Bug 1674735 Comment 9 Edit History

Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.

Original comment by

Frederik Braun [:freddy]

on 2020-11-17 00:54:03 PST

### ESR Uplift Approval Request
* **If this is not a sec:{high,crit} bug, please state case for ESR consideration**: blocking a non-HTTP port for HTTP traffic.
* **User impact if declined**: less protection
* **Fix Landed on Version**: 
* **Risk to taking this patch**: Low
* **Why is the change risky/not risky? (and alternatives if risky)**: Might be risky if enterprises run stuff on very odd ports in their intranet. We don't have telemetry for this. We can override the blocking with a remote pref, but I honestly don't know if these overrides would be valid for ESR or if we'd remove the protection on all branches.
* **String or UUID changes made by this patch**:

Revision 1 by

Frederik Braun [:freddy]

on 2020-11-17 01:00:33 PST

### ESR Uplift Approval Request
* **If this is not a sec:{high,crit} bug, please state case for ESR consideration**: blocking a non-HTTP port for HTTP traffic.
* **User impact if declined**: less protection
* **Fix Landed on Version**: 
* **Risk to taking this patch**: Low
* **Why is the change risky/not risky? (and alternatives if risky)**: Might be risky if enterprises run stuff on very odd ports in their intranet. We don't have telemetry for this. Users can override with a pref. We can also override the blocking with a remote pref, but I honestly don't know if these overrides would be valid for ESR or if we'd remove the protection on all branches. And this bug here is a public issue )
* **String or UUID changes made by this patch**:

Back to Bug 1674735 Comment 9

Bugzilla

Quick Search

Bug 1674735 Comment 9 Edit History