[HTTPS-E Rulesets] [jethro at jbeekman.nl: BofA rules]
Peter Eckersley
pde at eff.org
Mon Sep 19 22:57:16 PDT 2011
Redirecting to the -rules mailing list...
----- Forwarded message from Jethro Beekman <jethro at jbeekman.nl> -----
Date: Sun, 18 Sep 2011 18:58:57 -0700
From: Jethro Beekman <jethro at jbeekman.nl>
To: https-everywhere at eff.org
Subject: BofA rules
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.21) Gecko/20110831 Lightning/1.0b2 Thunderbird/3.1.13
Hi,
The Bank of America (BofA) ruleset should not be enabled by default,
some pages/redirects do not work with the HTTPS-site. For example:
Works: http://www.bankofamerica.com/deposits/checksave/sof_redirect.cfm
404: https://www.bankofamerica.com/deposits/checksave/sof_redirect.cfm
Futhermore, BofA redirects you to SSL-enabled websites itself most, if
not all, of the time.
Best regards,
Jethro Beekman
----- End forwarded message -----
--
Peter Eckersley pde at eff.org
Technology Projects Director Tel +1 415 436 9333 x131
Electronic Frontier Foundation Fax +1 415 436 9993
More information about the HTTPS-Everywhere-Rules
mailing list