[HTTPS-E Rulesets] HTTPS Everywhere rule

Yan Zhu yan at eff.org
Fri Jan 24 17:54:23 PST 2014 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

+ pde, who knows more about the state of attachment filtering on that
server.

Apparently it does filter out attachments of above a certain size.

- -Yan

On 01/24/2014 06:10 PM, Claudio Moretti wrote:
> On Fri, Jan 24, 2014 at 3:32 PM, Daniel Kahn Gillmor 
> <dkg at fifthhorseman.net <mailto:dkg at fifthhorseman.net>> wrote:
> 
> Is there any evidence that this list has been abused to transmit 
> malicious content to any of its readers?
> 
> 
> No (and if there has, Gmail filtered them out for me) but I think
> he's referring to the fact that for some reason the actual content
> of the XML file is
> 
> <ruleset name="phkr.de <http://phkr.de>"> <target host="www.phkr.de
> <http://www.phkr.de>" /> *  <target host="twitter.de
> <http://twitter.de>" /> *
> 
> <rule from="^http://(www\.)?phkr\.de/" to="https://www.phkr.de/"/> 
> </ruleset>
> 
> 
> Joshua, if that's what you meant, you shoud know that rules are
> checked manually by the EFF staff (so not by everyone in the list)
> before being added to the extension :)
> 
> In this case, moreover, AFAIK having that target host does not
> affect Twitter.de, because there's no actual rule that matches
> Twitter.
> 
> If you meant actual spam and malware, instead, there should be a 
> SpamAssassin+ClamAV combination on the server that scans all mail,
> and if the mail is sent by someone not subscribed to the list it
> goes into the moderation queue.
> 
> Of course, it's impossible to catch everything (not even the best 
> spam/malware filters can do that) so I'd recommend a good antivirus
> for those cases :)
> 
> Cheers,
> 
> Claudio

- -- 
Yan Zhu                           yan at eff.org
Technologist                      Tel  +1 415 436 9333 x134
Electronic Frontier Foundation    Fax  +1 415 436 9993
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJS4xlNAAoJENC7YDZD/dnsT+UH/Aph48ZqhhYMHPMt5qFyhol/
+ZWyaQinOGOa2xh1ZH14GR9wwbFWf0ojaGJ+6uqjR8RMbZKsxsgUrgqUeQVsg6aE
+aRxS78Ork7F3vC46Vmw20qFDraysikLabOOx6DPWZ61AWWRMC+b6YHp/C4wPzOD
qvBWROkqHW/2DEVWEmwbf4eu46bxhowTvS4bzOkMC+snGOTdNc7uX+9Uv+6G4s8o
V+G/LACC6Ez+5XOG8bVPvgPcG2vEEG8apv+TrzpyR3Ql+01w0gEDFV68HVc3JPGr
oRjBuVatES0A1kgYvpMJPxeC3DbNC0NVapQCu9CURfmvrcV8U4wWvAJe6IWVXow=
=vSQs
-----END PGP SIGNATURE-----

More information about the HTTPS-Everywhere-Rules mailing list