[HTTPS-E Rulesets] HTTPS Everywhere rule for feedly.com
Dave Warren
davew at hireahit.com
Mon Mar 24 21:07:46 PDT 2014
On 2014-02-20 04:39, Dale Visser wrote:
> HTTPS Everywhere Maintainers:
>
> I love feedly.com. Its Firefox plugin, however insists on sending me
> to the HTTP rather than HTTPS page. The attached HTTPS Everywhere rule
> fixes this for me.
>
> Thank you for a great browser plug-in!
>
> Sincerely,
> Dale Visser
>
A couple thoughts...
The <ruleset name> should be Feedly, not Twitter :) More importantly
though, for a time Feedly used cloud.feedly.com, this URL should be
included too, as certain URLs there still work, allowing for a downgrade
attack until such time as Feedly completely eliminates the cloud version
of the URL.
(It's possible that the entire cloud.* URL has been redirected now, I'm
not quite sure. Better safe than sorry)
Attached is the ruleset I've been testing for the last week or two, with
success.
--
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.eff.org/pipermail/https-everywhere-rules/attachments/20140324/ae96e51a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: feedly.com.xml
Type: text/xml
Size: 222 bytes
Desc: not available
URL: <https://lists.eff.org/pipermail/https-everywhere-rules/attachments/20140324/ae96e51a/attachment.xml>
More information about the HTTPS-Everywhere-Rules
mailing list