Ticket #4493: default.2.rulesets

File default.2.rulesets, 351.3 KB (added by stars, 5 years ago)

.mozilla/firefox/profile/extensions/https-everywhere@…/chrome/content/rules

Line 
1<rulesetlibrary>
2<ruleset name="123-Reg">
3  <target host="www.123-reg.co.uk" />
4  <target host="123-reg.co.uk" />
5
6  <rule from="^http://(www\.)?123-reg\.co\.uk/" to="https://www.123-reg.co.uk/"/>
7</ruleset>
8<ruleset name="1NightStandStory">
9  <target host="1nightstandstory.com" />
10  <target host="www.1nightstandstory.com" />
11
12  <rule from="^http://(www\.)?1nightstandstory\.com/" to="https://www.1nightstandstory.com/"/>
13</ruleset>
14<!-- if we are going to include ads and tracking info, lets atleast do it by https.-->
15<ruleset name="2o7.net">
16        <target host="2o7.net" />
17        <target host="*.2o7.net" />
18        <target host="*.112.2o7.net" />
19        <target host="*.122.2o7.net" />
20        <rule from="^http://2o7\.net/" to="https://2o7.net/"/>
21  <rule from="^http://([^/:@]*)\.2o7\.net/" to="https://$1.2o7.net/"/>
22  <rule from="^http://([^/:@]*)\.112\.2o7\.net/" to="https://$1.112.2o7.net/"/>
23  <rule from="^http://([^/:@]*)\.122\.2o7\.net/" to="https://$1.122.2o7.net/"/>
24</ruleset>
25
26<ruleset name="33Bits" default_off="Cert warning">
27  <target host="www.33bits.org" />
28  <target host="33bits.org" />
29
30  <rule from="^http://(www\.)?33bits\.org/" to="https://www.33bits.org/"/>
31</ruleset>
32<ruleset name="38.de">
33  <target host="www.38.de" />
34  <target host="38.de" />
35
36  <rule from="^http://(www\.)?38\.de/" to="https://www.38.de/"/>
37</ruleset>
38<ruleset name="3min">
39  <target host="3min.de"/>
40  <target host="*.3min.de"/>
41  <target host="www.3min.de"/>
42
43  <securecookie host="^(.*\.)?3min\.de$" name=".*" />
44
45  <rule from="^http://(www\.)?3min\.de/" to="https://www.3min.de/"/>
46</ruleset>
47<ruleset name="4sevens">
48  <target host="www.4sevens.com" />
49  <target host="4sevens.com" />
50
51  <rule from="^http://(www\.)?4sevens\.com/" to="https://www.4sevens.com/"/>
52</ruleset>
53<ruleset name="7chan">
54  <target host="7chan.org" />
55  <target host="www.7chan.org" />
56
57  <rule from="^http://(www\.)?7chan\.org/" to="https://7chan.org/"/>
58</ruleset>
59<ruleset name="99.se">
60        <target host="99.se" />
61        <target host="www.99.se" />
62        <rule from="^http://99\.se/" to="https://www.99.se/"/>
63        <rule from="^http://www\.99\.se/" to="https://www.99.se/"/>
64</ruleset>
65
66<!-- slashdot stores most of their stuff here -->
67<ruleset name="FSDN.com">
68        <target host="a.fsdn.com" />
69        <rule from="^http://a\.fsdn\.com/" to="https://a.fsdn.com/"/>
70</ruleset>
71
72<ruleset name="American Airlines">
73  <target host="www.aa.com" />
74  <target host="aa.com" />
75
76  <rule from="^http://(www\.)?aa\.com/" to="https://www.aa.com/"/>
77</ruleset>
78<ruleset name="ABIS-Studien.se">
79        <target host="abis-studien.se" />
80        <target host="www.abis-studien.se" />
81        <rule from="^http://www\.abis-studien\.se/" to="https://www.abis-studien.se/"/>
82        <rule from="^http://abis-studien\.se/" to="https://abis-studien.se/"/>
83</ruleset>
84
85<ruleset name="ABN AMRO Bank">
86  <!-- Rule created by Jeroen van der Gun -->
87
88  <target host="www.abnamro.nl" />
89  <target host="abnamro.nl" />
90
91  <rule from="^http://(www\.)?abnamro\.nl/" to="https://www.abnamro.nl/"/>
92</ruleset>
93<ruleset name="ACLU of North Carolina">
94        <target host="acluofnorthcarolina.org" />
95        <target host="www.acluofnorthcarolina.org" />
96        <target host="acluofnc.org" />
97        <target host="www.acluofnc.org" />
98
99        <rule from="^http://(www\.)?aclu(ofnc|ofnorthcarolina)\.org/" to="https://www.acluofnorthcarolina.org/" />
100</ruleset>
101<ruleset name="ACLU of Southern California">
102        <target host="aclu-sc.org" />
103        <target host="www.aclu-sc.org" />
104
105        <rule from="^http://(www\.)?aclu-sc\.org/" to="https://www.aclu-sc.org/" />
106</ruleset><!-- acm.org lacks proper ssl for the following domains
107http://plone.acm.org
108http://portalparts.acm.org.
109http://jobs.acm.org <- sends to jobtarget.com
110http://awards.acm.org <- stacktrace for coldfusion
111http://librarians.acm.org/
112http://mags.acm.org/
113-->
114<ruleset name="ACM.org">
115        <target host="campus.acm.org" />
116        <target host="portal.acm.org" />
117        <target host="techpack.acm.org" />
118        <target host="acm.org" />
119        <target host="www.acm.org" />
120        <rule from="^http://campus\.acm\.org/" to="https://campus.acm.org/"/>
121        <rule from="^http://portal\.acm\.org/" to="https://portal.acm.org/"/>
122        <rule from="^http://techpack\.acm\.org/" to="https://techpack.acm.org/"/>
123        <rule from="^http://acm\.org/" to="https://www.acm.org/"/>
124        <rule from="^http://www\.acm\.org/" to="https://www.acm.org/"/>
125</ruleset>
126
127<ruleset name="AJC.com">
128        <target host="ajc.com" />
129        <target host="www.ajc.com" />
130        <rule from="^http://ajc\.com/" to="https://www.ajc.com/"/>
131        <rule from="^http://www\.ajc\.com/" to="https://www.ajc.com/"/>
132</ruleset>
133
134<ruleset name="AK-Vorrat">
135  <target host="vorratsdatenspeicherung.de" />
136  <target host="www.vorratsdatenspeicherung.de" />
137
138  <rule from="^http://(www\.)?vorratsdatenspeicherung\.de/" to="https://www.vorratsdatenspeicherung.de/" />
139  <rule from="^http://wiki\.vorratsdatenspeicherung\.de/" to="https://wiki.vorratsdatenspeicherung.de/" />
140</ruleset>
141<ruleset name="Aldi - Germany">
142<!-- Hosts: Southern Aldi Germany -->
143  <target host="www.aldisued.de" />
144  <target host="www.aldi-sued.de" />
145
146<!-- Hosts: Northern Aldi Germany -->
147  <target host="www.aldi-nord.de" />
148  <target host="www.aldinord.de" />
149
150<!-- Rules: Southern Aldi Germany -->
151  <rule from="^http(s)?://(www\.)?\aldisued\.de/" to="https://www.aldi-sued.de/" />
152  <rule from="^http://(www\.)?\aldi-sued\.de/" to="https://www.aldi-sued.de/" />
153
154<!-- Rules: Northern Aldi Germany -->
155  <rule from="^http://(www\.)?\aldi-nord\.de/" to="https://www.aldi-nord.de/" />
156  <rule from="^http(s)?://(www\.)?\aldinord\.de/" to="https://www.aldi-nord.de/" />
157
158</ruleset>
159<ruleset name="ANZ">
160  <target host="anz.com" />
161  <target host="www.anz.com" />
162
163  <securecookie host="^(.+\.)?anz\.com$" name=".*"/>
164
165  <rule from="^http://(www\.)?anz\.com/" to="https://www.anz.com/"/>
166</ruleset>
167<ruleset name="AOK">
168<target host="www.aok.de" />
169<target host="aok.de" />
170<rule from="^http://(www\.)?aok\.de/" to="https://www.aok.de/"/>
171</ruleset>
172<ruleset name="ATBank">
173  <!-- Rule created by Jeroen van der Gun -->
174
175  <target host="www.atbank.nl" />
176  <target host="atbank.nl" />
177
178  <rule from="^http://(www\.)?atbank\.nl/" to="https://www.atbank.nl/"/>
179</ruleset>
180<ruleset name="Abbo-shop.ch">
181        <target host="abbo-shop.ch" />
182        <target host="www.abbo-shop.ch" />
183        <securecookie host="^(.*\.)?abbo-shop\.ch$" name=".*" />
184
185        <rule from="^http://(www\.)?abbo-shop\.ch/" to="https://www.abbo-shop.ch/"/>
186</ruleset>
187
188<ruleset name="AbeBooks">
189  <target host="abebooks.co.uk" />
190  <target host="www.abebooks.co.uk" />
191  <target host="abebooks.com" />
192  <target host="www.abebooks.com" />
193
194  <rule from="^http://(www\.)?abebooks\.co\.uk/" to="https://www.abebooks.co.uk/" />
195  <rule from="^http://(www\.)?abebooks\.com/" to="https://www.abebooks.com/" />
196</ruleset>
197<ruleset name="AboutMe (broken)" default_off="Reported broken">
198  <target host="about.me"/>
199  <target host="www.about.me"/>
200
201  <securecookie host="^(.*\.)?about.me$" name=".*" />
202
203  <rule from="^http://(www\.)?about\.me/" to="https://www.about.me/"/>
204</ruleset>
205<ruleset name="AccessNow.org">
206  <target host="accessnow.org" />
207  <target host="www.accessnow.org" />
208
209  <rule from="^http://(www\.)?accessnow\.org/" to="https://www.accessnow.org/" />
210</ruleset>
211<ruleset name="Accessibility.nl">
212  <!-- Rule created by Jeroen van der Gun -->
213
214  <target host="www.accessibility.nl" />
215  <target host="accessibility.nl" />
216
217  <rule from="^http://(www\.)?accessibility\.nl/" to="https://www.accessibility.nl/"/>
218</ruleset>
219<ruleset name="AdaFruit">
220  <target host="www.adafruit.com" />
221  <target host="adafruit.com" />
222
223  <rule from="^http://(www\.)?adafruit\.com/" to="https://www.adafruit.com/"/>
224</ruleset>
225<ruleset name="AdblockPlus">
226  <target host="adblockplus.org"/>
227  <target host="*.adblockplus.org"/>
228
229  <securecookie host="^(.*\.)?adblockplus\.org$" name=".*" />
230
231  <rule from="^http://(www\.)?adblockplus\.org/"
232          to="https://adblockplus.org/"/>
233  <rule from="^http://(easylist|easylist-downloads|hg)\.adblockplus\.org/"
234          to="https://$1.adblockplus.org/"/>
235</ruleset>
236<ruleset name="Adbrite">
237    <target host="www.adbrite.com" />
238    <target host="adbrite.com" />
239
240    <rule from="^http://([^/:@]*)\.adbrite\.com/" to="https://$1.adbrite.com/"/>
241</ruleset>
242<ruleset name="AddBooks.se">
243  <target host="www.addbooks.se" />
244  <target host="addbooks.se" />
245  <rule from="^http://www\.addbooks\.se/" to="https://www.addbooks.se/"/>
246  <rule from="^http://addbooks\.se/" to="https://addbooks.se/"/>
247</ruleset>
248
249<ruleset name="AddThis">
250  <target host="*.addthis.com" />
251  <target host="addthis.com" />
252
253  <rule from="^http://(www\.)?addthis\.com/bookmark\.php"
254          to="https://www.addthis.com/bookmark.php"/>
255  <rule from="^http://api\.addthis\.com/"
256          to="https://api.addthis.com/"/>
257  <rule from="^http://s(3|5|7|9)\.addthis\.com/"
258          to="https://s$1.addthis.com/"/>
259  <rule from="^http://ds\.addthis\.com/"
260          to="https://ds.addthis.com/" />
261  <rule from="^http://cache\.addthis\.com/"
262          to="https://cache.addthis.com/" />
263</ruleset>
264<ruleset name="AddToAny">
265  <target host="static.addtoany.com" />
266
267  <rule from="^http://static\.addtoany\.com/"
268          to="https://static.addtoany.com/"/>
269</ruleset><ruleset name="Adlibris/Capris">
