Open Bug 1538644 Opened 9 months ago Updated 7 months ago

Consider using a separate domain for MitM priming

Categories

(Firefox :: Security, enhancement, P3)

enhancement

Tracking

()

People

(Reporter: johannh, Unassigned)

References

(Blocks 1 open bug)

Details

In bug 1529643 we enabled automatically detecting man in the middle software using a priming network request to https://mitmdetection.services.mozilla.com/. According to reports from Philipp (SUMO), some AV vendors actually exempt Mozilla domains from their interception to allow for updates etc.

We should figure out if this is really an issue and if so, we should consider adding a new domain specifically for MitM detection.

See Also: → 1551266
You need to log in before you can comment on or make changes to this bug.