[HTTPS-Everywhere] Adding or removing of “www.”
Drake, Brian
brian2 at drakefamily.tk
Tue Dec 28 22:34:06 PST 2010
Rules are often of the form:
<rule from="^http://(www\.)?domain/" to="https://domain/"/>
or
<rule from="^http://(www\.)?domain/" to="https://www.domain/"/>
Not only do these rules redirect to HTTPS, they potentially change the rest
of the address too. Presumably that’s because https://www.domain/ would
ultimately redirect to https://domain/ anyway (for the first form) or
https://domain/ would ultimately redirect to https://www.domain/ anyway (for
the second form).
In that case, why not change “http” to “https?” in the “from” values to save
a request to the server when https://domain/ (for the first form) or
https://www.domain/ (for the second form) is requested? The benefit would
far outweight the cost, I think.
--
Brian Drake
Alternate (slightly less secure) e-mail: brian at drakefamily.tk
Alternate (old) e-mail: brianriab at gmail.com
Facebook profile: Profile ID
100001669405117<https://ssl.facebook.com/profile.php?id=100001669405117>
Twitter username: BrianJDrake <https://twitter.com/BrianJDrake>
Wikimedia project username:
Brianjd<https://secure.wikimedia.org/wikipedia/meta/wiki/User:Brianjd>(been
inactive for a while)
All content created by me Copyright © 2010 Brian Drake. All rights reserved.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.eff.org/pipermail/https-everywhere/attachments/20101229/7b4e66e3/attachment.html>
More information about the HTTPS-everywhere
mailing list