270  <target host="www.adlibris.com" />
271  <target host="adlibris.com" />
272  <target host="www.capris.no" />
273  <target host="capris.no" />
274
275  <rule from="^http://(www\.)?(adlibris\.com|capris\.no)/"
276          to="https://www.$2/"/>
277</ruleset>
278<ruleset name="Adobe">
279  <target host="www.adobe.com" />
280  <target host="adobe.com" />
281
282  <rule from="^http://(www\.)?adobe\.com/" to="https://www.adobe.com/"/>
283</ruleset>
284<ruleset name="Adoyacademy.se">
285  <target host="www.adoyacademy.se" />
286  <target host="adoyacademy.se" />
287  <rule from="^http://www\.adoyacademy\.se/" to="https://adoyacademy.se/"/>
288  <rule from="^http://adoyacademy\.se/" to="https://adoyacademy.se/"/>
289</ruleset>
290
291<!-- banner network. -->
292<ruleset name="Adtech.de">
293        <target host="adserver.adtech.de" />
294        <rule from="^http://adserver\.adtech\.de/" to="https://adserver.adtech.de/"/>
295</ruleset>
296
297<ruleset name="Adversary" default_off="self-signed">
298  <target host="www.adversary.org" />
299  <target host="adversary.org" />
300
301  <rule from="^http://(www\.)?adversary\.org/" to="https://www.adversary.org/" />
302</ruleset>
303<ruleset name="Aea.se">
304  <target host="www.aea.se" />
305  <target host="aea.se" />
306  <rule from="^http://www\.aea\.se/" to="https://www.aea.se/"/>
307  <rule from="^http://aea\.se/" to="https://aea.se/"/>
308</ruleset>
309
310<ruleset name="Aeriagames">
311<target host="www.aeriagames.com" />
312<target host="aeriagames.com" />
313<rule from="^http://(www\.)?aeriagames\.com/" to="https://www.aeriagames.com/"/>
314</ruleset>
315<ruleset name="FreeDNS.Afraid.org">
316        <target host="freedns.afraid.org" />
317        <rule from="^http://freedns\.afraid\.org/"
318                to="https://freedns.afraid.org/" />
319</ruleset>
320<ruleset name="Aftenposten">
321        <target host="www.aftenposten.no" />
322        <target host="aftenposten.no" />
323
324        <rule from="^http://(www\.)?aftenposten\.no/" to="https://www.aftenposten.no/"/>
325
326        <!-- The following rules will generate SSL warnings by default because
327        the cert is only valid for www.aftenposten.no -->
328        <!--
329        <rule from="^http://lisacache\.aftenposten\.no/" to="https://lisacache.aftenposten.no/"/>
330        <rule from="^http://media\.aftenposten\.no/" to="https://media.aftenposten.no/"/>
331        <rule from="^http://oslopuls\.aftenposten\.no/" to="https://oslopuls.aftenposten.no/"/>
332        -->
333</ruleset>
334<!-- Av vendor. -->
335<ruleset name="Agnitum">
336        <target host="agnitum.com" />
337        <target host="www.agnitum.com" />
338        <rule from="^http://www\.agnitum\.com/" to="https://www.agnitum.com/"/>
339        <rule from="^http://agnitum\.com/" to="https://www.agnitum.com/"/>
340</ruleset>
341
342<!-- av vendor -->
343<ruleset name="Ahnlab">
344        <target host="image.ahnlab.com" />
345        <target host="global.ahnlab.com" />
346        <rule from="^http://global\.ahnlab\.com/" to="https://global.ahnlab.com/"/>
347        <rule from="^http://image\.ahnlab\.com/" to="https://image.ahnlab.com/"/>
348</ruleset>
349
350<ruleset name="AirshipVentures">
351  <target host="www.airshipventures.com" />
352  <target host="airshipventures.com" />
353
354  <rule from="^http://(www\.)?airshipventures\.com/" to="https://www.airshipventures.com/" />
355</ruleset>
356<ruleset name="Airtricity">
357  <target host="www.airtricity.com" />
358  <target host="airtricity.com" />
359  <target host="*.airtricity.com" />
360
361  <rule from="^http://airtricity\.com/" to="https://www.airtricity.com/"/>
362  <rule from="^http://([^/:@]*)\.airtricity\.com/" to="https://$1.airtricity.com/"/>
363</ruleset>
364<ruleset name="Akismet">
365  <target host="akismet.com" />
366  <target host="www.akismet.com" />
367
368  <rule from="^http://(www\.)akismet\.com/" to="https://akismet.com/" />
369</ruleset>
370<ruleset name="Alex.se">
371  <target host="www.alex.se" />
372  <target host="alex.se" />
373  <rule from="^http://www\.alex\.se/" to="https://www.alex.se/"/>
374  <rule from="^http://alex\.se/" to="https://alex.se/"/>
375</ruleset>
376
377<ruleset name="AliceDSL">
378  <target host="alice.de"/>
379  <target host="*.alice.de"/>
380  <target host="alice-dsl.de"/>
381  <target host="*.alice-dsl.de"/>
382  <target host="www.alice-dsl.de"/>
383
384  <securecookie host="^(.*\.)?alice-dsl\.de$" name=".*" />
385
386  <rule from="^http://(www\.)?alice\.de/" to="https://www.alice-dsl.de/"/>
387  <rule from="^http://alice\.de/" to="https://www.alice-dsl.de/"/>
388  <rule from="^http://alice-dsl\.de/" to="https://www.alice-dsl.de/"/>
389  <rule from="^http://(www\.)?alice-dsl\.de/" to="https://www.alice-dsl.de/"/>
390</ruleset>
391<ruleset name="All-inkl.com">
392  <target host="*.all-inkl.com" />
393  <target host="all-inkl.*" />
394  <target host="www.all-inkl.*" />
395
396  <rule from="^http://all-inkl\.com/" to="https://all-inkl.com/" />
397  <rule from="^http://([^/:@]*)\.all-inkl\.com/" to="https://$1.all-inkl.com/" />
398  <rule from="^http://(www\.)?all-inkl\.[^/:@][^/:@]/" to="https://all-inkl.com/" />
399</ruleset>
400<!-- NOTE: A user reports that this rule doesn't work and breaks the
401     site. -->
402
403<ruleset name="Allegro" default_off="reported broken">
404  <target host="www.allegro.pl" />
405  <target host="allegro.pl" />
406
407  <rule from="^http://(www\.)?allegro\.pl/" to="https://ssl.allegro.pl/"/>
408</ruleset>
409<ruleset name="Allingsas.se">
410  <target host="www.allingsas.se" />
411  <target host="allingsas.se" />
412  <rule from="^http://www\.allingsas\.se/" to="https://www.allingsas.se/"/>
413  <rule from="^http://allingsas\.se/" to="https://allingsas.se/"/>
414</ruleset>
415
416<ruleset name="AltonTowers">
417  <target host="altontowers.com" />
418  <target host="www.altontowers.com" />
419 
420  <securecookie host="^(.+\.)?altontowers\.com$" name=".*"/>
421 
422  <rule from="^http://(www\.)?altontowers\.com/" to="https://www.altontowers.com/"/>
423</ruleset>
424<ruleset name="Amahi.org">
425  <target host="www.amahi.org" />
426  <target host="wiki.amahi.org" />
427  <target host="amahi.org" />
428  <rule from="^http://www\.amahi\.org/" to="https://www.amahi.org/"/>
429  <rule from="^http://wiki\.amahi\.org/" to="https://wiki.amahi.org/"/>
430  <rule from="^http://amahi\.org/" to="https://amahi.org/"/>
431</ruleset>
432
433<!-- This rule is off by default because it causes so many aspects of the
434     Amazon site to break; see the mailing list archives for details -->
435
436<ruleset name="Amazon (buggy)" default_off="currently somewhat broken">
437   <target host="www.amazon.*" />
438   <target host="amazon.*" />
439   <target host="www.amazon.co.*" />
440   <target host="amazon.co.*" />
441   <target host="*.amazon.com" />
442   <target host="amazon.com" />
443
444<!-- Amazon appears to operate in 7 countries, and does not hold the domains
445     for some others, like .se or .be.  In other cases there is an http-only site
446     that redirects to one of these 7 countries.  -->
447
448  <!-- We totally need to figure out if we can have a blanket redirect
449  for Amazon Web Services, which are a very popular CDN that appears
450  to support HTTPS!  The aws.amazon.com rule below does not do this
451  because it only applies to the developer signup page. -->
452
453  <rule from="^http://(www\.)?amazon\.com/" to="https://www.amazon.com/" />
454
455  <rule from="^http://(www\.)?amazon\.co\.(uk|jp)/"
456          to="https://www.amazon.co.$2/" />
457
458  <rule from="^http://(www\.)?amazon\.(ca|cn|de|fr)/"
459          to="https://www.amazon.$2/" />
460
461  <rule from="^http://aws\.amazon\.com/"
462          to="https://aws.amazon.com/" />
463
464</ruleset>
465<ruleset name="Amazon Web Services">
466  <target host="aws.amazon.com" />
467  <target host="aws-portal.amazon.com" />
468  <target host="*.s3.amazonaws.com" />
469  <target host="s3.amazonaws.com" />
470
471  <rule from="^http://aws\.amazon\.com/" to="https://aws.amazon.com/" />
472  <rule from="^http://aws-portal\.amazon\.com/" to="https://aws-portal.amazon.com/" />
473  <rule from="^http://([^@:\./]+\.)?s3\.amazonaws\.com/" to="https://$1s3.amazonaws.com/" />
474</ruleset>
475<ruleset name="American Epilepsy Society (partial)">
476        <target host="aesnet.org" />
477        <target host="www.aesnet.org" />
478
479        <rule from="^http://(www\.)?aesnet\.org/erc/" to="https://www.aesnet.org/erc/" />
480</ruleset><!-- Thanks to ForceTLS -->
481<!-- Note that there are lots of subdomains and some are still unprotected,
482     but some don't work properly in HTTPS anyway.  This is kind of a mess. -->
483<ruleset name="AmericanExpress">
484  <target host="www.americanexpress.com" />
485  <target host="americanexpress.com" />
486  <target host="home.americanexpress.com" />
487
488  <rule from="^http://(www\.)?americanexpress\.com/" to="https://www.americanexpress.com/"/>
489  <rule from="^http://home\.americanexpress\.com/" to="https://home.americanexpress.com/"/>
490</ruleset>
491<ruleset name="Americana Exchange">
492  <target host="americanaexchange.com" />
493  <target host="www.americanaexchange.com" />
494
495  <rule from="^http://(www\.)?americanaexchange\.com/" to="https://www.americanaexchange.com/" />
496</ruleset><ruleset name="Amnesty-International">
497  <target host="www.amnesty.org" />
498  <target host="amnesty.org" />
499
500  <rule from="^http://(www\.)?amnesty\.org/" to="https://www.amnesty.org/"/>
501</ruleset>
502<ruleset name="An Post">
503  <target host="www.anpost.ie" />
504  <target host="anpost.ie" />
505
506  <rule from="^http://(www\.)?anpost\.ie/" to="https://www.anpost.ie/"/>
507</ruleset>
508 <!-- Partial -->
509<ruleset name="Android">
510  <target host="market.android.com" />
511
512  <securecookie host="^market\.android\.com$" name=".*" />
513
514  <rule from="^http://market\.android\.com/" to="https://market.android.com/"/>
515
516</ruleset>
517<ruleset name="Ansa.it">
518  <target host="www.ansa.it" />
519  <target host="ansa.it" />
520
521  <rule from="^http://(www\.)?ansa\.it/" to="https://www.ansa.it/"/>
522</ruleset>
523
524<ruleset name="AntiSpam e.V.">
525  <target host="antispam.de" />
526  <target host="www.antispam.de" /> 
527 
528  <rule from="^http://(www\.)?antispam\.de/" to="https://www.antispam.de/"/>
