<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Fri, May 24, 2013 at 9:38 AM, oneofthem <span dir="ltr"><<a href="mailto:oneofthem@lavabit.com" target="_blank">oneofthem@lavabit.com</a>></span> wrote:<br>


<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Why doesn't https everywhere include sites that use self signed certs?<br>
Its not like having a CA signed cert makes a site more secure.<br></blockquote><div><br></div><div>To the best of my knowledge, it does. Only, probably, no one has written rules for the websites you have in mind.<br>These are the rulesets (files) for websites with self-signed certificates that are already present in HTTPS-Everywhere:<br>


<br>ApplyYourself.xml<br>Bangor-University-self-signed.xml<br>CARI.net-self-signed.xml<br>Digiweb-self-signed.xml<br>Hearst-Corporation-self-signed.xml<br>Igalia-self-signed.xml<br>Indiana-University-self-signed.xml<br>Logilab-self-signed.xml<br>


Maricopa-Community-Colleges-self-signed.xml<br>Memset-self-signed.xml<br>Mozilla-self-signed.xml<br>Nextag-self-signed.xml<br>Ohio-State-University-self-signed.xml<br>Performancing-self-signed.xml<br>PostgreSQL-self-signed.xml<br>


The-Flirble-Organisation-self-signed.xml<br>UCSD.edu-self-signed.xml<br>University-of-Chicago-self-signed.xml<br>University-of-Stuttgart-self-signed.xml<br>University-of-Washington-self-signed.xml<br>USPS-self-signed.xml<br>


Vispa-self-signed.xml<br>Williams-College-self-signed.xml<br>XFCE.org-self-signed.xml<br><br></div><div>Please, feel free to write any ruleset you want to add and submit it here!<br></div><div><br>For details on how to write rulesets:<br>


<a href="https://www.eff.org/https-everywhere/rulesets" target="_blank">https://www.eff.org/https-everywhere/rulesets</a><br></div><div><br></div><div>For any other information, ask here!<br></div><div><br>Claudio<br></div>

</div></div></div>