Monica Chew
|
2c36fac925
|
Bug 1030135: Enable pinning on services.mozilla.com in test mode (r=keeler)
|
2014-09-05 12:04:26 -07:00 |
|
Monica Chew
|
5c4a88776f
|
Bug 1004781: Enable pinning in test mode for facebook (r=cviecco)
|
2014-08-27 14:18:25 -07:00 |
|
Monica Chew
|
afefa8ea41
|
Bug 1047560: Enable pinning on dropbox (r=keeler)
|
2014-08-01 13:12:38 -07:00 |
Camilo Viecco
|
2fb2490eb9
|
Bug 1004353 - Enable pinning for TOR websites. r=mmc
--HG--
extra : rebase_source : d880368dd9eaaafcde353ce187438ae074994bfa
|
2014-07-22 14:28:52 -07:00 |
|
Monica Chew
|
5d17335955
|
Bug 1020485: Enable production mode for fxa (r=keeler)
|
2014-07-14 13:06:25 -07:00 |
|
Monica Chew
|
0d4a092978
|
Bug 1036142: Don't use kPublicKeyPinningPreloadListLength (r=keeler)
|
2014-07-09 12:58:40 -07:00 |
|
Monica Chew
|
fccf311e4a
|
Bug 1035923: Remove deprecated certs from google_root_pems (r=keeler)
|
2014-07-08 16:01:29 -07:00 |
|
Monica Chew
|
dee96fd3f7
|
Bug 1027133: Set test_mode=false for *.twitter.com (r=keeler)
|
2014-07-07 08:58:13 -07:00 |
Harsh Pathak
|
7c4b2ba847
|
Bug 643041 - Merge nsIX509Cert2 and nsIX509Cert3 into nsIX509Cert, and merge nsIX509CertDB2 into nsIX509CertDB. r=keeler
--HG--
extra : rebase_source : 5283c637e45dbee9f741d56cda54fdef1afce16e
|
2014-07-03 22:09:24 -07:00 |
|
Monica Chew
|
43074631ad
|
Bug 1033872: Split off api.accounts.firefox.com into a separate pinset (r=keeler)
|
2014-07-03 16:41:57 -07:00 |
|
Monica Chew
|
cf58305707
|
Bug 1012875: Expire pins in 8 weeks once they reach stable (r=keeler)
|
2014-07-02 11:34:04 -07:00 |
|
Monica Chew
|
633c337197
|
Bug 1027133: Enable test mode for *.twitter.com (r=keeler)
|
2014-06-18 16:23:13 -04:00 |
|
Monica Chew
|
e49e9fc82b
|
Bug 1004352: Enable pinning for Google in production mode (r=keeler)
|
2014-06-11 15:32:37 -07:00 |
|
Monica Chew
|
916aa7eb2c
|
Bug 1020485: Enable pinning in test mode for accounts.firefox.com (r=keeler)
|
2014-06-06 13:44:59 -07:00 |
|
Monica Chew
|
d31edbefe1
|
Bug 1019772: Enable production mode on pinning AMO (r=keeler)
|
2014-06-03 11:00:39 -07:00 |
|
Camilo Viecco
|
b07e3b1b23
|
Bug 1016442 - Make mozilla cdn sites production on built-in list. r=mmc
--HG--
extra : rebase_source : 5d937b61ab86c974210dcc83735cd4308bff018e
|
2014-05-27 10:53:40 -07:00 |
|
Monica Chew
|
5d9a310465
|
Bug 1004351: Enable production mode for twitter pins (r=keeler)
|
2014-05-22 15:11:07 -07:00 |
|
Monica Chew
|
404c8597ce
|
Bug 1014344: Use Google's root pems in addition to their intermediate certs (r=keeler)
|
2014-05-22 15:09:45 -07:00 |
|
Camilo Viecco
|
e7518a4528
|
Bug 1009635 - PreloadedHPKP.json should also contain production/exclusion lists. r=keeler
--HG--
extra : rebase_source : 46c13e490358f26b21191d6d783d795897ceea63
|
2014-05-15 08:04:54 -07:00 |
|
Monica Chew
|
94e8967a9f
|
Bug 1007844: Implement per-host telemetry for pin violations for AMO and aus4 (r=keeler)
|
2014-05-15 16:56:51 -07:00 |
|
Monica Chew
|
010f4a4ced
|
Bug 1006594: Implement moz-specific telemetry (r=keeler)
|
2014-05-14 16:36:46 -07:00 |
|
Monica Chew
|
9aae1d6105
|
Bug 772756: Implement sha1 support, import Chrome's pinsets wholesale, add test mode (r=cviecco,keeler)
|
2014-05-08 17:18:50 -07:00 |
|
Camilo Viecco
|
4f866e23df
|
Bug 1007986 - Remove 1024 bit roots from mozilla pin list. r=mmc
|
2014-05-09 10:58:47 -07:00 |
|
Camilo Viecco
|
b529036d7c
|
Bug 1006107 - Disable pining by default, setup pinning for *.addons.mozilla.org. r=dkeeler
--HG--
extra : rebase_source : 93b1dbd5dc31490424060729a3941deffa8ee1d5
|
2014-05-05 13:59:32 -07:00 |
|
Monica Chew
|
7b1596592f
|
Bug 1005364: Disable pinning for all mozilla properties (r=keeler)
|
2014-05-04 15:36:38 -07:00 |
|
Monica Chew
|
8d3acf320f
|
Bug 1002696 - Minimum set of changes to make genHPKPStaticPins.js productionizable. r=cviecco, dkeeler
--HG--