529</ruleset>
530<ruleset name="Apache">
531  <target host="apache.org" />
532  <target host="*.apache.org" />
533
534  <securecookie host="^(.+\.)?apache\.org$" name=".*"/>
535
536  <rule from="^http://(www\.)?apache\.org/" to="https://www.apache.org/"/>
537  <rule from="^http://([^/:@]+)?\.apache\.org/" to="https://$1.apache.org/"/>
538</ruleset>
539<!-- pharmacy. medical info should be private -->
540<ruleset name="Apoteket.se">
541        <target host="apoteket.se" />
542        <target host="www.apoteket.se" />
543        <rule from="^http://apoteket\.se/" to="https://www.apoteket.se/"/>
544        <rule from="^http://www\.apoteket\.se/" to="https://www.apoteket.se/"/>
545</ruleset>
546
547<ruleset name="Apple.com (partial)">
548  <target host="www.apple.com" />
549  <target host="apple.com" />
550  <target host="developer.apple.com" />
551  <target host="connect.apple.com" />
552  <target host="images.apple.com" />
553  <target host="jobs.apple.com" />
554  <target host="support.apple.com" />
555
556  <rule from="^http://(www\.)?apple\.com/" to="https://www.apple.com/"/>
557  <rule from="^http://developer\.apple\.com/" to="https://developer.apple.com/"/>
558  <rule from="^http://connect\.apple\.com/" to="https://connect.apple.com/"/>
559  <rule from="^http://images\.apple\.com/" to="https://ssl.apple.com/"/>
560  <rule from="^http://jobs\.apple\.com/" to="https://jobs.apple.com/"/>
561  <rule from="^http://support\.apple\.com/" to="https://support.apple.com/"/>
562</ruleset>
563<ruleset name="Arbeitsagentur.de">
564  <target host="arbeitsagentur.de" />
565  <target host="www.arbeitsagentur.de" />
566  <target host="jobboerse.arbeitsagentur.de" />
567
568  <rule from="^http://(www\.)?arbeitsagentur\.de/" to="https://www.arbeitsagentur.de/"/>
569  <rule from="^http://jobboerse\.arbeitsagentur\.de/" to="https://jobboerse.arbeitsagentur.de/"/>
570</ruleset>
571<ruleset name="Arch Linux">
572  <target host="archlinux.org" />
573  <target host="*.archlinux.org" />
574
575  <rule from="^http://archlinux\.org/" to="https://www.archlinux.org/"/>
576  <rule from="^http://([^/:@]*)\.archlinux\.org/" to="https://$1.archlinux.org/"/>
577</ruleset><ruleset name="Argos">
578  <target host="www.argos.co.uk" />
579  <target host="argos.co.uk" />
580
581  <rule from="^http://(www\.)?argos\.co\.uk/" to="https://www.argos.co.uk/"/>
582</ruleset>
583<!-- swedish airport webpage -->
584<ruleset name="Arlanda.se">
585        <target host="arlanda.se" />
586        <target host="www.arlanda.se" />
587        <rule from="^http://arlanda\.se/" to="https://www.arlanda.se/"/>
588        <rule from="^http://www\.arlanda\.se/" to="https://www.arlanda.se/"/>
589</ruleset>
590
591<ruleset name="Assembla">
592        <target host="www.assembla.com" />
593        <target host="assembla.com" />
594        <target host="svn2.assembla.com" />
595        <target host="trac2.assembla.com" />
596
597        <rule from="^http://(www\.)?assembla\.com/" to="https://www.assembla.com/"/>
598        <rule from="^http://svn2\.assembla\.com/" to="https://svn2.assembla.com/"/>
599        <rule from="^http://trac2\.assembla\.com/" to="https://trac2.assembla.com/"/>
600</ruleset><!-- uses data from i.acdn.us that doesnt allow https. -->
601<ruleset name="associatedcontent.com">
602        <target host="associatedcontent.com" />
603        <rule from="^http://associatedcontent\.com/" to="https://www.associatedcontent.com/"/>
604        <rule from="^http://www\.associatedcontent\.com/" to="https://www.associatedcontent.com/"/>
605</ruleset>
606
607<ruleset name="Asterisk">
608  <target host="www.asterisk.org" />
609  <target host="asterisk.org" />
610
611  <rule from="^http://(www\.)?asterisk\.org/" to="https://www.asterisk.org/"/>
612</ruleset>
613<ruleset name="atdmt.com">
614        <target host="switch.atdmt.com" />
615        <target host="clk.atdmt.com" />
616
617<!-- view.atdmt.com removed because it encrypts microsoft download page eg. http://view.atdmt.com/action/windows_downloads_Upgrade_CTA?href=http://www.microsoft.com/downloads/en/details.aspx?FamilyID=1b544e90-7659-4bd9-9e51-2497c146af15&displaylang=en -->
618
619        <rule from="^http://(switch|clk)\.atdmt\.com/" to="https://$1.atdmt.com/" />
620</ruleset>
621<ruleset name="Atlassian">
622  <target host="atlassian.com" />
623  <target host="*.atlassian.com" />
624
625  <securecookie host="^(.*\.)?atlassian.com$" name=".*" />
626
627  <rule from="^http://(www\.)?atlassian\.com/" to="https://www.atlassian.com/"/>
628
629  <rule from="^http://(blogs|plugins|confluence)\.atlassian\.com/" to="https://$1.atlassian.com/"/>
630
631</ruleset>
632<ruleset name="Audible.de">
633  <target host="audible.de"/>
634  <target host="*.audible.de"/>
635
636  <securecookie host="^(.*\.)?audible\.de$" name=".*" />
637
638  <rule from="^http://(www\.)?audible\.de/" to="https://www.audible.de/"/>
639  <rule from="^http://audible\.de/" to="https://www.audible.de/"/>
640</ruleset>
641<ruleset name="Australian Koala Foundation">
642        <target host="savethekoala.com" />
643        <target host="www.savethekoala.com" />
644
645        <rule from="^http://(www\.)?savethekoala\.com/" to="https://www.savethekoala.com/" />
646</ruleset><ruleset name="Authorize.Net">
647        <target host="authorize.net" />
648        <target host="www.authorize.net" />
649        <target host="developer.authorize.net" />
650        <target host="community.developer.authorize.net" />
651        <target host="verify.authorize.net" />
652        <target host="authorizenet.com" />
653        <target host="www.authorizenet.com" />
654
655        <!-- The fuzeqna.com domain is included to avoid possible
656        issues with mixed content. Also, from what one remembers,
657        using the Authorize.Net site may involve accessing the
658        fuzeqna.com/www.fuzeqna.com domains . -->
659        <target host="fuzeqna.com" />
660        <target host="www.fuzeqna.com" />
661
662        <rule from="^http://(developer|community\.developer|verify|www)\.authorize\.net/" to="https://$1.authorize.net/" />
663        <rule from="^http://authorize\.net/" to="https://www.authorize.net/" />
664        <rule from="^https?://(www\.)?authorizenet\.com/" to="https://www.authorize.net/" />
665       
666        <rule from="^http://(www\.)?fuzeqna\.com/" to="https://www.fuzeqna.com/" />
667</ruleset><ruleset name="Autistici/inventati" default_off="self-signed">
668  <target host="*.autistici.org" />
669  <target host="*.inventati.org" />
670  <target host="*.noblogs.org" />
671
672  <rule from="^http://([^/:@]*)\.autistici\.org/" to="https://$1.autistici.org/"/>
673  <rule from="^http://([^/:@]*)\.inventati\.org/" to="https://$1.inventati.org/"/>
674  <exclusion pattern="^http://stats\.noblogs\.org/"/>
675  <rule from="^http://([^/:@]*)\.noblogs\.org/" to="https://$1.noblogs.org/"/>
676</ruleset>
677<!-- already enforces SSL. adding to prevent ssl strip attacks -->
678<ruleset name="Avanza.se">
679  <target host="www.Avanza.se" />
680  <target host="Avanza.se" />
681  <rule from="^http://www\.avanza\.se/" to="https://www.avanza.se/"/>
682  <rule from="^http://avanza\.se/" to="https://www.avanza.se/"/>
683</ruleset>
684
685<!-- Av vendor. Static.avast.com lacks https. -->
686<ruleset name="Avast">
687  <!-- Avast as started reditecting HTTPS to HTTP on its main site :(
688       https://trac.torproject.org/projects/tor/ticket/3779 -->
689
690        <!--
691  <target host="avast.com" />
692        <target host="www.avast.com" />
693  -->
694        <target host="forum.avast.com" />
695        <target host="support.avast.com" />
696        <!--
697  <rule from="^http://www\.avast\.com/" to="https://www.avast.com/"/>
698        <rule from="^http://avast\.com/" to="https://www.avast.com/"/>
699  -->
700        <rule from="^http://(forum|support)\.avast\.com/" to="https://$1.avast.com/"/>
701</ruleset>
702
703<ruleset name="Avira">
704  <target host="www.avira.com" />
705  <target host="avira.com" />
706  <target host="forum.avira.com" />
707  <target host="license.avira.com" />
708  <target host="analysis.avira.com" />
709  <target host="myaccount.avira.com" />
710  <target host="partnernet.avira.com" />
711
712  <rule from="^http://(www\.)?avira\.com/" to="https://www.avira.com/"/>
713  <rule from="^http://(www\.)?forum\.avira\.com/" to="https://forum.avira.com/"/>
714  <rule from="^http://(www\.)?license\.avira\.com/" to="https://license.avira.com/"/>
715  <rule from="^http://(www\.)?analysis\.avira\.com/" to="https://analysis.avira.com/"/>
716  <rule from="^http://(www\.)?myaccount\.avira\.com/" to="https://myaccount.avira.com/"/>
717  <rule from="^http://(www\.)?partnernet\.avira\.com/" to="https://partnernet.avira.com/"/>
718</ruleset>
719<ruleset name="Avropa.se">
720  <target host="www.avropa.se" />
721  <target host="avropa.se" />
722  <rule from="^http://www\.avropa\.se/" to="https://www.avropa.se/"/>
723  <rule from="^http://avropa\.se/" to="https://avropa.se/"/>
724</ruleset>
725
726<ruleset name="Azingsport.se">
727  <target host="www.azingsport.se" />
728  <target host="azingsport.se" />
729  <rule from="^http://www\.azingsport\.se/" to="https://www.azingsport.se/"/>
730  <rule from="^http://azingsport\.se/" to="https://azingsport.se/"/>
731</ruleset>
732
733<ruleset name="BritishAirways">
734  <target host="britishairways.com"/>
735  <target host="www.britishairways.com"/>
736
737  <securecookie host="^(.*\.)?britishairways.com$" name=".*" />
738
739  <rule from="^http://(www\.)?britishairways\.com/" to="https://www.britishairways.com/"/>
740</ruleset>
741<ruleset name="BKK-Advita">
742<target host="www.bkk-advita.de" />
743<target host="bkk-advita.de" />
744<rule from="^http://(www\.)?bkk-advita\.de/" to="https://www.bkk-advita.de/"/>
745</ruleset>
746<ruleset name="BKW-FMB.ch">
747        <target host="bkw-fmb.ch" />
748        <target host="www.bkw-fmb.ch" />
749
750        <rule from="^http://(www\.)?bkw-fmb\.ch/" to="https://www.bkw-fmb.ch/"/>
751        <securecookie host="^(.*\.)?bkw-fmb\.ch$" name=".*" />
752</ruleset>
753<ruleset name="BankOfNewZeland">
754  <target host="bnz.co.nz" />
755  <target host="www.bnz.co.nz" />
756
757  <securecookie host="^(.+\.)?bnz\.co\.nz$" name=".*"/>
758
759  <rule from="^http://(www\.)?bnz\.co\.nz/" to="https://www.bnz.co.nz/"/>
760</ruleset>
761<ruleset name="Boe.es">
