On Tue, Sep 03, 2013 at 06:25:01PM +0200, Paul Wise wrote: > On Tue, Sep 3, 2013 at 6:02 PM, Luke Faraone wrote: > > Camo is all about making insecure assets look secure. This is an SSL > > image proxy to prevent mixed content warnings on secure pages. > > Is distributing software that pretends it is secure a good idea? This provides integrity protection and last-mile confidentiality to images, thus preventing a local network attacker from seeing the images you request (allowing for possible disclosure of the content you're viewing) or changing their content (to misinform, confuse, or shock). It of course does not prevent an attacker from modifying the content or noticing its access if the attacker is in the path between your datacentre and the image source. However, even in this case, it provides some security insofar as it may prevent the attacker from knowing who is accessing the image. -- Luke Faraone;; Debian & Ubuntu Developer; Sugar Labs, Systems lfaraone on irc.[freenode,oftc].net -- http://luke.faraone.cc PGP fprint: 5189 2A7D 16D0 49BB 046B DC77 9732 5DD8 F9FD D506
Attachment:
signature.asc
Description: Digital signature