[Tim+C]

It can't be *everywhere* as not every site provides HTTPS access. You could go through a proxy, but that would only encrypt traffic between you and the proxy (and would of course introduce a potential bottleneck if it was a general-use proxy)

Re:Does what it sounds like...

[icebraining]

Everywhere, when the website supports it, obviously.

Re:Does what it sounds like...

[Myopic]

Congratulations, you win the pedantic cookie.

Re:Does what it sounds like...

[Eil]

The inclusion of PayPal seemed a little odd to me. PayPal already redirects to HTTPS on all of their pages that I've visited.

I can't understand...

[gouttonio]

... how does this work without risk of compromising the data at the end of the tor route if the webserver won't accept https. I'll be waiting for SPEEDY which looks like a cleaner way of encrypting everything.

Re:I can't understand...

Do you mind explaining to the uninitiated among us what exactly SPEEDY is?

Does What It Sounds Like?

[Culture20]

It can't work unless these sites already have an https version. If they redirect all 443 traffic to 80 like /., then it does nothing. It might work for facebook since it has a couple pages that allow https, but I'm sure things like their photo servers are probably http only.

Link

[muffen]

Maybe a link to the addon would be useful in the story?

Re:Link

[Nixoloco]

Another extension that some might find useful is SSLPasswdWarning. It evaluates password input fields and pops up a warning whenever they post via non HTTPS.

Cipher CPU use, caching, and Google Custom Search

[tepples]

What kind of poorly written site would do something like quietly defaulting to unencrypted HTTP on a HTTPS request.

Once the user has logged in, there are three reasons to switch back to HTTPS for any page that doesn't take credit cards or the like:

• The ciphers in HTTPS take a not insignificant amount of CPU time. Not all web applications are database- or network-bound.
• HTTPS isn't cacheable by intermediate transparent proxies, such as those used by dial-up or satellite Internet providers.
• Google has not released a version of the Google Custom Search box that works on HTTPS sites. The last time I tried it, IE would show the mixed-content alert: "Do you want to display only the webpage content that was delivered securely?" I had to add a workaround to a shopping site that disables Google Custom Search when the user is browsing in HTTPS mode.

Not actually a safety improvement?

It can't possibly create an encrypted connection to an unencrypted website, so instead of your connection going client->isp->isp->isp->isp->server(in theory all should be reasonably trustworthy), it is going through somebody elses server first. How is that better?

And what about ssl certificates? They tell the user that an audited organisation has identified that the server is authorised by the owner of the domain. If that system breaks(let's say that HTTPS-everywhere users assume that all https sites are valid without checking each certificate) then it has actively decreased the security of the internet for those users.

HTTPS costs money

[tepples]

Anonymous Coward wrote:

So I guess you'd be ok with just telling me your login and password, rather than making me go through the effort to sniff them, right?

So I guess you'd be OK with buying an SSL certificate and an SSL-compatible (unique IPv4 address) hosting plan for every blog, forum, and wiki out there, right?

Re:HTTPS costs money

[Burz]

The nice thing about the extension is that it WILL lead to more demand of HTTPS from users because it makes clear to them when the HTTPS option isn't there. They are bound to think more about the sensitivity of their various browsing activities on a page-by-page basis, so the desire for security will find greater expression.

FWIW, maybe the extra demand will lead to people using free CAs for things like blogs. Maybe even EFF could eventually become a CA...

Re:HTTPS costs money

[Dan+Ost]

Maybe even EFF could eventually become a CA...

I've seen this suggested multiple times. Any idea what the EFF's position is on this?

Re:HTTPS costs money

[Burz]

I haven't a clue, but they are concerned enough where they would even suggest Tor be used in a 2nd tier verification process:
http://www.wired.com/threatlevel/2010/03/packet-forensics/

Frankly I think there are more sure and elegant ways to do it, like making it easy for users to verify certs using fingerprints. Plus making the cert handling more like ssh.

And don't limit it to EFF... Wouldn't it be interesting if suddenly every Ubuntu system had a CA named "Canonical"? It could fit well with their cloud ambitions, esp. if web pages become one of the features in the Ubuntu cloud.

Re:HTTPS costs money

[tepples]

Wouldn't it be interesting if suddenly every Ubuntu system had a CA named "Canonical"?

That would work for sites exclusively offered to Ubuntu users, but people aren't going to install Ubuntu in a virtual machine just to visit a web site, and I doubt Microsoft would accept Canonical's CA certificate in the next Root Certificates Update package.

firefox doesn't really make it easy for the users

[roman_mir]

Firefox itself does not really make it easy for the users or for admins to use https everywhere.

I just made a small site, it's for a business, that runs everything through https, I redirect http to https completely. Firefox 3.6.3 on Windows had no problem running the site. IE on windows couldn't open the encrypted pages, Firefox 3.5 on any GNU/Linux distro couldn't open them either, to fix this, I had to add this to /etc/conf.d/ssl.conf : SSLInsecureRenegotiation on

That fixed the IE and FF3.5 on Linux problem.

Here is the description of this flag from apache mod_ssl directive description page:

SSLInsecureRenegotiation Directive
Description: Option to enable support for insecure renegotiation
Syntax: SSLInsecureRenegotiation flag
Default: SSLInsecureRenegotiation off
Context: server config, virtual host
Status: Extension
Module: mod_ssl
Compatibility: Available in httpd 2.2.15 and later, if using OpenSSL 0.9.8m or later

As originally specified, all versions of the SSL and TLS protocols (up to and including TLS/1.2) were vulnerable to a Man-in-the-Middle attack (CVE-2009-3555) during a renegotiation. This vulnerability allowed an attacker to "prefix" a chosen plaintext to the HTTP request as seen by the web server. A protocol extension was developed which fixed this vulnerability if supported by both client and server.

If mod_ssl is linked against OpenSSL version 0.9.8m or later, by default renegotiation is only supported with clients supporting the new protocol extension. If this directive is enabled, renegotiation will be allowed with old (unpatched) clients, albeit insecurely.
Security warning

If this directive is enabled, SSL connections will be vulnerable to the Man-in-the-Middle prefix attack as described in CVE-2009-3555.
Example

SSLInsecureRenegotiation on

The SSL_SECURE_RENEG environment variable can be used from an SSI or CGI script to determine whether secure renegotiation is supported for a given SSL connection.

I wonder if there are other ways of making this work with my other directives:

SSLEngine on
SSLCipherSuite HIGH:MEDIUM:!aNULL:+MD5

SSLVerifyClient none - I am thinking about switching it to 'require' right now, but will have to test all browsers with it again, but have to do it I think.

Oh, and getting it all to run together with apache httpd with mod_ssl + mod_jk + apache tomcat is quite a hassle.

But most unfortunate thing about FF is how it treats the self-signed certificates. It shows it as an SSL ERROR, to which exceptions must be made for the user to be able to enter the site. Can FF developers think about this fact for like longer than a second? It is not an error to run a site with a self-signed certificate, it is a configuration choice and it provides an important role to the site: encrypted traffic for login and for the data transferred to and from the client.

Why is FF showing this to the users as an error? This is not an error, this is by design and it is a special case of usage. Who is not frustrated by the browser treating self signed certificates as if they are some sort of a disease? They provide an important role - a way to secure communications between the server and the browser.

Can this be looked at, because I am SURE this prevents various sites from using encrypted traffic in the first place and it is a BAD thing, not a good one. All traffic needs to be encrypted, but especially user name/password traffic shouldn't be sent around in plain text.

Name it what it is: an exceptional case of using security to encrypt traffic, a case where the site may not necessarily be what it wants to be seen as, but at least the traffic is actually encrypted. It's terrible if someone comes to your site just to see: SSL ERROR on it, OF-COURSE admins don't want THAT message to be shown on their sites, why do you think so few sites do security properly?

forcing views of the hompage

[SuperBanana]

I don't care about ads on his site.

I care about being forced to update NoScript every few days, each time being forced to load his site. I've got another extension, a Flash downloader that does the same thing. They're both either the world's worst programmers, or they're intentionally releasing updates just to drive traffic to their homepages.

It's also incredibly irritating to get interrupted almost every time I go to restart Firefox!

Re:forcing views of the hompage

I can see why noscript has frequent updates, since it's in an arms race with malware writers, so let's not immediatly assume the worst.

Re:forcing views of the hompage

From the FAQ [http://noscript.net/faq]:

2.5
Q: I don't like NoScript redirecting the browser on its release notes page every time I upgrade it. Is there any way to prevent this?
A: First time you install NoScript and every time you upgrade it to a newer major version, Firefox opens an additional tab containing the NoScript welcome page, where you can read the release notes, the latest announcements and an introduction to the most important NoScript features (plus a link to this very FAQ...)
If you feel you don't need such heads up, you can disable this feature by clicking the NoScript icon, selecting Options and unchecking "Display the release notes on update" in the "Notifications" tab.
Notice that if the above "fix" doesn't work or, worse, you keep being redirected on the welcome page every time you restart Firefox, chances are there's something (like a buggy extension) preventing your preferences from being saved: you may need to follow this advice, then.

Re:forcing views of the hompage

[clone53421]

I can see why noscript has frequent updates, since it's in an arms race with malware writers

So is AdBlock Plus, and it manages to provide a delivery system that doesn’t require frequent updates to the extension itself.