762  <target host="boe.es" />
763  <target host="*.boe.es" />
764
765  <rule from="^http://boe\.es/" to="https://www.boe.es/"/>
766  <rule from="^http://([^/:@]*)\.boe\.es/" to="https://$1.boe.es/"/>
767</ruleset>
768<ruleset name="BT">
769  <target host="www.bt.com" />
770  <target host="bt.com" />
771
772  <rule from="^http://(www\.)?bt\.com/" to="https://www.bt.com/"/>
773</ruleset>
774<ruleset name="BTH.se">
775        <target host="www.bth.se" />
776        <target host="bth.se" />
777        <rule from="^http://bth\.se/" to="https://www.bth.se/"/>
778        <rule from="^http://www\.bth\.se/" to="https://www.bth.se/"/>
779</ruleset>
780
781<ruleset name="BTunnel">
782  <target host="btunnel.com" />
783  <target host="www.btunnel.com" />
784
785  <securecookie host="^(.+\.)?btunnel\.com$" name=".*"/>
786
787  <rule from="^http://(www\.)?btunnel\.com/" to="https://btunnel.com/"/>
788</ruleset>
789<ruleset name="Backupify">
790  <target host="backupify.com" />
791  <target host="www.backupify.com" />
792
793  <securecookie host="^(.*\.)?backupify\.com$" name=".*" />
794
795  <rule from="^http://(www\.)?backupify\.com/" to="https://www.backupify.com/"/>
796</ruleset>
797<ruleset name="Badoo.com">
798  <target host="www.badoo.com" />
799  <target host="badoo.com" />
800  <rule from="^http://www\.badoo\.com/" to="https://www.badoo.com/"/>
801  <rule from="^http://badoo\.com/" to="https://www.badoo.com/"/>
802</ruleset>
803
804<ruleset name="Bagatoo.se">
805  <target host="www.bagatoo.se" />
806  <target host="bagatoo.se" />
807  <rule from="^http://www\.bagatoo\.se/" to="https://www.bagatoo.se/"/>
808  <rule from="^http://bagatoo\.se/" to="https://bagatoo.se/"/>
809</ruleset>
810
811<ruleset name="Bahn-BKK">
812<target host="www.bahn-bkk.de" />
813<target host="bahn-bkk.de" />
814<rule from="^http://(www\.)?bahn-bkk\.de/" to="https://www.bahn-bkk.de/"/>
815</ruleset>
816<ruleset name="Bahn.de">
817<target host="*.bahn.de" />
818  <target host="bahn.de" />
819
820  <exclusion pattern="^http://bauarbeiten\.bahn\.de/"/>
821  <rule from="^http://([^/:@\.]+)\.bahn\.de/" to="https://$1.bahn.de/"/>
822</ruleset>
823<ruleset name="Balatarin">
824  <target host="balatarin.com" />
825  <target host="www.balatarin.com" />
826
827  <rule from="^http://(www\.)?balatarin\.com/" to="https://balatarin.com/" />
828</ruleset>
829<ruleset name="Baldershage.se">
830  <target host="www.baldershage.se" />
831  <target host="baldershage.se" />
832  <rule from="^http://www\.baldershage\.se/" to="https://www.baldershage.se/"/>
833  <rule from="^http://baldershage\.se/" to="https://baldershage.se/"/>
834</ruleset>
835
836<ruleset name="Balkongshoppen.se">
837  <target host="www.balkongshoppen.se" />
838  <target host="balkongshoppen.se" />
839  <rule from="^http://www\.balkongshoppen\.se/" to="https://www.balkongshoppen.se/"/>
840  <rule from="^http://balkongshoppen\.se/" to="https://balkongshoppen.se/"/>
841</ruleset>
842
843<ruleset name="Bandcamp (buggy)" default_off="breaks streaming">
844<target host="bandcamp.com" />
845<target host="www.bandcamp.com" />
846<rule from="^http://(www\.)?bandcamp\.com/" to="https://www.bandcamp.com/"/>
847</ruleset>
848<!-- Thanks to ForceTLS -->
849<ruleset name="BofA (buggy)" default_off="breaks some URLs">
850  <target host="www.bankofamerica.com" />
851  <target host="bankofamerica.com" />
852
853  <rule from="^http://(www\.)?bankofamerica\.com/" to="https://www.bankofamerica.com/"/>
854</ruleset>
855<ruleset name="bankrate.com">
856        <target host="bankrate.com" />
857        <target host="www.bankrate.com" />
858        <rule from="^http://bankrate\.com/" to="https://origin.bankrate.com/"/>
859        <rule from="^http://www\.bankrate\.com/" to="https://origin.bankrate.com/"/>
860</ruleset>
861
862<ruleset name="Barclays">
863  <target host="www.barclays.co.uk" />
864  <target host="barclays.co.uk" />
865  <target host="ask.barclays.co.uk" />
866  <target host="barclayscorporate.com" />
867  <target host="www.barclayscorporate.com" />
868
869  <rule from="^http://(www\.)?barclays\.co\.uk/" to="https://www.barclays.co.uk/"/>
870  <rule from="^http://ask\.barclays\.co\.uk/" to="https://ask.barclays.co.uk/"/>
871  <rule from="^http://(www\.)?barclayscorporate\.com/" to="https://www.barclayscorporate.com/"/>
872</ruleset>
873<ruleset name="Barmer-GEK">
874<target host="www.barmer-gek.de" />
875<target host="barmer-gek.de" />
876<rule from="^http://(www\.)?barmer-gek\.de/" to="https://www.barmer-gek.de/"/>
877</ruleset>
878<ruleset name="Barnskospecialisten.se">
879  <target host="www.barnskospecialisten.se" />
880  <target host="barnskospecialisten.se" />
881  <rule from="^http://www\.barnskospecialisten\.se/" to="https://www.barnskospecialisten.se/"/>
882  <rule from="^http://barnskospecialisten\.se/" to="https://barnskospecialisten.se/"/>
883</ruleset>
884
885<ruleset name="Belpino.se">
886  <target host="www.belpino.se" />
887  <target host="belpino.se" />
888  <rule from="^http://www\.belpino\.se/" to="https://www.belpino.se/"/>
889  <rule from="^http://belpino\.se/" to="https://belpino.se/"/>
890</ruleset>
891
892<ruleset name="BerliOS" default_off="Cert warning">
893  <target host="berlios.de" />
894  <target host="*.berlios.de" />
895
896  <rule from="^http://([^/:@]*)\.berlios\.de/" to="https://$1.berlios.de/"/>
897</ruleset>
898<ruleset name="Berlin.de">
899  <target host="www.berlin.de" />
900  <target host="berlin.de" />
901  <target host="*.berlin.de" />
902
903  <exclusion pattern="^http://action\.berlin\.de/"/>
904  <rule from="^http://berlin\.de/" to="https://berlin.de/"/>
905  <rule from="^http://([^/:@]*)\.berlin\.de/" to="https://$1.berlin.de/"/>
906</ruleset>
907<ruleset name="Bhiab.se">
908  <target host="www.bhiab.se" />
909  <target host="bhiab.se" />
910  <rule from="^http://www\.bhiab\.se/" to="https://www.bhiab.se/"/>
911  <rule from="^http://bhiab\.se/" to="https://bhiab.se/"/>
912</ruleset>
913
914<ruleset name="German BigBrotherAwards">
915        <target host="bigbrotherawards.de" />
916        <target host="www.bigbrotherawards.de" />
917
918        <rule from="^http://(www\.)?bigbrotherawards\.de/" to="https://www.bigbrotherawards.de/" />
919
920        <!-- Invoking https://bigbrotherawards.de/ produces a certificate error, so redirect
921        https://bigbrotherawards.de/ to https://www.bigbrotherawards.de/ -->
922        <rule from="^https://bigbrotherawards\.de/" to="https://www.bigbrotherawards.de/" />
923</ruleset><ruleset name="BinRev">
924  <target host="www.binrev.com" />
925  <target host="binrev.com" />
926
927  <rule from="^http://(www\.)?binrev\.com/" to="https://binrev.com/"/>
928</ruleset>
929<ruleset name="BinSearch">
930  <target host="www.binsearch.info" />
931  <target host="binsearch.info" />
932
933  <rule from="^http://(www\.)?binsearch\.info/" to="https://www.binsearch.info/"/>
934</ruleset>
935<!-- blogg.binero.se lacks ssl support. -->
936<ruleset name="Binero.se">
937  <target host="binero.se" />
938  <rule from="^http://binero\.se/" to="https://www.binero.se/"/>
939  <rule from="^http://support\.binero\.se/" to="https://support.binero.se/"/>
940  <rule from="^http://order\.binero\.se/" to="https://order.binero.se/"/>
941  <rule from="^http://www\.binero\.se/" to="https://www.binero.se/"/>
942</ruleset>
943
944<ruleset name="BitBucket">
945  <target host="www.bitbucket.org" />
946  <target host="bitbucket.org" />
947
948  <rule from="^http://(www\.)?bitbucket\.org/" to="https://bitbucket.org/"/>
949</ruleset>
950<ruleset name="Bitcoin" default_off="self-signed">
951  <target host="www.bitcoin.org" />
952  <target host="bitcoin.org" />
953  <target host="forum.bitcoin.org" />
954
955  <rule from="^http://(www\.)?bitcoin\.org/" to="https://www.bitcoin.org/" />
956  <rule from="^http://(forum)\.bitcoin\.org/"  to="https://$1.bitcoin.org/" />
957</ruleset>
958<ruleset name="bit.ly">
959  <target host="bit.ly" />
960  <target host="www.bit.ly" />
961  <target host="bit.ly.pro" />
962  <target host="www.bit.ly.pro" />
963  <target host="j.mp" />
964  <target host="www.j.mp" />
965  <target host="on.fb.me" />
966
967  <securecookie host="^(.*\.)?bit\.ly$" name=".*"/>
968  <rule from="^http://(?:www\.)?bit\.ly/" to="https://bit.ly/"/>
969  <rule from="^http://(?:www\.)?bit\.ly\.pro/" to="https://bit.ly/pro/"/>
970  <!--
971  j.mp doesn't have a correct certificate but the namespaces are the same!
972  -->
973  <rule from="^http://(?:www\.)?j\.mp/" to="https://bit.ly/"/>
974  <rule from="^http://on\.fb\.me/" to="https://bit.ly/"/>
975</ruleset>
976<ruleset name="bittorrentdotorg" default_off="certificate mismatch">
977  <target host="bittorrent.org" />
978  <target host="www.bittorrent.org" />
979
980  <rule from="^http://(www\.)?bittorrent\.org/" to="https://www.bittorrent.org/"/>
981</ruleset>
982<ruleset name="BlackHat">
983  <target host="blackhat.com" />
984  <target host="www.blackhat.com" />
985
986  <rule from="^http://(www\.)?blackhat\.com/" to="https://www.blackhat.com/"/>
987</ruleset>
988<ruleset name="Black Night">
989  <!-- most subdomains for blacknight.com will not work as they use invalid
990       certs, .ie instead of .com.  blacknight.ie is reserved for customer
991       logins -->
992  <target host="www.blacknight.com" />
993  <target host="blacknight.com" />
994
995  <rule from="^http://(www\.)?blacknight\.com/" to="https://www.blacknight.com/"/>
996</ruleset>
997<ruleset name="BlameStella">
998  <target host="blamestella.com" />
999  <target host="www.blamestella.com" />
1000
1001  <securecookie host="^(www\.)?blamestella\.com$" name=".*"/>
1002
1003  <rule from="^http://(www\.)?blamestella\.com/" to="https://www.blamestella.com/"/>
1004</ruleset>
1005<ruleset name="Blekko">
1006  <target host="blekko.com" />
1007  <target host="www.blekko.com" />
1008
1009  <rule from="^http://(www\.)?blekko\.com/" to="https://blekko.com/" />
1010</ruleset>
1011<ruleset name="Blip">
1012  <target host="blip.tv" />
1013  <target host="www.blip.tv" />
1014  <target host="a.blip.tv" />
1015
1016  <securecookie host="^(.+\.)?blip\.tv$" name=".*"/>
1017
1018  <rule from="^http://((www|a)\.)?blip\.tv/" to="https://blip.tv/"/>
1019</ruleset>
1020<ruleset name="Blipp.com">
1021        <target host="blipp.com" />
1022        <target host="www.blipp.com" />
1023        <target host="vic20.blipp.com" />
