Sends the url for *all* visited websites in the clear.

haystack / eyebrowse-chrome-ext

reviving eyebrowse

http://eyebrowse.csail.mit.edu/

MIT License

13 stars 7 forks source link

Open Stebalien opened 8 years ago

Stebalien commented 8 years ago

When the user clicks on the eyebrowse icon, it

Sends the current url to the eyebrowse servers regardless of whether or not it has been whitelisted.
It does so in the clear (over http).

This means that potentially sensitive URLs are sent unencrypted over the network to eyebrowse.