[HTTPS-Everywhere] Wikiblame subverts HTTPS Everywhere
Chris Palmer
chris at noncombatant.org
Sun Aug 22 11:22:23 PDT 2010
Andrew A. Gill writes:
> Go to <http://wikipedia.ramselehof.de/wikiblame.php>. Search for
> something in the page history. When you click on a link, you'll be taken
> to the insecure Wikipedia site. I'm not sure how that happens, but this
> should probably be corrected.
I can reproduce the problem. I put "pumpkin" in the Page field, and "gourds"
in the Search for field. Then I clicked the "11:54, 17 July 2010" diff link.
Perhaps the problem is that the diff links use the en.wikipedia.org hostname
and not www.wikipedia.org. I just tried again after installing the latest
version of HTTPS Everywhere, but it seems to still be happening. I don't
know why this should be, since the rule for Wikipedia would seem to handle
this.
I'll add a feature request: It would be nice if the Preferences window for
HTTPS Everywhere showed a list of text boxes containing the rewrite rules
(both the built-in ones and any user-added ones) instead of just text boxes.
More information about the HTTPS-everywhere
mailing list