1024        <rule from="^http://www\.blipp\.com/" to="https://blipp.com/"/>
1025        <rule from="^http://vic20\.blipp\.com/" to="https://vic20.blipp.com/"/>
1026        <rule from="^http://blipp\.com/" to="https://blipp.com/"/>
1027</ruleset>
1028
1029<ruleset name="BlockBuster UK">
1030  <target host="www.blockbuster.co.uk" />
1031  <target host="blockbuster.co.uk" />
1032
1033  <rule from="^http://(www\.)?blockbuster\.co\.uk/" to="https://www.blockbuster.co.uk/"/>
1034</ruleset>
1035<ruleset name="BlockExplorer.com">
1036  <target host="blockexplorer.com" />
1037  <target host="www.blockexplorer.com" />
1038
1039  <rule from="^http://(www\.)?blockexplorer\.com/" to="https://blockexplorer.com/" />
1040</ruleset>
1041<ruleset name="Blocket.se">
1042        <target host="blocket.se" />
1043        <target host="www.blocket.se" />
1044        <target host="www2.blocket.se" />
1045        <target host="eas.blocket.se" />
1046        <rule from="^http://blocket\.se/" to="https://www.blocket.se/"/>
1047        <rule from="^http://www\.blocket\.se/" to="https://www.blocket.se/"/>
1048        <rule from="^http://www2\.blocket\.se/" to="https://www2.blocket.se/"/>
1049        <rule from="^http://eas\.blocket\.se/" to="https://eas.blocket.se/"/>
1050</ruleset>
1051
1052<ruleset name="BlueHost">
1053  <target host="www.bluehost.com" />
1054  <target host="bluehost.com" />
1055  <target host="helpdesk.bluehost.com" />
1056  <target host="tutorials.bluehost.com" />
1057  <target host="serverstatus.bluehost.com" />
1058
1059  <rule from="^http://(www\.)?bluehost\.com/" to="https://www.bluehost.com/"/>
1060  <rule from="^http://(helpdesk|tutorials)\.bluehost\.com/" to="https://$1.bluehost.com/"/>
1061  <rule from="^http://serverstatus\.bluehost\.com/$" to="https://www.bluehost.com/cgi/serverstatus/"/>
1062</ruleset>
1063<ruleset name="Boards.ie">
1064  <!-- updated to include subdomains -->
1065  <target host="boards.ie" />
1066  <target host="*.boards.ie" />
1067
1068  <rule from="^http://boards\.ie/" to="https://boards.ie/"/>
1069  <rule from="^http://([^/:@]*)\.boards\.ie/" to="https://$1.boards.ie/"/>
1070</ruleset>
1071<ruleset name="Boell.de">
1072        <target host="groupwise.boell.de" />
1073        <rule from="^http://groupwise\.boell\.de/" to="https://groupwise.boell.de/" />
1074</ruleset>
1075<ruleset name="Boinc">
1076<target host="boinc.berkeley.edu" />
1077<target host="www.boinc.berkeley.edu" />
1078<rule from="^http://(www\.)?boinc\.berkeley\.edu/" to="https://boinc.berkeley.edu/"/>
1079</ruleset>
1080<ruleset name="Bokborgen.se">
1081  <target host="www.bokborgen.se" />
1082  <target host="bokborgen.se" />
1083  <rule from="^http://www\.bokborgen\.se/" to="https://bokborgen.se/"/>
1084  <rule from="^http://bokborgen\.se/" to="https://bokborgen.se/"/>
1085</ruleset>
1086
1087<ruleset name="Bokelskere">
1088  <target host="bokelskere.no" />
1089  <target host="www.bokelskere.no" />
1090
1091  <rule from="^http://bokelskere\.no/" to="https://bokelskere.no/"/>
1092  <rule from="^http://www\.bokelskere\.no/" to="https://www.bokelskere.no/"/>
1093</ruleset>
1094<ruleset name="Bolagsverket.se">
1095        <target host="bolagsverket.se" />
1096        <target host="www.bolagsverket.se" />
1097        <rule from="^http://bolagsverket\.se/" to="https://www.bolagsverket.se/"/>
1098        <rule from="^http://www\.bolagsverket\.se/" to="https://www.bolagsverket.se/"/>
1099</ruleset>
1100
1101<ruleset name="Boltbus.com">
1102  <target host="boltbus.com" />
1103  <target host="www.boltbus.com" />
1104
1105  <rule from="^http://(www\.)?boltbus\.com/" to="https://www.boltbus.com/" />
1106</ruleset>
1107<ruleset name="BookMyName">
1108  <target host="www.bookmyname.com" />
1109  <target host="bookmyname.com" />
1110
1111  <rule from="^http://(www\.)?bookmyname\.com/" to="https://www.bookmyname.com/"/>
1112</ruleset>
1113<ruleset name="Booklog.jp">
1114  <target host="booklog.jp" />
1115  <target host="www.booklog.jp" />
1116
1117  <rule from="^http://(www\.)?booklog\.jp/" to="https://www.booklog.jp/" />
1118</ruleset>
1119 <!-- Partial -->
1120<ruleset name="Bookworm">
1121  <target host="bookworm.oreilly.com" />
1122
1123  <securecookie host="^bookworm\.oreilly\.com$" name=".*" />
1124
1125  <rule from="^http://bookworm\.oreilly\.com/" to="https://bookworm.oreilly.com/"/>
1126
1127</ruleset>
1128<!-- pharmacy. medical info should be private -->
1129<ruleset name="boots.com">
1130        <target host="boots.com" />
1131        <target host="www.boots.com" />
1132        <rule from="^http://boots\.com/" to="https://www.boots.com/"/>
1133        <rule from="^http://www\.boots\.com/" to="https://www.boots.com/"/>
1134</ruleset>
1135
1136<ruleset name="Bothar">
1137  <target host="www.bothar.ie" />
1138  <target host="bothar.ie" />
1139
1140  <rule from="^http://(www\.)?bothar\.ie/" to="https://$1bothar.ie/"/>
1141</ruleset>
1142<ruleset name="BoxUK">
1143  <target host="www.boxuk.com"/>
1144  <target host="boxuk.com"/>
1145
1146  <securecookie host="^(www\.)?boxuk\.com$" name=".*"/>
1147
1148  <rule from="^http://(www\.)?boxuk\.com/" to="https://www.boxuk.com/"/>
1149</ruleset>
1150<ruleset name="Boxee.tv">
1151  <target host="www.boxee.tv" />
1152  <target host="app.boxee.tv" />
1153  <target host="boxee.tv" />
1154
1155  <rule from="^http://(?:www\.)?boxee\.tv/" to="https://www.boxee.tv/"/>
1156  <rule from="^http://app\.boxee\.tv/" to="https://app.boxee.tv/"/>
1157</ruleset>
1158<ruleset name="Brainbench">
1159  <target host="www.brainbench.com" />
1160  <target host="brainbench.com" />
1161
1162  <rule from="^http://(www\.)?brainbench\.com/" to="https://www.brainbench.com/"/>
1163</ruleset>
1164
1165<ruleset name="Braunschweig">
1166  <target host="www.braunschweig.de" />
1167  <target host="braunschweig.de" />
1168
1169  <rule from="^http://(www\.)?braunschweig\.de/" to="https://www.braunschweig.de/"/>
1170</ruleset>
1171<ruleset name="Broadband Reports">
1172  <target host="www.dslreports.com" />
1173  <target host="dslreports.com" />
1174  <target host="www.broadbandreports.com" />
1175  <target host="broadbandreports.com" />
1176
1177  <rule from="^http://(www\.)?dslreports\.com/" to="https://secure.dslreports.com/"/>
1178  <rule from="^http://(www\.)?broadbandreports\.com/" to="https://secure.dslreports.com/"/>
1179</ruleset>
1180
1181<ruleset name="BrowserShots">
1182  <target host="browsershots.org"/>
1183  <target host="www.browsershots.org"/>
1184
1185  <securecookie host="^(.+\.)?browsershots\.org$" name=".*"/>
1186
1187  <rule from="^http://(www\.)?browsershots\.org/" to="https://browsershots.org/"/>
1188</ruleset>
1189<ruleset name="Buckyballs">
1190  <target host="getbuckyballs.com" />
1191  <target host="www.getbuckyballs.com" />
1192
1193  <rule from="^http://(www\.)?getbuckyballs\.com/" to="https://www.getbuckyballs.com/" />
1194</ruleset>
1195<ruleset name="Budgetgolf.se">
1196  <target host="www.budgetgolf.se" />
1197  <target host="budgetgolf.se" />
1198  <rule from="^http://www\.budgetgolf\.se/" to="https://www.budgetgolf.se/"/>
1199  <rule from="^http://budgetgolf\.se/" to="https://www.budgetgolf.se/"/>
1200</ruleset>
1201
1202<ruleset name="BufferedIO" default_off="Cacert signed">
1203  <target host="buffered.io" />
1204  <target host="www.buffered.io" />
1205
1206  <securecookie host="^(.+\.)?buffered\.io$" name=".*"/>
1207
1208  <rule from="^http://(www\.)?buffered\.io/" to="https://buffered.io/"/>
1209</ruleset>
1210<ruleset name="BulbMan">
1211  <target host="bulbman.com" />
1212  <target host="www.bulbman.com" />
1213
1214  <rule from="^http://(www\.)?bulbman\.com/" to="https://www.bulbman.com/"/>
1215</ruleset>
1216<ruleset name="BulkSMS">
1217  <target host="bulksms.co.uk" />
1218  <target host="www.bulksms.co.uk" />
1219
1220  <securecookie host="^(.+\.)?bulksms\.co\.uk$" name=".*"/>
1221
1222  <rule from="^http://(www\.)?bulksms\.co\.uk/" to="https://www.bulksms.co.uk/"/>
1223</ruleset>
1224<!-- Av vendor. -->
1225<ruleset name="Bullguard">
1226        <target host="bullguard.com" />
1227        <target host="www.bullguard.com" />
1228        <rule from="^http://www\.bullguard\.com/" to="https://www.bullguard.com/"/>
1229        <rule from="^http://bullguard\.com/" to="https://www.bullguard.com/"/>
1230</ruleset>
1231
1232<ruleset name="Bungie">
1233  <target host="www.bungie.net" />
1234  <target host="bungie.net" />
1235
1236  <rule from="^http://(www\.)?bungie\.net/" to="https://www.bungie.net/"/>
1237</ruleset>
1238<ruleset name="Bunkus.org">
1239<target host="www.bunkus.org" />
1240<target host="bunkus.org" />
1241<rule from="^http://(www\.)?bunkus\.org/" to="https://www.bunkus.org/"/>
1242</ruleset>
1243<ruleset name="BuisnessInsider">
1244<target host="businessinsider.com" />
1245<target host="www.businessinsider.com" />
1246        <rule from="^http://businessinsider\.com/" to="https://www.businessinsider.com/"/>
1247        <rule from="^http://www\.businessinsider\.com/" to="https://www.businessinsider.com/"/>
1248</ruleset>
1249<ruleset name="C-Base">
1250  <target host="www.c-base.org" />
1251  <target host="c-base.org" />
1252  <target host="logbuch.c-base.org" />
1253  <target host="wiki.c-base.org" />
1254
1255  <rule from="^http://(www\.)?c-base\.org/" to="https://www.c-base.org/"/>
1256  <rule from="^http://(logbuch|wiki)\.c-base\.org/" to="https://$1.c-base.org/"/>
1257</ruleset>
1258<ruleset name="CA-PCR.fr">
1259  <target host="www.ca-pca.fr" />
1260  <target host="ca-pca.fr" />
1261
1262  <rule from="^http://(www\.)?ca-pca\.fr/" to="https://www.ca-pca.fr/"/>
1263</ruleset>
1264<ruleset name="CACert.org" default_off="signed by CACert itself">
1265  <target host="*.cacert.org" />
1266
1267  <!-- this currently errs on the side of not breaking things over security -->
1268  <exclusion pattern="\.crt" />
1269  <exclusion pattern="\.crl" />
1270  <exclusion pattern="ocsp\." />
1271  <exclusion pattern="^http://cats\.cacert\.org/"/>
1272
1273  <rule from="^http://([^/:@]*)\.cacert\.org/" to="https://$1.cacert.org/"/>
1274</ruleset>
1275<ruleset name="ccc.de" default_off="CACert">
1276  <target host="www.ccc.de" />
1277  <target host="*.ccc.de" />
1278
1279  <exclusion pattern="^http://dasalte\.ccc\.de/"/><!-- revoked cert -->
1280  <exclusion pattern="^http://chaosradio\.ccc\.de/"/><!-- invalid cert -->
1281  <exclusion pattern="^http://blog.chaosradio\.ccc\.de/"/><!-- invalid cert -->
