Closed Bug 1225451 Opened 9 years ago Closed 9 years ago

Add preloaded certificate pins for Firefox OS sync (e.g. syncto)

Categories

(Firefox OS Graveyard :: Sync, defect)

Product:

Component:

Platform:

ARM

Gonk (Firefox OS)

Type:

defect

Priority:

Not set

Severity:

normal

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: freddy, Unassigned)

References

Details

(Keywords: sec-want)

Frederik Braun [:freddy]

Reporter

Description

•

9 years ago

This is to make sure we implement certificate pinning for the connection between Firefox OS Sync and the Syncto Server. We already have a preloaded pin at <https://dxr.mozilla.org/mozilla-central/source/security/manager/tools/PreloadedHPKPins.json#214> if the Syncto Server is running under *.services.mozilla.com.

Frederik Braun [:freddy]

Reporter

Updated

•

9 years ago

Blocks: 1212834

Rémy Hubscher (:natim)

Comment 1

•

9 years ago

The production one will be served from syncto.services.mozilla.com

Frederik Braun [:freddy]

Reporter

Comment 2

•

9 years ago

THanks Rémy! Marking this fixed then.

Status: NEW → RESOLVED

Closed: 9 years ago

Resolution: --- → FIXED

You need to log in before you can comment on or make changes to this bug.