Furthermore you innately don’t need to update a whitelist as often as a blacklist.

Re:forcing views of the hompage

[Coopjust]

http://noscript.net/faq#qa2_5

Q: I don't like NoScript redirecting the browser on its release notes page every time I upgrade it. Is there any way to prevent this?
If you feel you don't need such heads up, you can disable this feature by clicking the NoScript icon, selecting Options and unchecking "Display the release notes on update" in the "Notifications" tab.

He's intentionally driving traffic to his page, but you can disable it easily (it used to require about:config, but it was a boolean that was fairly easy to find).

Re:forcing views of the hompage

[rlk]

AdBlock Plus and NoScript are doing different things -- ABP is basically a filter engine, and the rules are the only thing that (normally) needs to be updated. NoScript is blocking things based on various algorithms, so it's procedural rather than data-driven. It's not surprising that NoScript's engine needs to be updated more often than ABP's.

Re:forcing views of the hompage

[j.sanchez1]

about:config
set noscript.firstRunRedirection to false

Re:forcing views of the hompage

[fast+turtle]

That's what I've never understood. All Noscript has to do is disable scripting across the board. Then enable it on a Site by Site (Whitelist) basis. What's so f""ing hard about that? That's my settings by default. It blocks everything except those websites where I must have scripting enabled and I use the same settings for my 70+ mum and my 50+ sis (both of them are Noobs)

Re:forcing views of the hompage

[MokuMokuRyoushi]

I'm not sure if anyone ha said it yet, so here goes - who cares? It takes me less than thirty seconds to update, load FF, and close the NoScript tab that open. Its a very small price to pay for an important extension. Yes, the programmers may be farming homepage traffic - but as long as I've got an up-to-date, free version of an impressive script-blocking-extension... I don't give a rats ass. Take all the web traffic you want, mate.

Re:forcing views of the hompage

[mkremer]

Have you tried unchecking the display release notes after update on the notifications page to not load his site after a update?

Re:forcing views of the hompage

[clone53421]

I’m going to have to call bullshit on that. Citation needed.

http://noscript.net/features

Show me which of those features requires frequent updates to NoScript’s actual engine.

Re:forcing views of the hompage

[thijsh]

Thanks man! This was always bugging me on every PC with NoScript... and I always forget the name of the boolean in the about:config. Now I can disable it (or explain to someone else how to disable it) much more easily.

Re:forcing views of the hompage

[Myopic]

Good call. I didn't even know about that. Here's the Slashdot article.

Re:forcing views of the hompage

[Peach+Rings]

So you'd rather have extensions updating themselves through their own downloader code than have them just use the Firefox update framework?

Re:forcing views of the hompage

[clone53421]

Of course I would. The Firefox update process requires a complete restart of the browser. If an extension can update its filter set without requiring a complete extension update and the corresponding browser restart, it should.

In fact, since Javascript is capable of self-modification it’d be nice to see extensions that could update themselves on-the-fly, only updating the actual files on the disk when the browser is restarted.

Re:forcing views of the hompage

[Peach+Rings]

In fact, since Javascript is capable of self-modification it’d be nice to see extensions that could update themselves on-the-fly, only updating the actual files on the disk when the browser is restarted.

Most extensions modify the way the browser is set up when it's started: the look of the address bar, some special thing in the statusbar, whatever. Yeah you could in theory create a special update script for every extension that reloads only certain components of the browser, but it's really easier to just restart the browser.

Re:forcing views of the hompage

[clone53421]

I was more thinking an extension that updated itself, since it would know which scripts had to be updated and whether or not any of the look-and-feel elements should be changed.

Re:forcing views of the hompage

[warb]

On Windows - Tools-Options-Advanced Automatically check for updates - un-check add-ons

Re:forcing views of the hompage

[DMUTPeregrine]

Uncheck the option in the preferences to display the release notes. Then you won't load his site.

Extensions on third-party sites: Use the Google.

[tepples]

Tools > Add-ons > Get Add-ons displays only those extensions that Mozilla has vetted. Extensions on third-party sites are not listed there, but they are listed in Google.

Does NOT work for Slashdot.org

Unfortunately. No https for slashdot.org - why not Slashdot? Comments on politically orientated stories from "sensitive" countries does not deserve to be encrypted? You should know better Slashdot

Re:Does NOT work for Slashdot.org

[Lingerance]

That's a subscriber feature.

Re:Does NOT work for Slashdot.org

That's a subscriber feature.

That's a money saving feature. Fixed that for you.

Re:Does NOT work for Slashdot.org

[FriendlyLurker]

That's a subscriber feature.

So to narrow down people posting politically sensitive stories (say, whistle-blower type stories) from a country, it is merely necessary to cross check banking records against payments to Slashdot. Slashdot should know better.

Re:Does NOT work for Slashdot.org

[ConceptJunkie]

It's not /.'s job to provide a secure means for posting politically sensitive stories. It would be nice if that's possible but that's not what they are in the business of doing, so I don't think it's fair to suggest /. "should know better".

I'm sure they know perfectly well, and I'm sure that the decision support HTTPS this way is also an economic and technological decision. /. is a business, not a charity, and not a public service (although it provides public service as part of its business model). If /. advertised itself _primarily_ as a forum for free, uncensored speech or a forum for communicating with people in less free circumstances then it's a fair cop.

It's one thing to suggest /. _should_ do this (and I think they should, all things being equal), but it's another to say (or imply) it is wrong for them not to.

On the other hand, like Microsoft, busting on /. is fun and often justified, so I wouldn't mind piling on. They're such insensitive clods!

Re:Does NOT work for Slashdot.org

[memnock]

i'm all for whistle-blowers and transparency. but how often does /. scoop some kind of significant corruption story or something similar? i don't think the /. crew really needs to consider this angle for subscribers.

Re:Does NOT work for Slashdot.org

Slashdot should know better.

You think Slashdot cares?
You should know better.

Re:Does NOT work for Slashdot.org

Wow, paranoia shows no bounds. Rofl, so pathetic. You're posting on a fucking comment board.

Re:Does NOT work for Slashdot.org

[ultranova]

/. is a business, not a charity, and not a public service (although it provides public service as part of its business model).

Every time I hear "is is a business, therefore it doesn't have to care about anything besides profit" I turn a little more to the left. Seriously, did CEOs mistake Soviet propaganda as instruction manuals or something?

It's one thing to suggest /. _should_ do this (and I think they should, all things being equal), but it's another to say (or imply) it is wrong for them not to.

If it's not wrong for them to not do something, then why should they do it?

Re:Does NOT work for Slashdot.org

[johanatan]

You must be new here.

Re:Does NOT work for Slashdot.org

[FriendlyLurker]

It's one thing to suggest /. _should_ do this (and I think they should, all things being equal), but it's another to say (or imply) it is wrong for them not to.

You might be right. However we do not have to look far (e.g "Thailand Shuts Down 43,000 More Websites", or "FBIs Facebook Monitoring Leads To Arrest In England" both a few stories back) - to see that social network sites like /. are being sniffed, scanned, intercepted and profiles built up for normal citizens all around the world. 43,000 Websites have been shutdown or blocked in Thailand, and it would be naive to think they wouldn' also t sniff plain-text posted on those websites from Thai based IP's to identify problematic Thai citizens, who now may be on government watch list's - just waiting for a visit from local authorities, firing from Gov departments, or any other manner of persecution the regime see's fit to deal out.

It might not be Slashdot's job or responsibility to offer even the most minimum technological security https offers to users - but it may reflect pretty poorly on Slashdot as a technology orientated social networking site - if they do not set a good example in the proper use of technology, who will?

Re:Does NOT work for Slashdot.org

[Runaway1956]

Uhhhh - I guess a lame excuse is better than no excuse? Alright, if you insist:

"People from oppressed countries should know better than to have a political opinion. If their opinion is needed, it will be given to them in advance. Encrpting the communications of such people would put them at risk, as well as slashdot. Surely you don't want any HTTPS traffic being observed by your ISP and/or government, for which you can be blamed!"

That's as good as I can do for a lame excuse on such short notice. Next time, give some advance warning!

Re:Does NOT work for Slashdot.org

[internewt]

However we do not have to look far (e.g "Thailand Shuts Down 43,000 More Websites", or "FBIs Facebook Monitoring Leads To Arrest In England" both a few stories back) - to see that social network sites like /. are being sniffed, scanned, intercepted and profiles built up for normal citizens all around the world.

I'm glad I'm not the only person to have come to this conclusion.

Just from publicly available info, considering how many phpBBs and similar there are out there, it wouldn't be technically that hard to profile web users. The spooks have probably got root at Facebook already (via In-Q-Tel), but even if they haven't, writing a custom user-info gatherer for bespoke sites is not a technical mountain.

Even if people use different usernames on different forums, they will most likely pick similar names, or ones that follow a theme. But if a person submit details like IM names or email addresses, cross-referencing people to being specific users from different sites would be easy.

Re:Does NOT work for Slashdot.org

Oh crap, now they are going to find my posting history:

117 instances of "But does it run Linux?"
83 instances of "Imagine a Beowulf cluster of these!"
44 instances of "You must be new here."
39 instances of "What could possibly go wrong?"

Re:Does NOT work for Slashdot.org

Every time I hear "is is a business, therefore it doesn't have to care about anything besides profit" I turn a little more to the left. Seriously, did CEOs mistake Soviet propaganda as instruction manuals or something?

