[HTTPS-Everywhere] Embedded imgur images seem to be broken
Nicholas Bendler
asim at asimweb.org
Wed Aug 6 02:26:15 PDT 2014
Hi,
Thanks for looking into this.
I should clarify what I meant, though: I did not mean "embed" as in
using the embed tag or an iframe, I just meant a simple <img> tag.
Here's a test page I mocked up:
http://asimweb.org/~asim/imgur.html
The http version is still broken when the rule is enabled.
I apologize for not including this example earlier.
--Nick
On 8/4/2014 12:36 PM, Bryn Mosher wrote:
> I should clarify a little. The existing embeds in the wild may still
> live with a hart-coded http URL (and thus fail). Any new embeds that
> get created will not specify protocol. If anyone is maintaining a site
> with embeds already, all they need to do is remove the proto ("http:")
> from the iframe src in the embed.
>
>
> On Mon, Aug 4, 2014 at 12:25 PM, Yan Zhu <yan at eff.org
> <mailto:yan at eff.org>> wrote:
>
> Bryn says Imgur will have a fix out either today or tomorrow.
>
> yay!
>
> On 07/31/2014 06:06 PM, Bryn Mosher wrote:
> > Thanks! I'll see if I can reproduce with the extension and try
> to get it
> > resolved.
> >
> > On Jul 31, 2014 5:45 PM, "Yan Zhu" <yan at eff.org
> <mailto:yan at eff.org> <mailto:yan at eff.org <mailto:yan at eff.org>>> wrote:
> >
> > + Bryn of Imgur, who added the ruleset.
> >
> > On 07/31/2014 05:18 PM, Nicholas Bendler wrote:
> > > Hi all,
> > >
> > > A few days to a week ago, I noticed that on several sites
> embedded
> > imgur
> > > images would no longer load. I used the httpfox extension
> to see that
> > > imgur URLs were being 302-redirected to the image page,
> thus the image
> > > embed fails. This is a known imgur behavior for
> high-traffic referers
> > > like Facebook, but I was seeing this everywhere. I could
> not reproduce
> > > the issue with CURL and some test refers. I also tried
> modifying
> > CURL's
> > > user-agent string (I use Pale Moon instead of Firefox) but
> that
> > did not
> > > make a difference, either - I was still getting the actual
> image. Back
> > > in my browser, I disabled the HTTPS Everywhere rule for imgur,
> > reloaded
> > > a test page, and it worked again.
> > >
> > > I am using https-everywhere 3.5.3.
> > >
> > > --Nick
> > >
> > >
> > > _______________________________________________
> > > HTTPS-Everywhere mailing list
> > > HTTPS-Everywhere at lists.eff.org
> <mailto:HTTPS-Everywhere at lists.eff.org>
> <mailto:HTTPS-Everywhere at lists.eff.org
> <mailto:HTTPS-Everywhere at lists.eff.org>>
> > > https://lists.eff.org/mailman/listinfo/https-everywhere
> > >
> >
> >
> > --
> > Yan Zhu <yan at eff.org <mailto:yan at eff.org>
> <mailto:yan at eff.org <mailto:yan at eff.org>>>, <yan at torproject.org
> <mailto:yan at torproject.org>
> > <mailto:yan at torproject.org <mailto:yan at torproject.org>>>
> > Staff Technologist
> > Electronic Frontier Foundation https://www.eff.org
> > 815 Eddy Street, San Francisco, CA 94109 +1 415 436 9333
> x134 <tel:%2B1%20415%20436%209333%20x134>
> > <tel:%2B1%20415%20436%209333%20x134>
> >
>
>
> --
> Yan Zhu <yan at eff.org <mailto:yan at eff.org>>, <yan at torproject.org
> <mailto:yan at torproject.org>>
> Staff Technologist
> Electronic Frontier Foundation https://www.eff.org
> 815 Eddy Street, San Francisco, CA 94109 +1 415 436 9333 x134
> <tel:%2B1%20415%20436%209333%20x134>
>
>
>
>
> --
> -Bryn Mosher
> Engineer, Imgur
>
More information about the HTTPS-Everywhere
mailing list