Yep. This looks like a bug in STARTTLS Everywhere, and we're working on it!
One of the nice features of the policy list is that you can put your server on it in testing mode. In testing mode, any failure in TLS negotiation is logged and reported, but the message is sent over the insecure…
Thanks for catching that! We definitely still have some bugs to work out.
I'm an EFF technologist, and we're looking into this!
We do mention both: see https://www.eff.org/deeplinks/2018/06/technical-deep-dive-st... To sum up from that post, we think STARTTLS Everywhere is a stop-gap measure until DNSSEC is fully deployed, and STARTTLS…
That's correct; Privacy Badger doesn't block anything by default because it doesn't use a blacklist. Instead, it observes the behavior of third-party domains and blocks them based on their behavior. (So it may take a…
They're both good at different things: NoScript blocks Javascript/Flash/etc. based either on a list you import, or on a case-by-case basis. I use it as a security measure, blocking potentially harmful content by default…
Yep. This looks like a bug in STARTTLS Everywhere, and we're working on it!
One of the nice features of the policy list is that you can put your server on it in testing mode. In testing mode, any failure in TLS negotiation is logged and reported, but the message is sent over the insecure…
Thanks for catching that! We definitely still have some bugs to work out.
I'm an EFF technologist, and we're looking into this!
We do mention both: see https://www.eff.org/deeplinks/2018/06/technical-deep-dive-st... To sum up from that post, we think STARTTLS Everywhere is a stop-gap measure until DNSSEC is fully deployed, and STARTTLS…
That's correct; Privacy Badger doesn't block anything by default because it doesn't use a blacklist. Instead, it observes the behavior of third-party domains and blocks them based on their behavior. (So it may take a…
They're both good at different things: NoScript blocks Javascript/Flash/etc. based either on a list you import, or on a case-by-case basis. I use it as a security measure, blocking potentially harmful content by default…