1282  <rule from="^http://ccc\.de/" to="https://www.ccc.de/"/>
1283  <rule from="^http://([^/:@]*)\.ccc\.de/" to="https://$1.ccc.de/"/>
1284</ruleset>
1285<ruleset name="CDT">
1286  <target host="www.cdt.org" />
1287  <target host="cdt.org" />
1288
1289  <rule from="^http://(www\.)?cdt\.org/" to="https://www.cdt.org/"/>
1290</ruleset>
1291<ruleset name="CDW and CDW-G">
1292  <target host="www.cdwg.com" />
1293  <target host="www.cdw.com" />
1294
1295  <rule from="^http://(www\.)?cdw(g)?\.com/" to="https://www.cdw$2.com/"/>
1296</ruleset>
1297
1298<ruleset name="CERT.fi">
1299  <target host="www.cert.fi" />
1300  <target host="cert.fi" />
1301  <rule from="^http://www\.cert\.fi/" to="https://www.cert.fi/"/>
1302  <rule from="^http://cert\.fi/" to="https://www.cert.fi/"/>
1303</ruleset>
1304
1305<ruleset name="CERT.se">
1306  <target host="www.cert.se" />
1307  <target host="cert.se" />
1308  <rule from="^http://www\.cert\.se/" to="https://www.cert.se/"/>
1309  <rule from="^http://cert\.se/" to="https://www.cert.se/"/>
1310</ruleset>
1311
1312<ruleset name="Cert">
1313  <target host="cert.org" />
1314  <target host="www.cert.org" />
1315
1316  <securecookie host="^(.+\.)?cert\.org$" name=".*"/>
1317
1318  <rule from="^http://(www\.)?cert\.org/" to="https://www.cert.org/"/>
1319  <!--
1320  This host's HTTPS deployment seems to be broken...
1321  <target host="www.kb.cert.org" />
1322  <rule from="^http://www\.kb\.cert\.org/" to="https://www.kb.cert.org/"/>
1323  -->
1324</ruleset>
1325<!-- idg does their best to make https tricky -->
1326<ruleset name="CIO.com.au">
1327        <target host="demo.idg.com.au" />
1328        <target host="cio.com.au" />
1329        <target host="www.cio.com.au" />
1330        <rule from="^http://demo\.idg\.com\.au/" to="https://demo.idg.com.au/"/>
1331        <rule from="^http://cio\.com\.au/" to="https://www.cio.com.au/"/>
1332        <rule from="^http://www\.cio\.com\.au/" to="https://www.cio.com.au/"/>
1333</ruleset>
1334
1335<ruleset name="CJ">
1336  <target host="cj.com" />
1337  <target host="www.cj.com" />
1338  <target host="signup.cj.com" />
1339  <target host="members.cj.com" />
1340
1341  <securecookie host="^(.+\.)?cj\.com$" name=".*"/>
1342
1343  <rule from="^http://(www\.)?cj\.com/" to="https://www.cj.com/"/>
1344  <rule from="^http://(members|signup)\.cj\.com/" to="https://$1.cj.com/"/>
1345</ruleset>
1346<ruleset name="CPJ">
1347  <target host="www.cpj.org" />
1348  <target host="cpj.org" />
1349
1350  <rule from="^http://(www\.)?cpj\.org/" to="https://www.cpj.org/"/>
1351</ruleset>
1352<ruleset name="CPSC.gov">
1353  <target host="cpsc.gov" />
1354  <target host="www.cpsc.gov" />
1355
1356  <rule from="^http://(www\.)?cpsc\.gov/" to="https://www.cpsc.gov/" />
1357</ruleset>
1358<ruleset name="CRM Metrix">
1359        <target host="www.crm-metrix.com" />
1360        <target host="crm-metrix.com" />
1361
1362        <rule from="^http://(www\.)?crm-metrix\.com/" to="https://www.crm-metrix.com/" />
1363</ruleset><ruleset name="CSAF" default_off="self-signed">
1364  <target host="www.csaf.cz" />
1365  <target host="csaf.cz" />
1366
1367  <rule from="^http://(www\.)?csaf\.cz/" to="https://csaf.cz/"/>
1368</ruleset>
1369<ruleset name="CSIS.dk">
1370        <target host="csis.dk" />
1371        <target host="www.csis.dk" />
1372        <rule from="^http://csis\.dk/" to="https://www.csis.dk/"/>
1373        <rule from="^http://www\.csis\.dk/" to="https://www.csis.dk/"/>
1374</ruleset>
1375
1376<ruleset name="CSRSupport.com">
1377  <target host="www.csrsupport.com" />
1378  <target host="csrsupport.com" />
1379  <rule from="^http://www\.csrsupport\.com/" to="https://www.csrsupport.com/"/>
1380  <rule from="^http://csrsupport\.com/" to="https://www.csrsupport.com/"/>
1381</ruleset>
1382
1383<ruleset name="CTunnel">
1384  <target host="ctunnel.com" />
1385  <target host="www.ctunnel.com" />
1386
1387  <securecookie host="^(.+\.)?ctunnel\.com$" name=".*"/>
1388
1389  <rule from="^http://(www\.)?ctunnel\.com/" to="https://ctunnel.com/"/>
1390</ruleset>
1391<ruleset name="CVI Melles Griot">
1392  <target host="www.cvimellesgriot.com" />
1393  <target host="cvimellesgriot.com" />
1394
1395  <rule from="^http://(www\.)?cvimellesgriot\.com/" to="https://www.cvimellesgriot.com/"/>
1396</ruleset>
1397<ruleset name="CaceTech">
1398  <target host="www.cacetech.com" />
1399  <target host="cacetech.com" />
1400
1401  <rule from="^http://(www\.)?cacetech\.com/" to="https://www.cacetech.com/"/>
1402</ruleset>
1403<!-- lots of domains lack (valid) https:
1404        www.cam.ac.uk
1405        www.sports.cam.ac.uk
1406        www.lib.cam.ac.uk
1407        for exampl -->
1408<ruleset name="Cam.ac.uk">
1409        <target host="www.cl.cam.ac.uk" />
1410        <target host="www.admin.cam.ac.uk" />
1411        <target host="webservices.admin.cam.ac.uk" />
1412        <rule from="^http://www\.cl\.cam\.ac\.uk/" to="https://www.cl.cam.ac.uk/"/>
1413        <rule from="^http://www\.admin\.cam\.ac\.uk/" to="https://www.admin.cam.ac.uk/"/>
1414        <rule from="^http://webservices\.admin\.cam\.ac\.uk/" to="https://webservices.admin.cam.ac.uk/"/>
1415</ruleset>
1416
1417<ruleset name="Canadian Lung Association">
1418        <target host="lung.ca" />
1419        <target host="www.lung.ca" />
1420
1421        <rule from="^http://(www\.)?lung\.ca/" to="https://www.lung.ca/" />
1422</ruleset><!-- ICMag SSL cert is valid for www domains; https://icmag.com/* gives invalid cert warning -->
1423<ruleset name="Intl Cannagraphic Magazine">
1424  <target host="www.icmag.*" />
1425  <target host="icmag.*" />
1426 
1427  <rule from="^http://(www\.)?icmag\.com/" to="https://www.icmag.com/"/>
1428  <rule from="^https://icmag\.com/" to="https://www.icmag.com/"/>
1429  <rule from="^http://(www\.)?icmag\.com/ic/" to="https://www.icmag.com/ic/"/>
1430  <rule from="^https://icmag\.com/ic/" to="https://www.icmag.com/ic/"/>
1431</ruleset>
1432<ruleset name="Canv.as">
1433  <target host="canv.as" />
1434  <target host="www.canv.as" />
1435
1436  <rule from="^http://(www\.)?canv\.as/" to="https://www.canv.as/" />
1437</ruleset>
1438<ruleset name="Cdon.se">
1439  <target host="cdon.se" />
1440  <rule from="^http://cdon\.se/" to="https://cdon.se/"/>
1441  <rule from="^http://www\.cdon\.se/" to="https://cdon.se/"/>
1442</ruleset>
1443
1444<ruleset name="Celiac Disease Foundation">
1445        <target host="celiac.org" />
1446        <target host="www.celiac.org" />
1447
1448        <rule from="^http://(www\.)?celiac\.org/" to="https://www.celiac.org/" />
1449</ruleset><ruleset name="Censorship.govt.nz">
1450        <target host="censorship.govt.nz" />
1451        <target host="www.censorship.govt.nz" />
1452        <rule from="^http://www\.censorship\.govt\.nz/" to="https://www.censorship.govt.nz/"/>
1453        <rule from="^http://censorship\.govt\.nz/" to="https://www.censorship.govt.nz/"/>
1454</ruleset>
1455
1456<ruleset name="Centos">
1457  <target host="centos.org" />
1458  <target host="*.centos.org" />
1459
1460  <rule from="^http://(www\.)?centos\.org/" to="https://www.centos.org/"/>
1461</ruleset>
1462<ruleset name="Change.org">
1463  <target host="change.org" />
1464  <target host="www.change.org" />
1465
1466  <rule from="^http://(www\.)?change\.org/" to="https://www.change.org/" />
1467</ruleset>
1468<ruleset name="Charlotte Nature Museum">
1469        <target host="charlottenaturemuseum.org" />
1470        <target host="www.charlottenaturemuseum.org" />
1471
1472        <rule from="^http://(www\.)?charlottenaturemuseum\.org/" to="https://www.charlottenaturemuseum.org/" />
1473</ruleset><ruleset name="Check Point">
1474  <target host="www.checkpoint.com" />
1475  <target host="checkpoint.com" />
1476
1477  <rule from="^http://(www\.)?checkpoint\.com/" to="https://www.checkpoint.com/"/>
1478</ruleset>
1479<ruleset name="ChillingEffects">
1480  <target host="www.chillingeffects.org" />
1481  <target host="chillingeffects.org" />
1482
1483  <rule from="^http://(www\.)?chillingeffects\.org/" to="https://www.chillingeffects.org/"/>
1484</ruleset>
1485<!-- Google chromium web. Supports src over ssl atm -->
1486<ruleset name="Chromium.org">
1487  <target host="src.chromium.org" />
1488  <rule from="^http://src\.chromium\.org/" to="https://src.chromium.org/"/>
1489</ruleset>
1490
1491<ruleset name="Chronicle">
1492  <target host="chronicle.com" />
1493  <target host="www.chronicle.com" />
1494
1495  <securecookie host="^(www\.)?chronicle\.com$" name=".*"/>
1496
1497  <rule from="^http://(www\.)?chronicle\.com/" to="https://chronicle.com/"/>
1498</ruleset>
1499<ruleset name="Cia.vc" default_off="Cert expired in 2009" >
1500  <target host="cia.vc" />
1501  <target host="www.cia.vc" />
1502
1503  <rule from="^http://(www\.)?cia\.vc/" to="https://cia.vc/" />
1504</ruleset>
1505<ruleset name="Cisco" default_off="Needs review">
1506  <target host="www.cisco.com"/>
1507  <target host="cisco.com"/>
1508  <exclusion pattern="^http://www\.cisco\.com/cgi-bin/login"/>
1509 <!-- Cisco Redirection Pages do not support HTTPS, so we exclude them. They redirect to HTTPS secured pages, though -->
1510  <exclusion pattern="^http://(www\.)?cisco\.com/go"/>
1511
1512  <!-- Default: Replace with HTTPS. Redirect at Logout is still bugged, but the Logout itself works -->
1513  <rule from="^http://(www\.)?cisco\.com/" to="https://www.cisco.com/"/>
1514</ruleset>
1515<ruleset name="CiteULike">
1516  <target host="www.citeulike.org" />
1517  <target host="citeulike.org" />
1518
1519  <rule from="^http://(www\.)?citeulike\.org/login" to="https://citeulike.org/login"/>
1520</ruleset>
1521<ruleset name="CitizensInformation">
1522  <target host="www.citizensinformation.ie" />
1523  <target host="citizensinformation.ie" />
1524
1525  <!-- cert only valid for www.citizensinformation.ie -->
1526  <rule from="^http://(www\.)?citizensinformation\.ie/" to="https://www.citizensinformation.ie/"/>
1527</ruleset>
1528<ruleset name="City of Portland, OR">
1529  <target host="www.portlandonline.com"/>
1530  <target host="portlandonline.com"/>
1531
1532  <rule from="^http://(www\.)?portlandonline\.com/" to="https://www.portlandonline.com/"/>
1533</ruleset>
1534<ruleset name="Clasohlson.se">
1535        <target host="clasohlson.se" />
1536        <target host="www.clasohlson.se" />
1537        <rule from="^http://www\.clasohlson\.se/" to="https://www.clasohlson.se/"/>
1538        <rule from="^http://clasohlson\.se/" to="https://www.clasohlson.se/"/>
1539</ruleset>
1540
1541<ruleset name="Clickbank.com">
1542  <target host="www.clickbank.com" />
1543  <target host="clickbank.com" />
1544  <rule from="^http://www\.clickbank\.com/" to="https://www.clickbank.com/"/>
1545  <rule from="^http://clickbank\.com/" to="https://www.clickbank.com/"/>
1546</ruleset>
1547
1548<ruleset name="Cloudflare">
1549  <target host="cloudflare.com" />
1550  <target host="www.cloudflare.com" />
1551
1552  <securecookie host="^(.*\.)?cloudflare\.com$" name=".*" />
1553
1554  <rule from="^http://(www\.)?cloudflare\.com/" to="https://www.cloudflare.com/"/>
1555</ruleset>
1556<ruleset name="Cloudfront">
1557  <target host="www.cloudfront.net" />
1558  <target host="*.cloudfront.net" />
1559
1560  <rule from="^http://([^/:@]*)\.cloudfront\.net/"  to="https://$1.cloudfront.net/"/>
1561</ruleset>
1562<ruleset name="Codeplex">
1563  <target host="codeplex.com" />
1564  <target host="*.codeplex.com" />
1565
1566  <securecookie host="^(.*\.)?codeplex\.com$" name=".*" />
1567
1568  <exclusion pattern="^http://download\.codeplex\.com/" />
1569  <exclusion pattern="^http://i1\.codeplex\.com/" />
1570  <exclusion pattern="^http://i2\.codeplex\.com/" />
1571  <exclusion pattern="^http://i3\.codeplex\.com/" />
1572
1573  <rule from="^http://(www\.)?codeplex\.com/" to="https://www.codeplex.com/"/>
1574  <rule from="^http://([^/:@]*)\.codeplex\.com/" to="https://$1.codeplex.com/"/>
1575</ruleset>
1576<ruleset name="Colorado State Attorney General">
1577        <target host="coloradoattorneygeneral.gov" />
1578        <target host="www.coloradoattorneygeneral.gov" />
1579
1580        <rule from="^http://(www\.)?coloradoattorneygeneral\.gov/" to="https://www.coloradoattorneygeneral.gov/" />
1581</ruleset><ruleset name="Official Colorado No-Call List">
1582        <target host="coloradonocall.com" />
1583        <target host="www.coloradonocall.com" />
1584
