[HTTPS-E Rulesets] Google Reader AU
Peter Eckersley
pde at eff.org
Wed May 4 17:22:25 PDT 2011
On Thu, May 05, 2011 at 09:29:34AM +1000, Matthew Fernandez wrote:
> Hi Adam/Peter,
>
> I think I agree with Adam on this, but I'm not sure what the
> alternative behaviour is. Is the alternative you're referring to
> hardcoding a rule for each Google ccTLD where we see this behaviour?
Unfortunately, yes. Take a look at the existing Google Search rule:
https://gitweb.torproject.org/https-everywhere.git/blob/HEAD:/src/chrome/content/rules/Google.xml
particularly the last portion of that file.
>
> With regards to this conflicting with existing rules, I have it in my
> HTTPSEverywhereRules directory and haven't noticed any other Google
> services falling back to HTTP. However, I realise this isn't a
> comprehensive test.
That's not the problem. The problem is that the rule you've written will
cause some non-reader services on google.com.au to break. For example:
http://www.google.com.au/maps
> I looked at merging it into the existing Google
> ruleset, but balked when I saw the size of it. Also, it looks like I
> forgot to escape the periods in the from.
>
> Peter, it looks as if my Google Reader account is accessible from
> www.google.com.au/reader as well as www.google.com/reader so it would
> not cause me problems if the .com.au HTTP redirected to the .com
> HTTPS. Having said that, I have a suspicion that which domains your
> Google account is accessible from may be dependent on how you signed
> up, not what country you live in. Adam, maybe you can shed some light
> on this.
>
> Thanks,
> Matt
>
> On 5 May 2011 02:25, Adam Langley <agl at chromium.org> wrote:
> > On Wed, May 4, 2011 at 11:31 AM, Peter Eckersley <pde at eff.org> wrote:
> >> domain. I'm sure there are others out there though...
> >
> > Assuming that Google HTTPS services may appear on any ccTLD is likely
> > to be more future-proof than the alternative.
> >
> >
> > Cheers
> >
> > AGL
> >
--
Peter Eckersley pde at eff.org
Senior Staff Technologist Tel +1 415 436 9333 x131
Electronic Frontier Foundation Fax +1 415 436 9993
More information about the HTTPS-Everywhere-Rules
mailing list