[HTTPS-E Rulesets] HTTPS Everywhere rule
Joshua Johnson
joshua.s.johnson at gmail.com
Sat Jan 25 13:49:26 PST 2014
Yan,
Sorry for the earlier blank email! I don't have a problem so much with the
xml files but it seems odd to allow .zip, & .tar.gz through the distro is
more my point, especially since all that is being discussed is text code.
Thanks for all you guys do by the way!
Josh
On Fri, Jan 24, 2014 at 8:54 PM, Yan Zhu <yan at eff.org> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> + pde, who knows more about the state of attachment filtering on that
> server.
>
> Apparently it does filter out attachments of above a certain size.
>
> - -Yan
>
> On 01/24/2014 06:10 PM, Claudio Moretti wrote:
> > On Fri, Jan 24, 2014 at 3:32 PM, Daniel Kahn Gillmor
> > <dkg at fifthhorseman.net <mailto:dkg at fifthhorseman.net>> wrote:
> >
> > Is there any evidence that this list has been abused to transmit
> > malicious content to any of its readers?
> >
> >
> > No (and if there has, Gmail filtered them out for me) but I think
> > he's referring to the fact that for some reason the actual content
> > of the XML file is
> >
> > <ruleset name="phkr.de <http://phkr.de>"> <target host="www.phkr.de
> > <http://www.phkr.de>" /> * <target host="twitter.de
> > <http://twitter.de>" /> *
> >
> > <rule from="^http://(www\.)?phkr\.de/" to="https://www.phkr.de/"/>
> > </ruleset>
> >
> >
> > Joshua, if that's what you meant, you shoud know that rules are
> > checked manually by the EFF staff (so not by everyone in the list)
> > before being added to the extension :)
> >
> > In this case, moreover, AFAIK having that target host does not
> > affect Twitter.de, because there's no actual rule that matches
> > Twitter.
> >
> > If you meant actual spam and malware, instead, there should be a
> > SpamAssassin+ClamAV combination on the server that scans all mail,
> > and if the mail is sent by someone not subscribed to the list it
> > goes into the moderation queue.
> >
> > Of course, it's impossible to catch everything (not even the best
> > spam/malware filters can do that) so I'd recommend a good antivirus
> > for those cases :)
> >
> > Cheers,
> >
> > Claudio
>
> - --
> Yan Zhu yan at eff.org
> Technologist Tel +1 415 436 9333 x134
> Electronic Frontier Foundation Fax +1 415 436 9993
> -----BEGIN PGP SIGNATURE-----
>
> iQEcBAEBCgAGBQJS4xlNAAoJENC7YDZD/dnsT+UH/Aph48ZqhhYMHPMt5qFyhol/
> +ZWyaQinOGOa2xh1ZH14GR9wwbFWf0ojaGJ+6uqjR8RMbZKsxsgUrgqUeQVsg6aE
> +aRxS78Ork7F3vC46Vmw20qFDraysikLabOOx6DPWZ61AWWRMC+b6YHp/C4wPzOD
> qvBWROkqHW/2DEVWEmwbf4eu46bxhowTvS4bzOkMC+snGOTdNc7uX+9Uv+6G4s8o
> V+G/LACC6Ez+5XOG8bVPvgPcG2vEEG8apv+TrzpyR3Ql+01w0gEDFV68HVc3JPGr
> oRjBuVatES0A1kgYvpMJPxeC3DbNC0NVapQCu9CURfmvrcV8U4wWvAJe6IWVXow=
> =vSQs
> -----END PGP SIGNATURE-----
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.eff.org/pipermail/https-everywhere-rules/attachments/20140125/01271be5/attachment.html>
More information about the HTTPS-Everywhere-Rules
mailing list