[HTTPS-E Rulesets] HTTPS Everywhere rule for feedly.com

Dave Warren davew at hireahit.com
Mon Mar 24 21:07:46 PDT 2014


On 2014-02-20 04:39, Dale Visser wrote:
> HTTPS Everywhere Maintainers:
>
> I love feedly.com. Its Firefox plugin, however insists on sending me 
> to the HTTP rather than HTTPS page. The attached HTTPS Everywhere rule 
> fixes this for me.
>
> Thank you for a great browser plug-in!
>
> Sincerely,
> Dale Visser
>

A couple thoughts...

The <ruleset name> should be Feedly, not Twitter :) More importantly 
though, for a time Feedly used cloud.feedly.com, this URL should be 
included too, as certain URLs there still work, allowing for a downgrade 
attack until such time as Feedly completely eliminates the cloud version 
of the URL.

(It's possible that the entire cloud.* URL has been redirected now, I'm 
not quite sure. Better safe than sorry)

Attached is the ruleset I've been testing for the last week or two, with 
success.

-- 
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.eff.org/pipermail/https-everywhere-rules/attachments/20140324/ae96e51a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: feedly.com.xml
Type: text/xml
Size: 222 bytes
Desc: not available
URL: <https://lists.eff.org/pipermail/https-everywhere-rules/attachments/20140324/ae96e51a/attachment.xml>


More information about the HTTPS-Everywhere-Rules mailing list