[HTTPS-E Rulesets] More to Facebook.xml
Osama Khalid
osamak at gnu.org
Wed May 18 15:29:15 PDT 2011
This patch includes two more domains Facebook uses for images. It's
useful basically for insecure hotlinking. I also removed the
match_rule parameter.
The two domains are *.fbcdn.net and fbcdn-profile-a.akamaihd.net.
--Osama Khalid
-------------- next part --------------
diff --git a/src/chrome/content/rules/Facebook.xml b/src/chrome/content/rules/Facebook.xml
index e50243b..5497b0b 100644
--- a/src/chrome/content/rules/Facebook.xml
+++ b/src/chrome/content/rules/Facebook.xml
@@ -1,4 +1,4 @@
-<ruleset name="Facebook" match_rule="http:.*facebook\.">
+<ruleset name="Facebook">
<target host="facebook.com" />
<target host="*.facebook.com" />
<target host="*.facebook.de" />
@@ -6,6 +6,8 @@
<target host="*.facebook.fr" />
<target host="facebook.fr" />
<target host="connect.facebook.net" />
+ <target host="*.fbcdn.net" />
+ <target host="fbcdn-profile-a.akamaihd.net" />
<rule from="^http://(www\.)?facebook\.com/" to="https://www.facebook.com/"/>
<rule from="^http://m\.facebook\.com/" to="https://m.facebook.com/"/>
@@ -36,4 +38,10 @@
<rule from="^http://connect\.facebook\.net/"
to="https://connect.facebook.net/"/>
-</ruleset>
+
+ <rule from="^http://([^@:\./]+)\.fbcdn\.net/"
+ to="https://$1.fbcdn.net/"/>
+
+ <rule from="^http://fbcdn-profile-a\.akamaihd\.net/"
+ to="https://fbcdn-profile-a.akamaihd.net/"/>
+</ruleset>
\ No newline at end of file
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.eff.org/pipermail/https-everywhere-rules/attachments/20110519/0fe813fc/attachment.sig>
More information about the HTTPS-Everywhere-Rules
mailing list