Anyone with even basic knowledge of "Capitalism", "Marxism", political science and history is pointing and laughing at you right now.

Keep turning more to the left, and pick up your copy of those propaganda manuals on your way - you'll need them.

As for your second question, the answer is - gasp! - profit motive! Funny how that works out, isn't it?

Re:Does NOT work for Slashdot.org

[jesset77]

If it's not wrong for them to not do something, then why should they do it?

Wait.. Let me make sure I'm getting your double negatives straight here. Are you saying that the amorality of an inaction robs motive from the corresponding action? It's not wrong for me to not eat a potato chip right now. So why eat a potato chip? Do I have to be arrested for setting the potato chip down before I can omnom with a clear conscience?

Dewd, your world sux! I am glad I don't live there. ;D

Re:Does NOT work for Slashdot.org

If it's not wrong for them to not do something, then why should they do it?

That's "insightful"? How depressing.

Re:Does NOT work for Slashdot.org

[eples]

dude. Sending content over HTTPS is a performance hit because it has to be encrypted first. It also takes more bandwidth.

In short, it costs money.

Re:Does NOT work for Slashdot.org

[Janek+Kozicki]

You are not a subscriber, because you don't have an asterisk beside your name. http://it.slashdot.org/faq/com-mod.shtml#cm2600 so how could you know, that this is a subscriber feature? You're pulling a leg of stupid modders who mod you informative.

Self-signed certs are vulnerable to MITM

[tepples]

It is not an error to run a site with a self-signed certificate

A man in the middle could insert his own self-signed certificate, decrypting the traffic from your site and reencrypting it with his own key pair, and users would be none the wiser. One workaround is to start your own CA, sign its root certificate with PGP, and distribute that cert to your users to install. But then that starts to depend on the PGP web of trust, which in turn depends on air travel to get keys signed.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

It is still not an error of SSL or of the site, it is a configuration choice.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

It is a configuration choice, not an error, and by the way this directive:

SSLInsecureRenegotiation on

has to be turned on, in case you didn't notice a huge portion of my comment, it already is a problem that can lead to a possible MIM attack but if I don't have it on, then IE does not work and FF 3.5 and probably earlier versions don't work on Linux distros and maybe on Windows (I didn't check.)

It is better to run a https site than http, whether the script is self signed is another matter, but it's not an error, especially given what kinds of clients people still use.

Re:Self-signed certs are vulnerable to MITM

[bunratty]

Yes, it is a configuration choice. With that configuration choice, Firefox cannot determine that it's communicating with the site it thinks it's communicating to, and warns the user about the potential security problem.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

This is not an error of ssl or of http, this should come with a warning from a browser, no question, but my users will know the site and the cert.

I completely disagree that this should come with a label 'Error'.

It should come with some label like: 'Warning, the certificate is self signed, you better know what it is'.

However you skipped completely the part of my post, where I am talking about the real issue:

SSLInsecureRenegotiation on

which is in itself prone to MITM type of attack, regardless of whether the cert is self signed or authorized centrally.

Re:Self-signed certs are vulnerable to MITM

A man in the middle could insert his own self-signed certificate, decrypting the traffic from your site and reencrypting it with his own key pair, and users would be none the wiser.

That can't possibly be the reason for Firefox's weird behavior, because if you use http instead of https, you don't get the error.

Re:Self-signed certs are vulnerable to MITM

[Bazer]

A self-signed certificate may be unsafe but it does imply an intent of privacy.

With effort, and sometimes a trivial amount, one can invade on another's privacy. But we've all made a social agreement to respect privacy; all it takes is a humble token, like a window curtain, to remind us of this. The curtain is just cloth, but it does an excellent job of affording us privacy, because it asserts our intent. That way, if we're able to detect it, we can be certain in knowing that our privacy is violated -- otherwise, any access we didn't think to deny (but would regret later) might accidentally intrude upon us -- and with no ill will from the innocent onlooker! How foolish of us, that we didn't draw the curtain when we had the chance!

Re:Self-signed certs are vulnerable to MITM

[tepples]

If you use HTTP, the user is assumed to know that a man in the middle could see passwords or payment identifiers. The error message for an unrecognized certificate is there to stop people from assuming HTTPS means a connection free from MITM attack.

Re:Self-signed certs are vulnerable to MITM

[tepples]

A self-signed certificate may be unsafe but it does imply an intent of privacy.

So in other words, a self-signed certificate is security theater. Online criminals by definition don't respect the "social agreement" that you mention. (By the way, whom are you quoting?)

Re:Self-signed certs are vulnerable to MITM

[Bazer]

Security and privacy are two different things. You won't stave off criminals capable of carrying out a MITM with a self-signed certificate. You can, however demonstrate that you intend to keep this session private, just like you would a conversation. If worse comes to worst, you'll have a much easier way of proving ill intent on the part of a misbehaving eavesdropper like an ISP or a shoddy data retention scheme.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

Not in my case, they couldn't.

My business model does not allow unknown users to use the site, so all users must be registered in advance, and they are told what the correct certificate is, so no, Firefox team shoving their idea of what SSL Errors as opposed to Warnings are is just arrogance on their part.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

you are brainwashed into not understanding that an ERROR is not the same as a WARNING.

My business case does not allow just anybody to sign in, they must be known users who are set up by an admin of the site's app. Once they are set as users with temp passwords, they are instructed on what the certificate number is as well.

This is a perfectly legitimate way of using a self-signed certificate and it does not mean that the site is causing an SSL ERROR, only a warning is required here.

Re:Self-signed certs are vulnerable to MITM

Yeah, that's why it should only ask the first time (or when it changed) and have a nice 'remember' checkbox, just like SSH, SFTP, VPN etc. It's been done, and no rocket science.

Mozilla still won't implement a scheme like this (not without the scare-message anyway), but with a plugin like this one from the EFF it could be done even better: when they maintain a list of self-signed public keys that are known to be authentic. The plugin should then skip the warning (by adding the certs to the known list or whatever) automatically, basically giving any legitemate site HTTPS support without having to pay the CA-tax.

I'm not saying that the EFF should become an independent CA, but when they really want to have 'HTTPS everywhere' and create a plugin that skips some stupid steps for you to get it working easy i'd say skipping the whole self-signed warning would really benefit the use of HTTPS everywhere...

Re:Self-signed certs are vulnerable to MITM

[swillden]

It is not an error to run a site with a self-signed certificate

A man in the middle could insert his own self-signed certificate, decrypting the traffic from your site and reencrypting it with his own key pair, and users would be none the wiser.

So that just means that the site isn't secure. Fine. FF shouldn't display the lock icon, or color the address bar. But that's no reason to treat the connection as an error. The appropriate thing to do is to present the site as insecure (which it is), but to go ahead and encrypt the link. Ideally, FF should go one step further and use SSH-style server key history. Silently (or with a small "new key, do you want to accept it?" dialog) accept and use the self-signed certificate, and then puke hard if the certificate ever changes without good reason (i.e. old cert expired or was replaced with a proper certificate).

By making these small changes, browser makers could significantly increase the average security of the web, so that sites that will otherwise have to go with unencrypted HTTP can use HTTPS -- even if MITM attacks are still possible, and if security shouldn't be relied upon, this sort of "opportunistic" encryption can make casual snooping significantly harder. That's a good thing.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

In my case it is not even true that it is insecure to the SSL specifications, because my app requires that the users are registered by the app's admin, who then sends out the user name/temporary password and the right certificate number to the end user.

The user is instructed to check the certificate number during installation to avoid a possible MITM attack.

This entire thing is frustrating.

Re:Self-signed certs are vulnerable to MITM

[tepples]

Yeah, that's why it should only ask the first time (or when it changed)

This approach is called key-continuity management, but it doesn't help if your connection or the server's connection to the Internet has been MITM'd from day one. This exists in the wild (see bug 460374 on bugzilla.mozilla.org).

with a plugin like this one from the EFF it could be done even better: when they maintain a list of self-signed public keys that are known to be authentic.

That's all a CA does.

Re:Self-signed certs are vulnerable to MITM

[Hawke]

The user would be none the wiser if the user had never gone to that encrypted site before with that browser and stored the key. It's the SSH trust model, only with a bad rap.

Re:Self-signed certs are vulnerable to MITM

[tepples]

My business model does not allow unknown users to use the site

Then you could have your users install your CA certificate on their own computers once you have created their accounts on your site. Or are you talking about the use case where somebody has the authority to request an account on your site but not to install your CA certificate on the computer that he uses?

Re:Self-signed certs are vulnerable to MITM

[thijsh]

1) What regular user even knows the difference between HTTP and HTTPS? They only know 'the little lock' and 'the geen bar'. There have been known 'attacks' that just display a lock icon *inside* the page and people assume everything is peachy.
2) What user outside of IT knows about MITM attacks? There is not even an icon to indicate this shit. And when you mis-type the URL you can get a completely legit cert and still have a MITM attack (don't assume people never miss the typo or a CA means anything special, they will hand it out to anyone with $100), so I have to disappoint you: the little lock icon does *not* keep you safe from a MITM attack!
3) It's quite a leap to assume people know the relation between HTTPS and MITM and we might have to un-teach them that if the default crappy behavior is changed for the greater good of adding encryption to an otherwise completely insecure HTTP connection...