1585        <rule from="^http://(www\.)?coloradonocall\.com/" to="https://www.coloradonocall.com/" />
1586</ruleset><ruleset name="CommonDreams">
1587  <target host="commondreams.org" />
1588  <target host="www.commondreams.org" />
1589
1590  <securecookie host="^(www\.)?commondreams\.org$" name=".*"/>
1591
1592  <rule from="^http://(www\.)?commondreams\.org/" to="https://www.commondreams.org/"/>
1593</ruleset>
1594<ruleset name="CommuniGate">
1595  <target host="communigate.com" />
1596  <target host="*.communigate.com" />
1597
1598  <rule from="^http://(www\.)?communigate\.com/" to="https://www.communigate.com/"/>
1599</ruleset>
1600<ruleset name="Comodo (Partial)">
1601  <target host="*.comodo.com" />
1602  <rule from="^http://(www|personalfirewall|antivirus|enterprise)\.comodo\.com/"
1603          to="https://$1.comodo.com/"/>
1604</ruleset>
1605<ruleset name="Comparis.ch">
1606        <target host="comparis.ch" />
1607        <target host="www.comparis.ch" />
1608        <securecookie host="^(.*\.)?comparis\.ch$" name=".*" />
1609
1610        <rule from="^http://(www\.)?comparis\.ch/" to="https://www.comparis.ch/"/>
1611</ruleset>
1612<ruleset name="ComputerWorld">
1613  <target host="computerworld.com"/>
1614  <target host="www.computerworld.com"/>
1615
1616  <rule from="^http://(www\.)?computerworld\.com/" to="https://www.computerworld.com/"/>
1617</ruleset>
1618<!-- already enforces https. adding to prevent sslstrips on port 80 -->
1619<ruleset name="Comviq.se">
1620        <target host="comviq.se" />
1621        <target host="www.comviq.se" />
1622        <rule from="^http://comviq\.se/" to="https://comviq.se/"/>
1623        <rule from="^http://www\.comviq\.se/" to="https://www.comviq.se/"/>
1624</ruleset>
1625
1626<ruleset name="Continental">
1627  <target host="www.continental.com" />
1628  <target host="continental.com" />
1629  <target host="www.covacations.com" />
1630  <target host="covacations.com" />
1631  <target host="checkin.continental.com" />
1632
1633  <rule from="^http://(www\.)?continental\.com/" to="https://www.continental.com/"/>
1634  <rule from="^http://www\.covacations\.com/" to="https://www.covacations.com/"/>
1635  <rule from="^http://covacations\.com/" to="https://www.covacations.com/"/>
1636  <rule from="^http://checkin\.continental\.com/" to="https://checkin.continental.com/"/>
1637
1638</ruleset>
1639<ruleset name="Coop.ch">
1640        <target host="coop.ch" />
1641        <target host="www.coop.ch" />
1642        <target host="bankcoop.ch" />
1643        <target host="www.bankcoop.ch" />
1644        <target host="onlinebanking.bankcoop.ch" />
1645        <target host="supercard.ch" />
1646        <target host="www.supercard.ch" />
1647
1648        <rule from="^http://(www\.)?coop\.ch/" to="https://www.coop.ch/"/>
1649        <rule from="^http://(www\.)?bankcoop\.ch/" to="https://www.bankcoop.ch/"/>
1650        <rule from="^http://(onlinebanking\.)?bankcoop\.ch/" to="https://onlinebanking.bankcoop.ch/"/>
1651        <rule from="^http://(www\.)?supercard\.ch/" to="https://www.supercard.ch/"/>
1652</ruleset>
1653
1654<ruleset name="Couchsurfing">
1655  <target host="www.couchsurfing.org" />
1656  <target host="couchsurfing.org" />
1657
1658  <rule from="^http://www\.couchsurfing\.org/login\.html$" to="https://www.couchsurfing.org/login.html"/>
1659</ruleset>
1660
1661<!-- Another tracking firm -->
1662<ruleset name="Countquest.se">
1663        <target host="sdc.countquest.se" />
1664        <rule from="^http://sdc\.countquest\.se/" to="https://sdc.countquest.se/"/>
1665</ruleset>
1666
1667<ruleset name="Courage Campaign">
1668        <target host="couragecampaign.org" />
1669        <target host="www.couragecampaign.org" />
1670        <target host="secure.couragecampaign.org" />
1671
1672        <rule from="^http://((www|secure)\.)?couragecampaign\.org/" to="https://secure.couragecampaign.org/" />
1673</ruleset><ruleset name="Foundation for Health Coverage Education">
1674        <target host="coverageforall.org" />
1675        <target host="www.coverageforall.org" />
1676
1677        <rule from="^http://(www\.)?coverageforall\.org/" to="https://www.coverageforall.org/" />
1678</ruleset><!-- if we are going to include ads and tracking info, lets atleast do it by https.-->
1679<ruleset name="coxnewsweb.net">
1680        <target host="coxnewsweb.com" />
1681        <target host="img.coxnewsweb.com" />
1682        <target host="alt.coxnewsweb.com" />
1683        <rule from="^http://img\.coxnewsweb\.com/" to="https://img.coxnewsweb.com/"/>
1684        <rule from="^http://alt\.coxnewsweb\.com/" to="https://alt.coxnewsweb.com/"/>
1685</ruleset>
1686
1687<ruleset name="Creative Commons">
1688  <target host="i.creativecommons.org" />
1689  <target host="api.creativecommons.org" />
1690  <target host="creativecommons.org" />
1691  <target host="creativecommons.net" />
1692
1693  <rule from="^http://(i|api)\.creativecommons\.org/" to="https://$1.creativecommons.org/"/>
1694  <rule from="^http://creativecommons\.org/" to="https://creativecommons.org/"/>
1695  <rule from="^http://creativecommons\.net/" to="https://creativecommons.net/"/>
1696</ruleset>
1697<ruleset name="Crucial.com (partial)">
1698  <target host="*.crucial.com" />
1699
1700  <rule from="^http://www\.crucial\.com/(images\d{0,2}|js|css|reviews)/"
1701          to="https://www.crucial.com/$1/"/>
1702  <rule from="^http://www\.crucial\.com/favicon.png"
1703          to="https://www.crucial.com/favicon.png" />
1704</ruleset>
1705<ruleset name="Cultura Sparebank">
1706  <target host="cultura.no" />
1707  <target host="www.cultura.no" />
1708
1709  <rule from="^http://cultura\.no/" to="https://cultura.no/"/>
1710  <rule from="^http://www\.cultura\.no/" to="https://www.cultura.no/"/>
1711</ruleset>
1712
1713<ruleset name="cve.mitre.org">
1714        <target host="cve.mitre.org" />
1715        <rule from="^http://cve\.mitre\.org/" to="https://cve.mitre.org/"/>
1716</ruleset>
1717
1718<ruleset name="Cykloteket.se">
1719  <target host="www.cykloteket.se" />
1720  <target host="cykloteket.se" />
1721  <rule from="^http://www\.cykloteket\.se/" to="https://cykloteket.se/"/>
1722  <rule from="^http://cykloteket\.se/" to="https://cykloteket.se/"/>
1723</ruleset>
1724
1725<ruleset name="DALnet">
1726  <target host="dal.net"/>
1727  <target host="www.dal.net"/>
1728  <target host="inspiration.dal.net"/>
1729  <target host="users.dal.net"/>
1730
1731  <securecookie host="^(.+\.)?dal\.net$" name=".*"/>
1732
1733  <rule from="^http://(www\.)?dal\.net/" to="https://www.dal.net/"/>
1734  <rule from="^http://(inspiration|users)\.dal\.net/" to="https://$1.dal.net/"/>
1735</ruleset>
1736<ruleset name="DHL.de">
1737  <target host="dhl.de"/>
1738  <target host="*.dhl.de"/>
1739
1740  <securecookie host="^(.*\.)?dhl\.de$" name=".*" />
1741
1742  <rule from="^http://(www\.)?dhl\.de/" to="https://www.dhl.de/"/>
1743  <rule from="^http://dhl\.de/" to="https://www.dhl.de/"/>
1744</ruleset>
1745<ruleset name="DTunnel">
1746  <target host="dtunnel.com" />
1747  <target host="www.dtunnel.com" />
1748
1749  <securecookie host="^(.+\.)?dtunnel\.com$" name=".*"/>
1750
1751  <rule from="^http://(www\.)?dtunnel\.com/" to="https://dtunnel.com/"/>
1752</ruleset>
1753<ruleset name="DVDFab" default_off="TLS error">
1754  <target host="www.dvdfab.com" />
1755  <target host="www.dvdfab.net" />
1756  <target host="dvdfab.com" />
1757  <target host="dvdfab.net" />
1758
1759  <rule from="^https?://(www\.)?dvdfab\.(com|net)/" to="https://www.dvdfab.$2/"/>
1760</ruleset>
1761<ruleset name="Daft.ie" default_off="causes image problems">
1762  <target host="www.daft.ie" />
1763  <target host="daft.ie" />
1764
1765  <!-- cert only valid for *.daft.ie -->
1766  <rule from="^http://(www\.)?daft\.ie/" to="https://www.daft.ie/"/>
1767</ruleset>
1768<ruleset name="Daily">
1769  <target host="www.daily.co.uk" />
1770  <target host="webmail.daily.co.uk" />
1771  <target host="daily.co.uk" />
1772
1773  <rule from="^http://(www\.)?daily\.co\.uk/" to="https://www.daily.co.uk/"/>
1774  <rule from="^http://(webmail)\.daily\.co\.uk/" to="https://$1.daily.co.uk/"/>
1775</ruleset>
1776<!-- jobs.datacenterknowledge.com lacks ssl. :( -->
1777<!-- openx.datacenterknowledge.com lacks ssl. :( -->
1778<ruleset name="DataCenterKnowledge.com">
1779  <target host="www.datacenterknowledge.com" />
1780  <target host="datacenterknowledge.com" />
1781  <rule from="^http://www\.datacenterknowledge\.com/" to="https://www.datacenterknowledge.com/"/>
1782  <rule from="^http://datacenterknowledge\.com/" to="https://datacenterknowledge.com/"/>
1783</ruleset>
1784
1785<ruleset name="Datatilsynet">
1786  <target host="www.datatilsynet.no" />
1787  <target host="datatilsynet.no" />
1788  <target host="www.slettmeg.no" />
1789  <target host="slettmeg.no" />
1790
1791  <rule from="^http://(www\.)?datatilsynet\.no/" to="https://www.datatilsynet.no/"/>
1792  <rule from="^http://(www\.)?slettmeg\.no/" to="https://slettmeg.no/"/>
1793</ruleset>
1794<ruleset name="Deal Extreme">
1795  <target host="www.dealextreme.com" />
1796  <target host="dealextreme.com" />
1797
1798  <rule from="^http://(www\.)?dealextreme\.com/" to="https://www.dealextreme.com/"/>
1799</ruleset>
1800<ruleset name="DebianLists" default_off="self-signed">
1801  <target host="lists.debian.org" />
1802
1803  <rule from="^http://lists\.debian\.org/" to="https://lists.debian.org/"/>
1804</ruleset>
1805
1806<ruleset name="Decdna.net">
1807        <target host="na.decdna.net" />
1808        <target host="eu.link.decdna.net" />
1809
1810        <rule from="^http://(na|(eu\.link))\.decdna\.net/" to="https://$1.decdna.net/" />
1811</ruleset><ruleset name="Delico.se">
1812  <target host="www.delico.se" />
1813  <target host="delico.se" />
1814  <rule from="^http://www\.delico\.se/" to="https://www.delico.se/"/>
1815  <rule from="^http://delico\.se/" to="https://delico.se/"/>
1816</ruleset>
1817
1818<ruleset name="Dell">
1819        <target host="www.dell.com" />
1820        <target host="support.dell.com" />
1821        <rule from="^http://www\.dell\.com/" to="https://www.dell.com/"/>
1822        <rule from="^http://support\.dell\.com/" to="https://support.dell.com/"/>
1823</ruleset>
1824
1825<ruleset name="DemocracyNow">
1826  <target host="www.democracynow.org" />
1827  <target host="democracynow.org" />
1828
1829  <rule from="^http://(www\.)?democracynow\.org/" to="https://www.democracynow.org/"/>
1830</ruleset>
1831
1832<ruleset name="Demonoid">
1833  <target host="*.demonoid.com" />
1834  <target host="demonoid.com" />
1835  <target host="*.demonoid.me" />
1836  <target host="demonoid.me" />
1837
1838  <securecookie host="^(.*\.)demonoid\.com$" name=".*" />
1839  <securecookie host="^(.*\.)demonoid\.me$" name=".*" />
1840
1841  <rule from="^http://(www\.)?demonoid\.com/" to="https://www.demonoid.com/"/>
1842  <rule from="^http://(www\.)?demonoid\.me/" to="https://www.demonoid.me/"/>
1843</ruleset>
1844<ruleset name="DepositProtection">
1845  <target host="depositprotection.com" />
1846  <target host="www.depositprotection.com" />
1847
1848  <securecookie host="^(.+\.)?depositprotection\.com$" name=".*"/>
1849
1850  <rule from="^http://(www\.)?depositprotection\.com/" to="https://www.depositprotection.com/"/>
1851</ruleset>
1852<ruleset name="Deutsche BKK">
1853<target host="www.deutschebkk.de" />
1854<target host="deutschebkk.de" />
1855<rule from="^http://(www\.)?deutschebkk\.de/" to="https://www.deutschebkk.de/"/>
1856</ruleset>
1857<ruleset name="Develop-online.net">
1858        <target host="develop-online.net" />
1859        <target host="www.develop-online.net" />
1860        <rule from="^http://develop-online\.net/" to="https://develop-online.net/"/>
1861        <rule from="^http://www\.develop-online\.net/" to="https://www.develop-online.net/"/>
1862</ruleset>
1863
1864<ruleset name="DeviantArt (pending)" default_off="site operator says not ready yet">
1865        <target host="deviantart.com" />
1866        <target host="*.deviantart.com" />
1867        <target host="*.deviantart.net" />
1868        <exclusion pattern="^http://(backend|st|fc\d+|th\d+)\.deviantart\.(com|net)/"/>
1869        <rule from="^http://deviantart\.com/"
1870                to="https://www.deviantart.com/" />
1871        <rule from="^http://(.*)?\.deviantart\.(com|net)/"
1872                to="https://$1.deviantart.com/" />