rename : security/manager/boot/src/PreloadedHPKPins.json => security/manager/tools/PreloadedHPKPins.json
rename : security/manager/boot/src/genHPKPStaticPins.js => security/manager/tools/genHPKPStaticPins.js
|
2014-05-01 14:48:37 -07:00 |
David Keeler
|
c5bfa2424f
|
bug 969758 - ignore "snionly" property in Google's HSTS preload list r=cviecco DONTBUILD because NPOTB
|
2014-03-21 14:09:04 -07:00 |
|
David Keeler
|
b8f6622e6b
|
bug 947759 - unconditionally add Google sites to the HSTS preload list r=cviecco DONTBUILD NPOTB
|
2014-01-15 11:22:06 -08:00 |
|
David Keeler
|
cb931af8e3
|
bug 959796 - refactor error reporting in getHSTSPreloadList.js r=cviecco DONTBUILD NPOTB
|
2014-01-15 11:20:55 -08:00 |
|
David Keeler
|
e7c01f9f5b
|
bug 950253 - fix typo in getHSTSPreloadList.js r=briansmith DONTBUILD because NPOTB
|
2013-12-13 16:06:54 -08:00 |
|
David Keeler
|
726000e491
|
bug 903762 - be more strict about removing HSTS preload list entries r=cviecco
|
2013-08-15 15:48:39 -07:00 |
|
David Keeler
|
6be2e1d4e0
|
bug 887052 - rename nsIStrictTransportSecurityService to nsISiteSecurityService for refactoring r=cviecco r=mcmanus r=jst sr=jst
--HG--
rename : netwerk/base/public/nsIStrictTransportSecurityService.idl => netwerk/base/public/nsISiteSecurityService.idl
rename : security/manager/boot/src/nsStrictTransportSecurityService.cpp => security/manager/boot/src/nsSiteSecurityService.cpp
rename : security/manager/boot/src/nsStrictTransportSecurityService.h => security/manager/boot/src/nsSiteSecurityService.h
|
2013-08-02 15:48:37 -07:00 |
Ryan VanderMeulen
|
9973ce0c8b
|
Backed out changesets 5f8a88c6d0c8 and 97fcb5a154d8 (bug 887052) for OSX mochitest-other orange.
--HG--
rename : netwerk/base/public/nsISiteSecurityService.idl => netwerk/base/public/nsIStrictTransportSecurityService.idl
rename : security/manager/boot/src/nsSiteSecurityService.cpp => security/manager/boot/src/nsStrictTransportSecurityService.cpp
rename : security/manager/boot/src/nsSiteSecurityService.h => security/manager/boot/src/nsStrictTransportSecurityService.h
|
2013-08-05 16:18:06 -04:00 |
|
David Keeler
|
fd28a3ce4c
|
bug 887052 - rename nsIStrictTransportSecurityService to nsISiteSecurityService for refactoring r=cviecco r=mcmanus r=jst sr=jst
--HG--
rename : netwerk/base/public/nsIStrictTransportSecurityService.idl => netwerk/base/public/nsISiteSecurityService.idl
rename : security/manager/boot/src/nsStrictTransportSecurityService.cpp => security/manager/boot/src/nsSiteSecurityService.cpp
rename : security/manager/boot/src/nsStrictTransportSecurityService.h => security/manager/boot/src/nsSiteSecurityService.h
|
2013-07-01 09:30:11 -07:00 |
Ehsan Akhgari
|
ef4b479714
|
Bug 872127 - Part 2: Replace mozilla/StandardInteger.h with stdint.h; r=Waldo,ted
|
2013-07-30 10:25:31 -04:00 |
|
David Keeler
|
e021e62e30
|
bug 847621 - follow-up to fix SOURCE url r=bsmith DONTBUILD because NPOTB
|
2013-04-15 11:51:52 -07:00 |
|
David Keeler
|
9542fc882f
|
bug 847621 - HSTS preload list: be more careful about dropping sites r=cviecco sr=bsmith DONTBUILD because NPOTB
|
2013-04-12 10:20:01 -07:00 |
|
David Keeler
|
bf362e197b
|
bug 822771 - add timeout to getHSTSPreloadList.js' XHRs r=bsmith DONTBUILD (NPOB)
|
2013-01-29 11:56:57 -08:00 |
|
David Keeler
|
1f14212b7c
|
bug 819106 - update processStsHeader call in hsts preload list script r=bsmith DONTBUILD (NPOTB)
|
2012-12-06 16:46:00 -08:00 |
|
David Keeler
|
63402fa50e
|
bug 800444 - disable HSTS preload list if firefox has not updated in 18 weeks r=bsmith, mayhemer
|
2012-10-26 09:50:23 -07:00 |
|
David Keeler
|
27d5157e2b
|
bug 786417 - filter the hsts preload list to sites that actually send the header r=bsmith, mayhemer
|
2012-10-15 14:43:57 -07:00 |
|
David Keeler
|
b5bcf20091
|
Bug 760307 - Preloaded strict-transport-security site list. r=mayhemer, bsmith
|
2012-08-24 14:17:27 -07:00 |