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

You are still missing the point. There is no SSL Error, there only needs to be an SSL Warning: self signed certificate.

The users are given certificate numbers as well as user names / temporary passwords. They are instructed to check that the certificate is correct when the browser makes the connection or to install certificate if they can by themselves.

--

Every single person replying to me has completely ignored this issue:

SSLInsecureRenegotiation on

which is a much more important one - regardless of whether the certificate is signed by CA or not, the MITM is still possible and my business model actually fixes this but not technologically, it fixes it operationally.

Nobody is talking about it here at all, looks like they don't get it. IE and earlier FF versions cannot even make the connection unless this flag is on.

Re:Self-signed certs are vulnerable to MITM

How is this different from SSH? Store it on first connection, warn if it changes.
Congratulations, you've just reduced the chance of a MITM getting the data to 1/(lifetime number of connections).
Firefox treats this case as so much worse than cleartext that it needs a Big Scary Warning where it's complicated to do anything but abort, and that makes absolutely no sense.

Re:Self-signed certs are vulnerable to MITM

[profplump]

But just adding an untrusted cert would raise the bar from "passive eavesdropping" to "man in the middle attack". It's still an improvement.

Plus self-signed certs can be perfectly safe if you verify the fingerprint. Not that setting up a CA is a bad idea, particularly if you'll have multiple certificates, but it's not strictly necessary.

Re:Self-signed certs are vulnerable to MITM

[tepples]

How is this different from SSH? Store it on first connection, warn if it changes.

One SSH client that I've used instructs the end user to telephone someone who can read the key fingerprint from the server.

Re:Self-signed certs are vulnerable to MITM

Are you kidding me? Why don't you try listening to this guy named Bruce Schneier before speak about the browser issuing warnings. I for one am glad that Firefox treats it as an error because now I don't have to worry about my Dad being the subject of a MITM attack. We need to take security out of the users hands just like the power companies did by placing meters outside of houses.

I really recommend you watch Bruce at Defcon's Q&A
http://video.google.com/videoplay?docid=-1672905904171732325#

stoops.

Re:Self-signed certs are vulnerable to MITM

[franl]

[...] this should come with a warning from a browser, no question, but my users will know the site and the cert.

Knowing the site doesn't help if a MITM is watching all the sensitive traffic flowing in both directions. And will your users really know the cert? Do your users have cert hashes memorized, or are they using the excellent "Certificate Patrol" Firefox add-on (https://addons.mozilla.org/en-US/firefox/addon/6415) that alerts users to changes in certs over time?

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

my users have a limited number of machines, 2 per store, this business model is about POS machines, so to answer your question directly: no, my users won't have the hashes memorized but they will not be using the app from 1-2 machines outside of the stores.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

I don't need to see a guy talk, who never considered my use-case, you dumb-ass.

Re:Self-signed certs are vulnerable to MITM

[roman_mir]

So the question is WHY is FireFox then absolutely not warning the user about the fact that on an HTTP connection there is a much bigger freaking chance of getting screwed by someone just looking over the traffic, forget about an MITM attack?

FF made this decision of treating a self-signed cert like it's WORSE than plain text in the most insensible dumb-ass way possible.

Re:Self-signed certs are vulnerable to MITM

[Rich0]

Agreed - security isn't all-or-nothing. It is like having a builder refuse to put a lock on a house door, because the house has windows without bars so the lock is just false security.

By all means the browser should communicate the relative security of a connection, but an ssl connection with a self-signed cert is NO LESS SECURE than a non-ssl connection. The errors generated by a browser would imply that the non-ssl connection is actually more secure. Indeed, if you want to mitm a bank you're probably just best off creating a non-ssl connection with the victim, and relaying the traffic to the bank via ssl. I doubt most users would notice the missing https/etc, and the browser won't given them any warnings, since browser designers treat non-ssl traffic as safe - since it is so ubiquitous.

Re:Self-signed certs are vulnerable to MITM

[swillden]

The errors generated by a browser would imply that the non-ssl connection is actually more secure.

Excellent, excellent point.

That is how I will start my argument the next time this comes up, because it makes abundantly clear just how stupid the current behavior is.

I didn't know either

[Burz]

...and I use NoScript regularly :)

Still, for those of us who setup systems and browser for other people, a simpler extension like HTTPS Everywhere will help immensely.

It is based on NoScript, in fact

From TF (and missing) A:

Our code is partially based on the STS implementation from the groundbreaking NoScript project.

Re:firefox doesn't really make it easy for the use

[Culture20]

But most unfortunate thing about FF is how it treats the self-signed certificates. It shows it as an SSL ERROR, to which exceptions must be made for the user to be able to enter the site. Can FF developers think about this fact for like longer than a second? It is not an error to run a site with a self-signed certificate, it is a configuration choice and it provides an important role to the site: encrypted traffic for login and for the data transferred to and from the client.

Why is FF showing this to the users as an error? This is not an error, this is by design and it is a special case of usage.

Because to verify a self-signed cert, every user has to call the site maintainer on the phone. Self-signed certs or Corporate CAs are great for in-house use where the sysadmins can install the certs for everyone, but since FF can't tell whether your unrecognized cert is being used to just feed html data to a user, or if the user is being asked to enter something confidential, it can't make a distinction between a reasonable use for self-signed and a MitM attempt. Since bad admins had been training people to "just click okay on the cert" for half a decade, FF took their warning up a notch and made people jump through hoops before they succumb to a potential MitM.

Re:firefox doesn't really make it easy for the use

[icebraining]

Sending your login/pass to an unauthenticated server is not any better than sending it through HTTP. If you have a MITM, he can be faking the website.

If you want secure login, either get an authenticated cert or use OpenID and let the user choose his provider.

Re:firefox doesn't really make it easy for the use

[roman_mir]

But this is not an ERROR, this is by design and should come with some warning. But an error? No, if the user knows the certificate and the site this is just a warning.

Re:firefox doesn't really make it easy for the use

[roman_mir]

It's not an error, it should be a warning. My users will know the site and the certificate number and this IS how I want the site to work, I don't need a CA or an OpenID to do this, it's not wrong to do.

And it is a million times better than sending plain text over any line any day.

Re:firefox doesn't really make it easy for the use

[Culture20]

But this is not an ERROR, this is by design and should come with some warning. But an error? No, if the user knows the certificate and the site this is just a warning.

It _is_ just a warning. If the user knows the cert info (maybe printed on paper in front of him), he can verify it and add it to an exception list. I do that all the time for my own test servers. Firefox doesn't prevent people from connecting with self-signed certs, it just makes them think about the ramifications before they do.

Re:firefox doesn't really make it easy for the use

Check out this patch if you need to get rid of SSL/TLS errors: link Beware, it was meant to be used on secure isolated networks, it completely disables checking SSL/TLS certificates and will lie to the user telling them all connections are secure.

Re:firefox doesn't really make it easy for the use

[tepples]

if the user knows the certificate

How would the user know the certificate on the user's first visit to the site?

facebook

[aneamic]

Am I the only person getting a 'chat is disabled on this page' bubble everywhere when using this plugin on facebook?

Re:facebook

[Cmdr-Absurd]

No. And I consider it to be a feature, not a bug.

Re:facebook

[Culture20]

Facebook's chat feature is http-only. My guess is it was a simple way to keep chat from working on the password reset pages (to prevent chat from stealing focus while typing in a password).

Re:facebook

[SeaFox]

Isn't using HTTPS everywhere on a website that's sole purpose is to share info about yourself kinda ironic?

Re:firefox doesn't really make it easy for the use

[roman_mir]

Because of my business case - the site is for users who must be first set up by the site administrator, so nobody can just show up, it's only for known users.

so they will also be notified on what the appropriate certificate is.

NoScript over-engineered

NoScript is overly complex, and so is flashblock for that matter. I view them both as solutions looking for problems.

There is a simple, elegant tool which does either job better, and then gets the hell out of your way: QuickJava. Click the button, javascript off. Same as if you disabled it in the Tools menu, the way it should be. Not "mostly" off, but OFF. Click it again, javascript on. Click the flash button, flash plugin disabled. Click it again, re-enabled.

Now THAT is the correct solution to the problem.

Re:NoScript over-engineered

[Dan+Ost]

So how do you handle multiple tabs, some where you want to allow javascript, some where you don't?

Noscript's whitelisting approach handles this cleanly and easily.

Re:NoScript over-engineered

So how do you handle multiple tabs

I switch tabs, then click the QuickJava button. Where's the problem?

Whitelisting is work. I don't need more work. I just want to disable javascript, no questions asked.

Re:NoScript over-engineered

[djnforce9]

I couldn't agree more with you. I used NoScript for a little while and it was a pain having to whitelist sites one by one as I visited them. For areas I don't trust, I simply can shut off the JavaScript and Flash engine altogether (ESPECIALLY flash which some sites abuse by hosting very loud ads playing horrible music out of nowhere). Also handy for web development when I need to see how a page I am working on responds when someone enters without JavaScript enabled.

Re:NoScript over-engineered

[clone53421]

...because Javascript obviously can’t be doing anything bad in the untrustworthy tab that you just switched away from?

Re:NoScript over-engineered

Chrome has similar extensions (toggling Java/Javascript/Flash with a mouse-click) and IIRC they disable them on a per-tab basis. Chrome also has built-in whitelisting features for plugins.

