-VladV-

About me

Developer Information
Name -VladV-
User since January 25, 2009
Number of add-ons developed 0 add-ons
Average rating of developer's add-ons Not yet rated

My Reviews

User-Agent JS Fixer

Rated 5 out of 5 stars

A must-have addon for UAcontrol and/or User Agent Switcher users.

This review is for a previous version of the add-on (1.1.1-signed). 

HeaderControlRevived

Rated 4 out of 5 stars

A very useful plugin (especially after Quick Locale Switcher was abandoned and stopped working).

Torvin, could you please create a toolbar button to easily access plugin options?
UAControl and RefControl are two good examples of similar plugins with nice buttons and context menus.

This review is for a previous version of the add-on (1.1.1-signed). 

Perspectives

Privacy concerns - resolved Rated 5 out of 5 stars

I've checked current version (4.0), and it seems that the issues are mentioned earlier have been resolved. I don't see any unnecessary DNS lookups, and all the traffic goes via proxy if it is configured in Firefox.

Requests to Notaries stay non-encrypted, but this probably does not a pose any serious risk.

This review is for a previous version of the add-on (4.0).  This user has 2 previous reviews of this add-on.

Perspectives

Privacy concerns - resolved Rated 5 out of 5 stars

I've checked current version (4.0), and it seems that the issues are mentioned earlier have been resolved. I don't see any unnecessary DNS lookups, and all the traffic goes via proxy if it is configured in Firefox.

Requests to Notaries stay non-encrypted, but this probably does not a pose any serious risk.

This review is for a previous version of the add-on (4.0).  This user has other reviews of this add-on.

Perspectives

Nice, but there're some concerns about privacy Rated 4 out of 5 stars

A great add-on to mitigate possible MITM attacks.
However, in its current implementation (version 3.0.3) it compromises user's privacy by potentially letting an adversary know what sites the user visits.

1) DNS request leaks.
The addon performs a DNS lookup when user loads an HTTPS site or (!) switches to a tab where such site is open. Which is worse, it doesn't honor FF proxy settings and performs DNS lookup directly even if a proxy supporting DNS lookups is being used (for instance, user is browsing via Tor).

2) Requests to the Network Notaries.
The addon makes requests to the Notaries to check the certificates. These requests are sent in plain text (as HTTP GET), so any adversary who can see this traffic could know what site was visited by this particular user.

This review is for a previous version of the add-on (3.0.3).