[HTTPS-E Rulesets] More to GoogleServices.xml

Osama Khalid osamak at gnu.org
Sun Jun 5 08:30:19 PDT 2011


Here is a patch to cover googleusercontent.com which hosts tons of
user-generated contents. Currently, only a few subdomains are covered,
but it seems that *all* subdomains actually support HTTPS!

Also, translate.google.com/translate_a/ (which hosts some JS tools)
supports HTTPS.

And finally, google.com/googleblogs/ which hosts some images and CSS
also support HTTPS.

--Osama Khalid
-------------- next part --------------
diff --git a/src/chrome/content/rules/GoogleAPIs.xml b/src/chrome/content/rules/GoogleAPIs.xml
index 2c1da47..ffcb1af 100644
--- a/src/chrome/content/rules/GoogleAPIs.xml
+++ b/src/chrome/content/rules/GoogleAPIs.xml
@@ -4,15 +4,13 @@
   <target host="ajax.googleapis.com" />
   <target host="fonts.googleapis.com" />
   <target host="chart.googleapis.com" />
-  <target host="themes.googleusercontent.com" />
   <target host="translate.googleapis.com" />
-  <target host="webcache.googleusercontent.com" />
-  <target host="static.googleusercontent.com" />
-  <target host="api.recaptcha.net" />
   <target host="google.com" />
   <target host="www.google.com" />
+  <target host="translate.google.com" />
   <target host="gstatic.com" />
   <target host="*.gstatic.com" />
+  <target host="api.recaptcha.net" />
   <target host="gdata.youtube.com" />
 
   <rule from="^http://www\.google-analytics\.com/"
@@ -23,12 +21,10 @@
            to="https://fonts.googleapis.com/"/>
   <rule from="^http://chart\.googleapis\.com/"
           to="https://chart.googleapis.com/"/>
-  <rule from="^http://themes\.googleusercontent\.com/"
-          to="https://themes.googleusercontent.com/"/>
-  <rule from="^http://static\.googleusercontent\.com/"
-	  to="https://static.googleusercontent.com/"/>
   <rule from="^http://translate\.googleapis\.com/"
           to="https://translate.googleapis.com/"/>
+  <rule from="^http://translate\.google\.com/translate_a/"
+	  to="https://translate.google.com/translate_a/"/>
 
 <!-- There is an interesting question about whether we should
      append &strip=1 to all cache URLs.  This causes them to load without
@@ -38,11 +34,8 @@
      cached page will be text-only and will come exclusively from Google's
      HTTPS server. -->
 
-
   <rule from="^http://(www\.|ssl\.)?gstatic\.com/"
           to="https://ssl.gstatic.com/" />
-  <rule from="^http://webcache\.googleusercontent\.com/"
-          to="https://webcache.googleusercontent.com/"/>
   <rule from="^http://api\.recaptcha\.net/"
           to="https://www.google.com/recaptcha/api/"/>
   <rule from="^http://(www\.)?google\.com/recaptcha/"
diff --git a/src/chrome/content/rules/GoogleServices.xml b/src/chrome/content/rules/GoogleServices.xml
index 95f11e3..8797123 100644
--- a/src/chrome/content/rules/GoogleServices.xml
+++ b/src/chrome/content/rules/GoogleServices.xml
@@ -19,6 +19,8 @@
   <target host="appspot.com" />
   <target host="*.appspot.com" />
   <target host="pagead2.googlesyndication.com" />
+  <target host="googleusercontent.com" />
+  <target host="*.googleusercontent.com" />
 
   <exclusion pattern="^http://(news\.)?google\.com/newspapers" />
   <exclusion pattern="^http://(news\.)?google\.com/archivesearch" />
@@ -94,6 +96,10 @@
         to="https://$1appspot.com/"/>
   <rule from="^http://pagead2\.googlesyndication\.com/"
 	  to="https://pagead2.googlesyndication.com/"/>
+  <rule from="^http://googleusercontent\.com/"
+	to="https://www.googleusercontent.com/"/>
+  <rule from="^http://([^@:\./]+)\.googleusercontent\.com/"
+	to="https://$1.googleusercontent.com/"/>
 
   <rule from="^http://(www\.)?google\.com/contacts"
           to="https://www.google.com/contacts"/>
@@ -102,7 +108,7 @@
   <rule from="^http://(www\.)?google\.co\.in/contacts"
           to="https://www.google.co.in/contacts"/>
 
-  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(css|intl|js|logos|tools)/"
+  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(css|intl|js|logos|tools|googleblogs)/"
 	  to="https://www.google.com/$4/"/>
   <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(cse|custom)"
 	  to="https://www.google.com/cse" />
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.eff.org/pipermail/https-everywhere-rules/attachments/20110605/4df35a35/attachment.sig>


More information about the HTTPS-Everywhere-Rules mailing list