I think Noscript's only real advantage is allowing more specific control of underlying page elements. Personally, I don't like to babysit webpages, so I just run the browser in a VM that gets reset often.

Re:NoScript over-engineered

[allo]

NoScript with its whitelist is great, but i do not want all the stupid xss-prevention features and anti-clickjacking-foo. It only generates false positives.

Re:NoScript over-engineered

I just don't run into problems like that. For me, javascript is always off until I need it. That goes double for flash. Browsing this way is quick and snappy, more than worth the price of "missing out" on javascript and flash. On my netbook especially, it's the only way to go. NoScript just doesn't cut it for this. It turns a simple, brainless solution into something that takes thought, time, and effort.

You must be one of those people who leaves the browser window open for days, possibly with multiple tabs from completely different sites. I don't use the web browser that way. When I'm done, I close the window.

Re:NoScript over-engineered

[tibman]

The difference is that you can selectively allow scripting from one site and disable scripting from others. So you can trust certain sites but if they have embedded scripts from elsewhere they won't be active.

I might be getting my plug-ins confused but i think it also prevents click stealing? If i click on a transparent item or two semi-overlapping items it will popup a box showing both items and ask which one i was intending to click on. It only does that if it looks like a click-jacking. I'm at work but can't check.. this feature is in noscript or betterprivacy.

I use several different FF's in different sandboxes and forget what is used in each one. The trusted one is noscript only but many sites permanently allowed. If i click a link in an email or a program opens a url, an untrusted FF will open with maximum protections on. Upon closing the sandbox is cleared.

I think it's just a matter of personal preference. You prefer not to be bugged by things and don't want to nit-pick over details. I prefer to explore possible security mechanisms even if they cost me time.

Re:NoScript over-engineered

So, using your method, how do I allow Javascript for Slashdot's AJAX interface, while blocking the shitty javascript from the adverts?

Nope, there is definitely a real problem that NoScript addresses.

Also, Quickjava is too much of a pain in the arse to keep turning on and off javascript for sites that need it, NoScript handles this by remembering your preferences. I used to use Quickjava before I tried NoScript.

Re:NoScript over-engineered

[FoolishOwl]

I'd had NoScript installed for a while, as I kept running across arguments that it was a security necessity.

However, I quickly found that almost every Web site I visited made extensive use of scripting, which meant that I was permanently whitelisting sites I visited regularly, and temporarily whitelisting almost every other site I visited, which was a frigging nuisance.

I've found AdBlocker Plus blocks the annoying ads well enough for my purposes, so NoScript was redundant.

Re:NoScript over-engineered

[internewt]

So, using your method, how do I allow Javascript for Slashdot's AJAX interface, while blocking the shitty javascript from the adverts?

Nope, there is definitely a real problem that NoScript addresses.

I deal with this, as best as I can, with adblock filters.

Pretty frequently the advert JS is in separate files, and many sites all run JS by one of a few ad networks. I just create filters to block the JS files that aren't necessary for a site's functionality, and once some filters are made, odds are they will work across many sites.

Unwanted JS within the page's HTML is still a problem though, with NoScript. Adblock can still help here, if JS builds URLs to get junk from 3rd parties. I have been playing with Privoxy recently, to deal with the shortcomings of browser extensions, and to get adblock-like filtering for all applications.

Re:firefox doesn't really make it easy for the use

[tepples]

Because of my business case - the site is for users who must be first set up by the site administrator

And you can have all these users install your CA certificate when they sign up.

Man in the middle

[tepples]

While a very valid point, there is nothing to stop someone from self-signing a cert.

There is also nothing to stop someone from performing a man-in-the-middle attack on a self-signed HTTPS connection any more than an HTTP connection. You could start your own CA, get the CA's certificate to your users somehow (this is the hard part), and then sign your SSL certificates with that CA's key.

Re:Man in the middle

[Timothy+Brownawell]

There is also nothing to stop someone from performing a man-in-the-middle attack on a self-signed HTTPS connection

There's an extension that fixes that: http://www.cs.cmu.edu/~perspectives/

Re:Man in the middle

[profplump]

While I agree that setting up a CA is a superior solution, there's a big difference between "passive eavesdropping" and "man in the middle attack". Conflating the two is at least as bad as pretending that all non-Verisign signatures are self-signatures.

Plus if you're willing to do the "distributed to users" step you could simply distribute the fingerprint from the self-signed key rather than the CA cert. Until and unless you generate additional certificates with the same CA it's actually less work and provides the same security.

security by idiocy is still idiocy, not security

You, sir, are an idiot.

It *is* an ERROR. Your worthless self-signed certificate can be circumvented by a child, therefore your security is non-existent. The fact that people still use insecure browsers is not an excuse. Two wrongs do not make a right. Find another job, you have failed at yours.

The Firefox folks are doing the right thing by not listening to your moronic suggestions. If they did what you asked then users, using the latest version of the browser mind you, would have no idea that the sites they are visiting are completely insecure and can be hijacked by just about anyone.

Stop repeating your nonsense, no one believes or agrees with you. You suck and have no idea what you are doing.

Security should not be made completely ineffective / impotent just so your personal life can be rendered easier.

'nuff said.

Re:firefox doesn't really make it easy for the use

[xaxa]

Because of my business case - the site is for users who must be first set up by the site administrator, so nobody can just show up, it's only for known users.

Then I suggest you add the self-signed certificate to their computer, something like this.

Re:firefox doesn't really make it easy for the use

You can always write your own browser....

slashdot, HTTPS please!

Mod parent up.

We know HTTPS isn't "cheap". But seriously, now would be the time for /. to offer TLS.

Re:slashdot, HTTPS please!

[phyrexianshaw.ca]

yeah, because we all need to hide things more and more instead of being responsible for our own actions.

please. there's nothing that goes on on /. that requires encrypted communication.

Re:slashdot, HTTPS please!

[Peach+Rings]

How about sending your login credentials to the server? That's not encrypted.

Re:slashdot, HTTPS please!

i wish i could mod you 'idiot'

No name-based virtual hosting

[tepples]

FWIW, maybe the extra demand will lead to people using free CAs for things like blogs.

It's not just the SSL certificate that costs money. The hosting plan also has to support a unique IP per plan because HTTPS is incompatible with name-based virtual hosting. Specifically, HTTPS requires that the server send the correct certificate before even seeing the Host: header, which means the server has to choose based on the incoming connection's IP address.

Re:No name-based virtual hosting

[Spad]

Specifically, HTTPS requires that the server send the correct certificate before even seeing the Host: header, which means the server has to choose based on the incoming connection's IP address.

Not True

Re:No name-based virtual hosting

[El_Muerte_TDS]

And if you read that page you'll notice that a large part of the world has no support for it (most browsers don't support SNI on Windows XP).

Re:No name-based virtual hosting

[GigsVT]

"Internet Explorer 7 (Vista or higher, not XP) or later"

This is a sticky point. Everyone still uses XP because Vista and 7 suck.

Re:No name-based virtual hosting

[suso]

I knew someone would be a jackass and bring that *newer* technology up. But it will be years before its practical to use that. Its actually not that important because by the time SNI is practical, the world will be switched to IPv6 (which is a more pressing issue) and IPs will cost nothing. The only setback would be having to have lots of interfaces on a machine.

But then there are SSL customers want to have unique reverse DNS anyways, which would require seperate IPs.

Re:No name-based virtual hosting

SNI works around this and it does a good job except when the client doesn't support it (in which case, the server is back to guessing which certificate to use).

Re:No name-based virtual hosting

Nice troll but Win7 and Vista hold around 28% of the OS market share.

Re:No name-based virtual hosting

[tepples]

Nice troll but Win7 and Vista hold around 28% of the OS market share.

Conversely, requiring SNI will kick out 72 percent of your customers.

Re:No name-based virtual hosting

[ragefan]

It's not just the SSL certificate that costs money. The hosting plan also has to support a unique IP per plan because HTTPS is incompatible with name-based virtual hosting. Specifically, HTTPS requires that the server send the correct certificate before even seeing the Host: header, which means the server has to choose based on the incoming connection's IP address.

Not entirely true, SNI has resolved this issue, but unfortunately until theseproducts are fixed, we will not be able to use it effectively.

Re:No name-based virtual hosting

[Peach+Rings]

There's nothing converse about anything you said.

Re:No name-based virtual hosting

[ukyoCE]

Konqueror/KDE in any version
Internet Explorer (any version) on Windows XP
Google Chrome on Windows XP
Safari on Windows XP

I get the impression that the products you're referring to are Konqueror and Windows XP?

Re:No name-based virtual hosting

[tepples]

Until Windows XP market share drops from 56 percent to a negligible 4 percent, SSL sites are still going to need unique IPs if they want to take money from Windows XP users.

Link to the article

[openfrog]

Here's the link https://www.eff.org/files/https-everywhere-latest.xpi which is missing from TFS.

This is a link to the extension. Here is the link to the article:
https://www.eff.org/deeplinks/2010/06/encrypt-web-https-everywhere-firefox-extension

Parent's comment isn't really apt

[Burz]

HTTPS usage is at least as much about preventing surreptitious alteration (facilitating 'unwanted features' and attacks) of web pages. This can happen on unsecured or compromised networks: the 'coffee shop' Wifi scene is a place where people are particularly vulnerable not just to sniffing but to intrusion/infection attacks.

