How long did it take to fix the issue? Assuming that it is a simple task to fix, then why was it not fixed when I reported it on May 26th nor when I reported it again on June 24th?
Note the irony of http://google.com/safebrowsing triggering a Facebook "unsafe link" security warning. Looks like the code is using a substring match, which might be incorrect logic.
Could you provide disclosure regarding how this categorization system works?
I don't think there's a problem with parsing the URL because it clearly is able to load up the preview. All I can say is, MAN! They really don't want you helping people with Tor.
Any sane debugging process should proceed beyond this stage. :-)
We've been thinking of state surveillance for years because of our work in places where journalists are threatened. Tor's anonymity is based on distributed trust, so observing traffic at one place in the Tor network, even a directory authority, isn't enough to break it. Tor has gone mainstream in the past few years, and its wide diversity of users -- from civic-minded individuals and ordinary consumers to activists, law enforcement, and companies -- is part of its security. Just learning that somebody visited the Tor or Tails website doesn't tell you whether that person is a journalist source, someone concerned that her Internet Service Provider will learn about her health conditions, or just someone irked that cat videos are blocked in her location.
Trying to make a list of Tor's millions of daily users certainly counts as widescale collection. Their attack on the bridge address distribution service shows their "collect all the things" mentality -- it's worth emphasizing that we designed bridges for users in countries like China and Iran, and here we are finding out about attacks by our own country. Does reading the contents of those mails violate the wiretap act? Now I understand how the Google engineers felt when they learned about the attacks on their infrastructure.
 https://twitter.com/electrospaces/status/485193336912093185 (scroll up)
Cannot connect to the real torproject.org
Something is currently interfering with your secure connection to torproject.org.
Try to reload this page in a few minutes or after switching to a new network. If you have recently connected to a new Wi-Fi network, finish logging in before reloading.
If you were to visit torproject.org right now, you might share private information with an attacker. To protect your privacy, Chrome will not load the page until it can establish a secure connection to the real torproject.org.
You can try running:
$ openssl s_client -connect blog.torproject.org:443 -showcerts > /tmp/log
to get the certificates that are coming back. You can copy and paste a "-----BEGIN CERTFICIATE-----" ... "-----END CERTIFICATE-----" block into `openssl x509 -text -noout` to get a dump.
I would guess that it's a self-signed certificate fronting a "sorry, this site is blocked" page.
Seriously? It's not _perfectly_ clear who I'm talking about?
We begin therefore where they are determined not to end, with the question whether any form of democratic self-government, anywhere, is consistent with the kind of massive, pervasive, surveillance into which the Unites States government has led not only us but the world.
This should not actually be a complicated inquiry.
"...we designed bridges for users in countries like China and Iran, and here we are finding out about attacks by our own country."
I don't really know what to say to the NSA/Snowden/etc. stories any more. Intellectually, I understand that each new worst revelation is worse than its predecessor - emotionally though, none of it even surprises me any more.
...come on Fort Meade, I want to be surprised. Drop something really juicy. Something so diabolical that it's actually cool.
As it happens, I am not a US citizen. I have no recourse to the ballot box or indeed any other entity to affect the NSA's actions. I, and the other 6.5 billion of us, have very little option but to sit back and watch this story.
Or are you in the 'I am not interesting' camp? Because, you might be interesting one of these days. Are you going to snare us all in your net?