Then again, imagine you've been browsing safe at home and what was this tiny extra ad space that your ISP inserted into the top corner of many web pages became slowly larger over a period of months. Before too long the ads take on a TV-screen appearance and a couple years later you are struggling to keep a 1/8 screen sized virtual television (a subject-sensitive enhancement provided by your generous Cable ISP operator!) from impinging on your browsing. Around this point the basic fact that the TV-thing keeps appearing on so many Web users' screens starts to skew the Web advertising market and what once were many independent sites fall prey to a cycle of consolidation under the umbrella of TV networks.

Sounds great, doesn't it?

I see two things wrong w/ this...

[HTMLSpinnr]

1. For classic shared hosting solutions using name based hosting, I can almost guarantee if you hit https:///, you're going to hit someone else's virtual host. Many cheap hosting providers w/ limited public IPs will load up domain names on a single IP/Port, but still provide secure hosting to one domain name (on the same port) for shopping cart checkout under a different domain name. Using such a plugin in this use case would not work so well. Then again, would most "smaller sites" really be worthy of encryption in the first place?

2. Not every site is designed w/ the same content root in http vs https. Switching from http to https may completely break if the file structures under the two virtual hosts (potentially entirely separate in Apache) aren't identical (i.e. pointing to the same directory). I'm not touting that this is a best practice, but would be completely feasable if you wanted to keep specific content from being accessed via http and didn't want to bother with mod_rewrite or equivalent.

To the poster above who says there's little CPU penalty for SSL, SSL may not be taxing on the client, but hundreds or thousands of sessions on a server (especially one hosting an app, DB, and Apache) may be another story. Why is someone's assumed paranoid that someone will see that they're reading about cars or home theater equipment on a forum worth requiring a service owner to scale his hardware to the next level to maintain acceptable performance (assuming this phenomenon is multiplied hundred-fold)?

Re:I see two things wrong w/ this...

[HTMLSpinnr]

Woops, that should be https://www.[my lame site].com

Re:I see two things wrong w/ this...

[Tim+C]

How on earth is correcting a formatting/display issue in your own comment Offtopic?!

Re:I see two things wrong w/ this...

[sabt-pestnu]

Why is someone's assumed paranoid that someone will see that they're reading about cars or home theater equipment on a forum worth requiring a service owner to scale his hardware to the next level to maintain acceptable performance (assuming this phenomenon is multiplied hundred-fold)?

A curious question, that. You're asking what it is worth to the user of a site to justify the demands placed upon the operator of the site. You pose it as "demands upon the server", yet simply visiting a site creates demands upon the server. More people, more demands.

How is asking for HTTPS different from asking for "reasonable page load times", or "video feeds without compression artifacts"? On the user's side, one has little to no influence over (or even knowledge of) OTHER traffic to the site. The answer for the user is, "MY demand on the server is small, what's the problem?".

The only answers on the operator's side are "I want your traffic", or "I don't want your traffic".

Re:I see two things wrong w/ this...

[HTMLSpinnr]

How on earth is correcting a formatting/display issue in your own comment Offtopic?!

I wondered the same thing... Though now it is OT.

Re:I see two things wrong w/ this...

[HTMLSpinnr]

A curious question, that. You're asking what it is worth to the user of a site to justify the demands placed upon the operator of the site. You pose it as "demands upon the server", yet simply visiting a site creates demands upon the server. More people, more demands.

How is asking for HTTPS different from asking for "reasonable page load times", or "video feeds without compression artifacts"? On the user's side, one has little to no influence over (or even knowledge of) OTHER traffic to the site. The answer for the user is, "MY demand on the server is small, what's the problem?".

The only answers on the operator's side are "I want your traffic", or "I don't want your traffic".

The loads on the web server are a bit higher for HTTPS encryption than just passing fat content created by a developer without any common sense of bandwidth consumption.

Now if you're referring to server-side generated content contributing to page load times, then HTTPS isn't helping that provided the same server that is generating is the one doing the encryption.

Re:firefox doesn't really make it easy for the use

[sinthetek]

Unfortunately far too many admins (and browser developers) seem to be brainwashed into believing CA's are an absolute necessity. Not everyone is as worried about identification as they are encryption/sniffing by governments and ISPs. Some people simply don't like the idea of trusting the security of their site with a third party (who could still perpetrate or facilitate a MITM themselves using the info you entrust them with) or cannot afford a widely recognized one. I understand a warning but it seems like FF goes too far out of it's way to make scare users away from self-signed certs which results in a LESS secure web as admins opt for the unprotected data xfer rather than scaring off visitors. Just like the use of DULs as a spam countermeasure, the end result is a sort of centralized/classist Internet upon which people can do certain things if they have enough extra $$ to pay for them and are willing to forfeit various freedoms/virtues in return - which runs counter to the idea of a Free and Open Internet.

short summary of how this https redirection works?

[Eric_ColonSlashSlash]

Is there any short summary of how this https redirection works? Is a third party to be trusted?

Re:firefox doesn't really make it easy for the use

[Burz]

Why is FF showing this to the users as an error? This is not an error, this is by design and it is a special case of usage. Who is not frustrated by the browser treating self signed certificates as if they are some sort of a disease? They provide an important role - a way to secure communications between the server and the browser.

It is an error in judgment on Mozilla's part. Their increasing institutional-mindedness is causing them to send users always into the arms of the CAs -- preferably with no exceptions. The mindset has blinded them to the fact that is it a relatively straightforward UI design issue. Speaking of which, if I were in charge at Mozilla the first thing I would change about the cert warning dialog would be to display the server's fingerprint so its immediately in the user's face. Imagine if websites could publicize their fingerprints (say, on their company letterhead, business cards, in a voicemail menu option, etc.) so anyone could verify your self-signed cert with a little effort. That and a more ssh-like cert recognition could enable a revolution in security.

Lawyers are more expensive than SSL

[tepples]

you'll have a much easier way of proving ill intent

Proving to whom? Losing something and using the court system to get it back can be too expensive for individuals or home-based businesses. SSL is cheaper than a lawyer.

Re:Lawyers are more expensive than SSL

[Bazer]

Losing something and using the court system to get it back can be too expensive for individuals or home-based businesses. SSL is cheaper than a lawyer.

Most data is useless and once it's "out" you won't get it back anyway. I'm talking about using self-signed certificates for data that isn't really worth encrypting in the first place but can act as a tripping alarm or honey pot. Granted you're in deep, if you have to resort to this kind of tactic but it's there if you need it.

Re:Lawyers are more expensive than SSL

[roman_mir]

I am the original poster and have already replied to the tepples (the poster you are arguing with) there, he does not understand my use case.

I have a site that nobody can login into unless they are set up as users first by the administrator, who will also provide temporary passwords and certificate numbers to the end users.

We do not have access to the end users' computers, so we can't install certificates for them, but we tell them what they are.

An ERROR shown by FF is not the same as a WARNING that a self-signed certificate is used. The end users are instructed to check the certificate number so that there is no MITM attack.

This is an error on part of the browser's team, they think they understand all possible business scenarios and this shows in the dumbass UI choice here.

Some hosting co's will let you use a shared cert

[Burz]

I'm not saying the demand for HTTPS will fit nicely with all the options we have now. But its healthy to grow the demand for it... then more options will open up.

Google HTTPS not quite everywhere, for the record

[andrewagill]

``This Firefox extension was inspired by the launch of Google's encrypted search option.''

Unfortunately, Google still has a way to go before it can do that. Google still has not secured Google Products, Images, Maps, Finance, Translate (now, there's something that should be secure), Scholar, Custom Search, Earth, Directory, Patent Search, iGoogle, GOOG-411, Alerts, Knol, Sketchup, and I don't know about Talk.

Still, it's only been a few days. I'm sure they'll have those up in no time.

CPU overhead

[SuperBanana]

why not Slashdot?

Slashdot is a business. Always was (you never noticed the blatant product endorsements?), always will be.

SSL certs cost money, and SSL connections cost CPU cycles. Remember how fanatical they were about banning people who reloaded the feeds too often (in their opinion)?

Given that this site only just barely adopted CSS in the last year or two, I think you should wake up and smell the coffee: Slashdot is in Coast Mode. FSDN or whoever owns them right now is only interested in advertising revenue, and that's probably so low that any improvements (like implementing SSL) would be a major hit to that revenue stream.

Re:CPU overhead

SSL certs cost money? Seriously? That's supposed to be a legitimate excuse? It's not like you have to pay per-user to license an SSL certificate -- we're talking about tens-of-dollars per server-year here. They probably spend more money hosting the comments related to requests for SSL support than they would on SSL certificates.

Cycles is somewhat more legitimate. In 1997 SSL was relatively expensive. It still adds CPU time now, but if you've got your web servers isolated from the app servers it should *not* be expensive to add the necessary power in 2010.

Re:CPU overhead

[Thing+1]

SSL certs cost money

In fact I just researched this, and found a site that sells a cert that 99% of the current browsers accept, for about $70/year (lower when purchased in bulk). Sure, that completely aligns with your statement -- it isn't free -- but your statement sounds more like Jamie Lee Curtis saying "Food costs money, rent costs money, things cost money Louie; you sleep on the couch" than it does "stop buying coffee at Starbucks for a month and it's paid for".

No no no

[Snaller]

Firefox is slow enough as it is.

Re:No no no

[andrewagill]

I hear it works faster if you add --funroll-all-loops to CFLAGS in your make.conf.

But for most people, the slight difference in speed is probably unnoticeable, and worth the increase in privacy. If you really care about the slight difference in speed, there are probably better things to fix before you start working on your encryption settings.

Perspectives to strengthen KCM

[tepples]

Perspectives is an interesting method to strengthen "key continuity management" style PKI. But I already see a couple problems:

• It wouldn't warn about a man in the middle that has been present since day one. This can be the case in a "great firewall" tyep scenario with a man in the middle between the hosting company and the Internet backbone.
• I don't see an extension for IE, Chrome, Mobile Chrome (nickname for Android browser), Safari, or Mobile Safari (Apple iOS browser). To communicate securely with users of those browsers without MITM vulnerability, it appears I'd still need to buy an SSL certificate.

Re:Perspectives to strengthen KCM

[Timothy+Brownawell]

It wouldn't warn about a man in the middle that has been present since day one. This can be the case in a "great firewall" tyep scenario with a man in the middle between the hosting company and the Internet backbone.

Yes, but anyone with the power to do that can fool a typical CA's validation procedures as well (fooling the CA should actually be easier, since that only requires sustaining the attack for a few days instead of forever).

I don't see an extension for IE, Chrome, Mobile Chrome (nickname for Android browser), Safari, or Mobile Safari (Apple iOS browser). To communicate securely with users of those browsers without MITM vulnerability, it appears I'd still need to buy an SSL certificate.

This is one of the few reasons I'm still using Firefox/Iceweasel (others being: the master password, vertical tabs (treestyle tabbar extension), and adblock plus).

Your service provider is spying on you

[gringofrijolero]

What difference with this make? If security actually becomes effective, it will be outlawed. You already have mandated back doors in much of your hardware.. It won't be much longer until you will be required to use a state issued ID card to use a computer, especially on the net.. (See Burma and Thailand)

Re:Your service provider is spying on you

and you're an idiot.

Re:firefox doesn't really make it easy for the use

[roman_mir]

I only need to send them the certificate number, but at least the site wouldn't show up as an ERROR if FF did this right, but as a warning - self signed certificate.

Re:security by idiocy is still idiocy, not securit

[roman_mir]

You are the idiot - my business model only allows people who are known to the site to log in, because their username/initial password are created by the administrator, then they get their certificate number and instructions to compare the numbers on the first sign on.

You are the idiot with NO amount of imagination.

You are also an anonymous coward replying this way, should I say more?

I'm gonna wait...

Does anyone know when the Chrome version is going to be released?

No it FARKING DOESN'T

No farking way in hell are our servers going to send you HTTPS responses from our non-HTTPS sites.

Even if there was a way for the client to trick them into doing so, the gateways/firewalls have port 443 closed on those IP addresses.

Stupidest product name ever.

Re:firefox doesn't really make it easy for the use

[roman_mir]

and force all of my users to use just one browser I wrote? Very good business idea, thank you, I am sure it will work well, you are a genius.

Re:firefox doesn't really make it easy for the use

[roman_mir]

and they do, and they compare the cert number provided to them to the one showing up in the browser. But this is NOT an SSL ERROR, this is a WARNING. It's very poor UI design here.

It'd work for a blog but not a forum

[tepples]

This is one of the few reasons I'm still using Firefox/Iceweasel

That's fine and dandy if you are the only person who ever logs in to your site. But can you get the three-fourths of your customers who don't use Firefox to switch? It works for a blog, but not a blog that requires registration to comment, and not a forum.

Self-signed certs are not security theater

[Sloppy]

So in other words, a self-signed certificate is security theater.

No, it's an improvement over using plaintext, because it escalates the situation, requiring the attacker to use an active attack.

The NSA can (presumably) afford to passively snoop and search all plaintext that is passing over a backbone. If you make them MitM a billion unauthenticated encrypted connections, you have just dealt a staggering blow to their budget. You've also improved the chances that they'll get caught, either by someone noticing an increase in latency, or by them incorrectly assuming that a connection was unauthenticated when actually it was authenticated. (Remember: nobody in the middle actually knows whether or not you have checked the identity out of band.)

Self-signed certs are anything but security theater. They are a massive improvement over the status quo.

Oh and if I can get a little futurist/preachy..

If everyone who currently doesn't use encryption, started to use weakly-authenticated encryption, it would draw more attention to the certification problem, since it would be a relevant issue in most connections. Read through the comments here and you'll see people giving reasons for why they use self-signed certifications rather than paying Verisign. Increasing the use of self-signed certs would exert a market pressure to address those reasons.

• It's kind of weird that you have to pay someone to get signed. (I never had to pay anyone to sign my pgp key.)
• It's sad that browser makers, rather than users, are making the default choice about what signers are trusted.
• Related to the above two things: there's a dearth of CAs out there (which is why the prices are so high and the trusted-by-default choices are so limited). Think about all the people in real life that you either have to authenticate to (e.g. showing photo id when you open a bank account) or who already know you (e.g. mother). Those are all potential CAs.
• It's ridiculous to the point of shocking absurdity, that identities can/must only be certified by one single authority, and that authority is always completely trusted or completely untrusted.

The solution to these problems (OpenPGP) has been available for a couple decades now. The more we use crypto and therefore the more often the "how can I trust I'm talking to who I think I'm talking to?" question comes up, the more our expectations will start to demand the newer (1988-1990) tech.

Re:firefox doesn't really make it easy for the use

[profplump]

It's not *any* better? I seems about 4000 times better to me.

With plain HTTP anyone in range of my WiFi network can sit passively and catch my credentials without ever even sending a packet. And they could do the same for every single user on my network without any additional work. With encrypted but unauthenticated HTTPS an attacker would need to actively insert themselves into my stream and fake both sides of the transaction to intercept my credentials. And they'd have to maintain a separate session for each additional user on my network.

I agree that protecting against MitM attacks is also a worth goal, but to claim that encryption is useless without authentication is like claiming that locking your door it worthless because anyone with a key could unlock it.

Re:Google HTTPS not quite everywhere, for the reco

[Tim+C]

Google also doesn't have HTTPS available on their www.google.co.uk domain; it redirects back to HTTP.

What could possibly go wrong?

Oh, what could possibly go wrong with rewriting URLs? Well, plenty, companies have loadbalancers and all kinds of complicated setups. So I hope people understand that rewriting stuff like this might result in unexpected behaviors and errors. You know, there might be a reason why they have it as http.

mod this guy up

[Sloppy]

How ridiculous is it, that people get their bank's identity vouched for by a third party they have never met and don't know anything about, when the bank could just put up a fingerprint sign in their lobby and on their paper statements? And people say using a CA is more secure, and less vulnerable to MitM? Really?!?

Re:mod this guy up

[Burz]

You put your finger on it.

To elaborate, it's not the self-signed cert that's less secure or the CA-signed cert that's more secure, it's the user-verified-and-saved cert that's more secure. It's the user's ability to do the latter that makes the biggest improvement in security.

Re:mod this guy up

[roman_mir]

Yes, and my users get their user names/temporary password + certificates when they are signed up for the usage of the app.

What FF does here, it's treating a self-signed certificate (which my users know the correct numbers for) as if it was actually WORSE than plain text login over HTTP.

You don't get any of these insane ERRORS in a browser when you are presented with an HTTP site that asks you for a user name/password combination and for https you get an SSL ERROR FIRST!

Re:mod this guy up

Because people would actually do that when they're on vacation and trying to check their bank balance from the hotel wifi. Right? Your solution is perfectly secure in theory, and yet it will fail completely, utterly, and totally in real-world conditions when used by actual human beings who are lazy, impatient, and often just plain dumb.

Re:mod this guy up

[Burz]

Because people would actually do that when they're on vacation and trying to check their bank balance from the hotel wifi. Right? Your solution is perfectly secure in theory, and yet it will fail completely, utterly, and totally in real-world conditions when used by actual human beings who are lazy, impatient, and often just plain dumb.

No, your analysis fails completely.

Banks would still use CAs... The expense of using the CAs is justified in their case because they have large revenues and the cert expense is relatively small. It would be nice, however, if banks also made their cert fingerprint available out-of-band for people who want the extra level of verification.

You're also making an unreasonable assumption about travelers: They're either going to use their own computer (which already has the verified certs), or someone else's. In the latter case, anyone in their right mind would avoid accessing their bank accounts and use the phone instead to check their bank balance.

End users install CA cert

[tepples]

The user is instructed to check the certificate number during installation to avoid a possible MITM attack.

What's the practical difference between the end user checking the certificate number and the method I mentioned in this post, which Firefox and possibly other browsers like better?

Re:End users install CA cert

[roman_mir]

The difference is that not all the users will install the CA, but if they don't, they will see something that is not true - SSL Error message, except that there is no error.

Re:End users install CA cert

[tepples]

If your primary gripe is the difference between "error" and "warning" in Firefox's message, consider that there are plenty of valid HTML, CSS, and JavaScript constructs for which Internet Explorer has errors.

Re:End users install CA cert

[roman_mir]

and so what? This is still wrong.

Re:End users install CA cert

[tepples]

My final point is that a lot of things in the real world are wrong. A business has to work around wrong because it isn't going to change all the wrong in the world.

Re:End users install CA cert

[roman_mir]

that's a pretty bad point to make.

This thing can easily be fixed and it can lead to many more sites switching to full encryption if encryption methods are simplified and sites don't show up as errors.

You are just wrong on this.

Re:firefox doesn't really make it easy for the use

[tepples]

A browser won't throw an error or even a warning if the user installs the CA certificate (which is a separate certificate from the SSL certificate) before visiting the SSL site.

This isn't possible on IPv4

[MobyDisk]

Every site can't have HTTPS until every site has it's own IP address. HTTPS does not support multiple hosts with different names on a single IP.

Re:This isn't possible on IPv4

[canajin56]

Which is why this plugin is necessary. When a site that supports HTTPS is added to the plugin, it gets special rules for resolving. So, you can go to http://some_site.com/ and it will automatically redirect to https://their.host.com/~their_account_id, including fixing all of their intra-site URLs. That's how it works for wikia, which hosts many wikis besides Wikipedia. They're all available as subdirectories from the main host, though, so this plugin can get them all working. (No images though).

Re:This isn't possible on IPv4

A shitty work around that will not be widely used and thus useless.

Re:firefox doesn't really make it easy for the use

[icebraining]

mitm-proxy is an Java-based SSL proxy that acts as a "man in the middle". In other words, proxied HTTPS requests are terminated by the proxy and resent to the remote webserver. The server certificates presented to the client (i.e. a web browser) are dynamically generated/signed by the proxy and contain most of the same fields as the original webserver certificate. The subject DN, serial number, validity dates, and extensions are preserved. However, the issuer DN is now set to the name of the proxy's self-signed certificate and the public/private keys of the proxy are used in creating the forged certificate. These forged certificates are cached (in memory) by the proxy, for better performance.

This, combined with DNS spoofing (which is peanuts), kills almost any security provided by the self-signed cert.

Re:firefox doesn't really make it easy for the use

Then tell your users to accept the certificate permanently the first time they visit your site after they verify the information being presented by FF during the error.

If the word "error" really bothers you, you can certainly build your own browser that uses something different or does something different and distribute it to your customers for them to use when they interact with your website.

But if your customers choose to use the standard FF, then you need to accommodate and respect your customers choices.

B*tching about how FF works or doesn't work to your liking on /. because you clearly do not have a clue about how PKI actually works isn't really going to change anything.

There are low-cost CAs out there and even a free OpenCA, but the problem remains that the CA that issues anonymous certificates will probably never be routinely trusted on a large scale.

If the deal is that you know that your website is who its certificate says it is, then pony up and get a certificate from a CA that is in your user's browsers. If you don't like the prices from ANY of those CAs, then that's your problem, and not the rest of /. readers or the FF developers issue to solve for you.

Personally, I strongly feel that whatever content is that you have on your site is worth what you're willing to pay for a certificate for your subscribers to be sure that it really is you that is producing this content. That is if you even have the legal right to distribute it, which may be why you don't want to identify yourself in a way that can be verified and validated by any third party.

And I doubt that you're running WikiLeaks or a copy-cat site like it, or you would have already gone down the path of using OpenCA and establishing PGP-based web-of-trusts with your customers.

Re:firefox doesn't really make it easy for the use

[icebraining]

Not everyone is as worried about identification as they are encryption/sniffing by governments and ISPs.

Using a self-signed cert doesn't protect from them if they really want to spy on you, they'd just mitm-proxy your connections. Using a CA provided can at least make it more difficult, but the only way to be sure in those cases is to manually verify the cert's data.

But I agree that Firefox shouldn't warn against them - only don't treat them as secure as CA verified ones.

Re:Google HTTPS not quite everywhere, for the reco

[mdsharpe]

Neither Facebook nor PayPal worked properly for me with this extension enabled. Facebook Chat seems to be disabled on HTTPS (not a great loss I admit), and a PayPal transaction I attempted just failed.

The server needs to privde https, right ?

[godrik]

I didn't read TFA, but something is bothering me.
You can not connect in https to a web server that does not provide https ! Sur you could wrapt the connection in a secure socket between you and a proxy and then the proxy connect in unsecured standard http to the web server.

But that's not https everywhere! it just protect spying between you and the proxy. The whole connexion is not encrypted...

(or should I have read TFA ?)

Disconnected webs of trust

[tepples]

It's kind of weird that you have to pay someone to get signed. (I never had to pay anyone to sign my pgp key.)

You had to pay the airline when you flew to the key signing party, or someone from another city had to pay the airline when he flew to your key signing party. Disconnected webs of trust, one for each city, aren't too useful.

It's sad that browser makers, rather than users, are making the default choice about what signers are trusted.

They have more resources than individual users to vet the policies of trusted introducers.

Think about all the people in real life that you either have to authenticate to (e.g. showing photo id when you open a bank account)

If governments, which issue these IDs, were to get into the CA business, right-wing pundits would cry "socialism".

Re:Disconnected webs of trust

[Sloppy]

You had to pay the airline when you flew to the key signing party

I was going to indignantly say that I'm not wealthy enough to fly for the purpose of keysigning; it's something I do because I happen to be there. So it's free! But not so fast...

There's sense in what you say. Whenever I travel, I ought to somehow divide up my travel cost across all the things I do there. If I pay $600 for a plane ticket to Portland and then hand $4 to a bartender for a beer, then the beer costs $4+$600/x (where the value of x is something I totally don't know how to compute, but it's something). Same for the keysigning meeting. Ok, fair enough.

The neat thing about your accounting approach, is that I still only credit cash by $600. If I'm offsetting that by debiting beer expense, keysigning expense, etc by amounts that add up $600, there ends up being nothing to apply to travel expense. I fly for free!! Woohoo! Ergo, then if I can get someone else to buy my beer, pay for my keysigning meeting, etc while I'm there, I'll make a profit!

Re:Disconnected webs of trust

[tepples]

I understand your accounting tricks. But in my case, I know of no other reason to travel in the first place. So if I were to adopt PGP, I could only get my key signed within my home town, and I fear that that's not enough to get my Bacon number down to trustable levels.

Digest auth with AllowOverride None?

[tepples]

Unlike form authentication, digest authentication through CGI also requires access to URL rewriting through .htaccess, to which a lot of hosting providers don't give customers access (AllowOverride None).

Correct, the server must provide HTTPS and...

seeing as how any admin with two functioning brain cells to rub together will have made sure not to have configured HTTPS on a site unless the site needs it,

AND

the gateways and firewalls will have been configured to block HTTPS on the site's IP address(es) -- because only an idiot opens ports that they don't need -- so the HTTPS is not going to make it to/from the server.

Ironically...

[bwcbwc]

eff.org uses a certificate from a CA that I marked as untrusted during the scandal over certificates issued without verification that Eddy Nigg uncovered in 2008 ( https://blog.startcom.org/?p=145 ). He was able to get a certificate for mozilla.com, no questions asked.

So out of the frying pan and into the fire. Is the link in the OP REALLY from eff.org? Or is it the world's most elaborate phish yet?

Chrome?

[CosaNostra+Pizza+Inc]

This extension should be do-able in Chrome/Chromium too.

You're not dealing with this right.

[raehl]

It's silly NOT to expect a business to care about anything other than profit. Profit is pretty much the sole determination as to whether a business survives.

And there's nothing wrong with that. Once you ACCEPT that a business should only care about maximizing profit, then you understand how to get a business to operate in an ethical manner: Make it profitable.

You can do that with consumer pressure, laws, taxes, penalties, subsidies, handouts....

So don't get upset that businesses are only interested in profits. Embrace it and make it work for you!

Re:You're not dealing with this right.

You can do that with consumer pressure, laws, taxes, penalties, subsidies, handouts....

So don't get upset that businesses are only interested in profits. Embrace it and make it work for you!

We only need to look to the most corporate orientated country in the world, USA Inc, to see how that strategy has worked out. Hint: Every time a politician says "Jobs", replace the word in your mind with "Profits" - then you will then begin to see, one political speech after another, how it is the corporations that run politics telling society what's ethical or not, and not the other way around. Oil Spills, War's, you name it...

Chome

[brunes69]

When can I get a Chrome version?

Re:firefox doesn't really make it easy for the use

[sinthetek]

"Using a CA provided can at least make it more difficult" The same argument can be made for self-signed certs. They aren't foolproof but they at least make it more difficult for potential eavesdroppers. The big difference is that you aren't forced to entrust your security to a third party who is not only a bigger/riper target but whose interests might [eventually] run counter to your own. Forcing people to choose between "All" or nothing often leads them to choose nothing which isn't a good thing. IMO just about everything on the Web should be ciphered in these days of government and ISP snooping.

Law, not profit Re:You're not dealing with this...

[rhyre417]

I agree that the profit incentive is powerful, but this misses the fact that corporations are constructs of the law, and are
bound by it.  A corporation that violates its charter, or violates the law, should expect the "death penalty" in the form of
bankruptcy, or losing its right to do business in my state.

A business isn't a natural person, and corporations require approval (in the form of a charter or articles of incorporation) to exist.
Charters ARE revokable.  It doesn't happen often, but I expect a business to follow the law, and if that law says
"corporation must pay taxes", or "corporation must give 10% of its profits to a charitable 501(c)3", then I'm not concerned
about undue putting a burden on them, since every other corporation is expected to play by the same rules.