1873</ruleset>
1874<ruleset name="Diagonalperiodico.net">
1875  <target host="diagonalperiodico.net" />
1876  <target host="www.diagonalperiodico.net" />
1877
1878  <rule from="^http://(www\.)?diagonalperiodico\.net/" to="https://www.diagonalperiodico.net/" />
1879</ruleset>
1880<ruleset name="Diasp.org">
1881  <target host="diasp.org" />
1882  <target host="www.diasp.org" />
1883
1884  <rule from="^http://(www\.)?diasp\.org/"
1885          to="https://diasp.org/"/>
1886</ruleset>
1887<ruleset name="Diaspora">
1888  <target host="joindiaspora.com" />
1889  <target host="www.joindiaspora.com" />
1890
1891  <rule from="^http://(www\.)?joindiaspora\.com/"
1892          to="https://joindiaspora.com/"/>
1893</ruleset>
1894<ruleset name="Die-Linke.de">
1895        <target host="die-linke.de" />
1896        <target host="www.die-linke.de" />
1897        <target host="linksmail.de" />
1898        <target host="www.linksmail.de" />
1899
1900        <rule from="^http://(www\.)?die-linke\.de/" to="https://www.die-linke.de/"/>
1901        <rule from="^http://(www\.)?linksmail\.de/" to="https://www.linksmail.de/"/>
1902</ruleset>
1903<ruleset name="Digitec.ch">
1904   <target host="www.digitec.ch" />
1905   <target host="digitec.ch" />
1906   <securecookie host="^(.*\.)?digitec\.ch$" name=".*" />
1907
1908   <rule from="^http://(www\.)?digitec\.ch/" to="https://www.digitec.ch/"/>
1909</ruleset>
1910
1911<ruleset name="Discovery Place">
1912        <target host="discoveryplace.org" />
1913        <target host="www.discoveryplace.org" />
1914        <target host="discoveryplacekids.org" />
1915        <target host="www.discoveryplacekids.org" />
1916
1917        <rule from="^http://(www\.)?discoveryplace\.org/" to="https://www.discoveryplace.org/" />
1918        <rule from="^http://(www\.)?discoveryplacekids\.org/" to="https://www.discoveryplacekids.org/" />
1919</ruleset><ruleset name="Diskusjon">
1920  <target host="diskusjon.no" />
1921  <target host="www.diskusjon.no" />
1922
1923  <rule from="^http://diskusjon\.no/" to="https://diskusjon.no/"/>
1924  <rule from="^http://www\.diskusjon\.no/" to="https://www.diskusjon.no/"/>
1925</ruleset>
1926
1927<!-- commenting system used by several large sites. -->
1928<ruleset name="Disqus">
1929        <target host="disqus.com" />
1930        <target host="www.disqus.com" />
1931        <rule from="^http://www\.disqus\.com/" to="https://disqus.com/"/>
1932        <rule from="^http://disqus\.com/" to="https://disqus.com/"/>
1933</ruleset>
1934
1935<ruleset name="Ditt Distrikt">
1936  <target host="dittdistrikt.no" />
1937  <target host="www.dittdistrikt.no" />
1938
1939  <rule from="^http://(www\.)?dittdistrikt\.no/" to="https://www.dittdistrikt.no/"/>
1940</ruleset>
1941
1942<ruleset name="DjurRattsAlliansen.se">
1943  <target host="www.djurrattsalliansen.se" />
1944  <target host="djurrattsalliansen.se" />
1945  <rule from="^http://www\.djurrattsalliansen\.se/" to="https://djurrattsalliansen.se/"/>
1946  <rule from="^http://djurrattsalliansen\.se/" to="https://djurrattsalliansen.se/"/>
1947</ruleset>
1948
1949<ruleset name="DnB Nor">
1950  <target host="www.dbnnor.no" />
1951  <target host="dbnnor.no" />
1952
1953        <rule from="^http://(www\.)?dnbnor\.no/" to="https://www.dnbnor.no/"/>
1954</ruleset>
1955<ruleset name="Dnsexit">
1956        <target host="www.dnsexit.com" />
1957        <target host="dnsexit.com" />
1958       
1959        <securecookie host="^(.*\.)?dnsexit\.com$" name=".*" />
1960       
1961        <rule from="^http://(www\.)?dnsexit\.com/" to="https://www.dnsexit.com/"/>
1962</ruleset>
1963<ruleset name="DoctorsWithoutBorders.org">
1964        <target host="doctorswithoutborders.org" />
1965        <target host="www.doctorswithoutborders.org" />
1966        <rule from="^http://www\.doctorswithoutborders\.org/" to="https://www.doctorswithoutborders.org/"/>
1967        <rule from="^http://doctorswithoutborders\.org/" to="https://doctorswithoutborders.org/"/>
1968</ruleset>
1969
1970<ruleset name="DocumentCloud">
1971  <target host="documentcloud.org" />
1972  <target host="www.documentcloud.org" />
1973
1974  <rule from="^http://(www\.)?documentcloud\.org/" to="https://www.documentcloud.org/" />
1975</ruleset>
1976<ruleset name="Dopplr.com">
1977  <target host="dopplr.com" />
1978  <target host="www.dopplr.com" />
1979
1980  <rule from="^http://(www\.)?dopplr\.com/" to="https://www.dopplr.com/" />
1981</ruleset>
1982<ruleset name="Dotster">
1983  <target host="dotster.com" />
1984  <target host="*.dotster.com" />
1985
1986  <rule from="^http://dotster\.com/" to="https://dotster.com/"/>
1987  <rule from="^http://([^/:@]*)\.dotster\.com/" to="https://$1.dotster.com/"/>
1988</ruleset>
1989<!-- if we are going to include ads and tracking info, lets atleast do it by https.-->
1990<ruleset name="Doubleclick.net (disabled)" default_off="breaks some news sites">
1991        <target host="doubleclick.net" />
1992        <target host="*.doubleclick.net" />
1993        <target host="*.au.doubleclick.net" />
1994        <target host="*.uk.doubleclick.net" />
1995        <target host="www.googleadservices.com" />
1996        <rule from="^http://doubleclick\.net/" to="https://doubleclick.net/"/>
1997  <rule from="^http://([^/:@]*)\.doubleclick\.net/" to="https://$1.doubleclick.net/"/>
1998  <rule from="^http://([^/:@]*)\.au\.doubleclick\.net/" to="https://$1.au.doubleclick.net/"/>
1999  <rule from="^http://([^/:@]*)\.uk\.doubleclick\.net/" to="https://$1.uk.doubleclick.net/"/>
2000  <rule from="^http://www\.googleadservices\.com/" to="https://www.googleadservices.com/"/>
2001</ruleset>
2002<!-- NOTE: In its current form and with the current site configuration,
2003this rule protects login passwords but prevents the user from reading
2004other users' journals! -->
2005
2006<ruleset name="Dreamwidth" default_off="breaks for non-logged-in users">
2007  <target host="www.dreamwidth.org" />
2008  <target host="dreamwidth.org" />
2009
2010  <rule from="^http://(?:www\.)?dreamwidth\.org/" to="https://www.dreamwidth.org/"/>
2011</ruleset>
2012<ruleset name="DropDav">
2013  <target host="dropdav.com"/>
2014  <target host="www.dropdav.com"/>
2015  <target host="dav.dropdav.com"/>
2016 
2017  <securecookie host="^(.+\.)?dropdav\.com$" name=".*"/>
2018
2019  <rule from="^http://(www\.)?dropdav\.com/" to="https://dropdav.com/"/>
2020  <rule from="^http://dav\.dropdav\.com/" to="https://dav.dropdav.com/" />
2021</ruleset>
2022<ruleset name="Dropbox">
2023  <target host="www.dropbox.com" />
2024  <target host="dropbox.com" />
2025  <target host="dl.dropbox.com" />
2026  <target host="dl-web.dropbox.com" />
2027  <target host="files.dropbox.com" />
2028
2029  <securecookie host="^(.*\.)?dropbox\.com$" name=".*" />
2030
2031  <rule from="^http://(dl|dl-web|files)\.dropbox\.com/" to="https://$1.dropbox.com/"/>
2032  <rule from="^http://(www\.)?dropbox\.com/" to="https://www.dropbox.com/"/>
2033 
2034  <!-- this fixes https://trac.torproject.org/projects/tor/ticket/3673 -->
2035  <exclusion pattern="http://(www\.)?dropbox.com/frameresize.htm" />
2036
2037  <!-- This breaks blog.dropbox.com and forums.dropbox.com, for example
2038  <rule from="^http://([^/:@]+)\.dropbox\.com/" to="https://$1.dropbox.com/"/>
2039  -->
2040</ruleset>
2041<ruleset name="Drupal">
2042  <target host="*.drupal.org" />
2043  <target host="drupal.org" />
2044
2045  <rule from="^http://(www\.)?drupal\.org/" to="https://drupal.org/"/>
2046  <rule from="^http://(sec|association|chicago2011)\.drupal\.org/" to="https://$1.drupal.org/"/>
2047  <!-- Following a bug report and https://drupal.org/node/952992 -->
2048  <!-- Some of the following don't work. -->
2049  <!--
2050  <rule from="^http://(groups|localize|testing|api|association|scratch|beta|chicago2011|london2011)\.drupal\.org/" to="https://$1.drupal.org/"/>
2051   -->
2052</ruleset>
2053<!-- Av vendor. includes plaintext from st.drweb.com -->
2054<ruleset name="Dr.Web">
2055        <target host="drweb.com" />
2056        <target host="www.drweb.com" />
2057        <target host="st.drweb.com" />
2058        <rule from="^http://www\.drweb\.com/" to="https://www.drweb.com/"/>
2059        <rule from="^http://st\.drweb\.com/" to="https://st.drweb.com/"/>
2060        <rule from="^http://drweb\.com/" to="https://www.drweb.com/"/>
2061</ruleset>
2062
2063<ruleset name="DuckDuckGo">
2064  <target host="duckduckgo.com" />
2065  <target host="*.duckduckgo.com" />
2066  <target host="ddg.gg" />
2067  <target host="duck.co" />
2068
2069  <exclusion pattern="^http://help\.duckduckgo\.com/" />
2070
2071  <rule from="^http://duckduckgo\.com/" to="https://duckduckgo.com/"/>
2072  <rule from="^http://([^/:@\.]+)\.duckduckgo\.com/" to="https://$1.duckduckgo.com/"/>
2073        <!-- TODO: What does ddg.gg/foo do? Runs query foo, redirects to homepage, or error? -->
2074    <rule from="^http://ddg\.gg/$" to="https://duckduckgo.com/" />
2075       
2076    <rule from="^http://duck\.co/" to="https://duck.co/" />
2077</ruleset>
2078<ruleset name="Dynamo Dresden">
2079        <target host="cms.dynamo-dresden.de" />
2080        <securecookie host="^(.*\.)?dynamo-dresden\.de$" name=".*" />
2081
2082        <rule from="^http://(cms\.)?dynamo-dresden\.de/" to="https://cms.dynamo-dresden.de/"/>
2083</ruleset>
2084<ruleset name="ED.gov">
2085  <target host="www.ed.gov" />
2086  <target host="nces.ed.gov" />
2087  <target host="ed.gov" />
2088  <rule from="^http://www\.ed\.gov/" to="https://www.ed.gov/"/>
2089  <rule from="^http://nces\.ed\.gov/" to="https://nces.ed.gov/"/>
2090  <rule from="^http://ed\.gov/" to="https://www.ed.gov/"/>
2091</ruleset>
2092
2093<ruleset name="EFF">
2094  <exclusion pattern="^http://action\.eff\.org/"/>
2095  <target host="*.eff.org" />
2096  <target host="eff.org" />
2097
2098  <rule from="^http://eff\.org/" to="https://eff.org/"/>
2099
2100  <rule from="^http://www\.eff\.org/" to="https://www.eff.org/"/>
2101
2102  <rule from="^http://secure\.eff\.org/shop"
2103          to="https://secure.eff.org/site/Ecommerce?store_id=2441" />
2104
2105  <rule from="^http://secure\.eff\.org/renew"
2106          to="https://secure.eff.org/site/Donation2" />
2107
2108  <rule from="^http://secure\.eff\.org/wiretapping"
2109          to="https://secure.eff.org/site/Donation2?idb=1344423068&#x26;df_id=1220" />
2110
2111  <rule from="^http://secure\.eff\.org/donate"
2112          to="https://secure.eff.org/site/Donation2?idb=43804189&#x26;df_id=1200" />
2113
2114  <rule from="^http://secure\.eff\.org/mechaposter"
2115        to="https://secure.eff.org/site/Ecommerce?VIEW_PRODUCT=true&#x26;product_id=2161&#x26;store_id=2441" />
2116
2117  <rule from="^http://([^/:@]*)\.eff\.org/" to="https://$1.eff.org/"/>
2118</ruleset>
2119<ruleset name="EPA (.ie)">
2120  <target host="www.epa.ie" />
2121  <target host="epa.ie" />
2122
2123  <exclusion pattern="^http://gis\.epa\.ie/"/> <!-- more a reminder to check for support at later date -->
2124  <!-- cert valid only for www. -->
2125  <rule from="^http://(www\.)?epa\.ie/" to="https://www.epa.ie/"/>
2126</ruleset>
2127<ruleset name="EPIC">
2128        <target host="epic.org" />
2129        <target host="www.epic.org" />
2130
2131        <rule from="^http://(www\.)?epic\.org/" to="https://epic.org/" />
2132</ruleset>
2133<ruleset name="ESB.ie">
2134  <target host="www.esb.ie" />
2135  <target host="esb.ie" />
2136  <target host="www.esbie.ie" />
2137  <target host="esbie.ie" />
2138
2139  <rule from="^http://(www\.)?esb\.ie/" to="https://www.esb.ie/"/>
2140  <rule from="^http://(www\.)?esbie\.ie/" to="https://$1esbie.ie/"/>
2141  <!-- esbi.ie and esbtelecoms.ie have no ssl support at this time -->
2142</ruleset>
2143<ruleset name="ESISS">
2144  <target host="esiss.ac.uk" />
2145  <target host="www.esiss.ac.uk" />
2146
2147  <securecookie host="^(.+\.)?esiss\.ac\.uk$" name=".*"/>
2148
2149  <rule from="^http://(www\.)?esiss\.ac\.uk/" to="https://www.esiss.ac.uk/"/>
2150</ruleset>
2151<ruleset name="ESRB">
2152  <target host="www.esrb.org" />
2153  <target host="esrb.org" />
2154
2155  <rule from="^http://(www\.)?esrb\.org/" to="https://www.esrb.org/"/>
2156</ruleset><ruleset name="ETS">
2157  <target host="ets.org" />
2158  <target host="*.ets.org" />
2159
2160  <rule from="^http://(www\.)?ets\.org/" to="https://www.ets.org/"/>
2161  <rule from="^http://(apstudio|ept-elm|gedcalifornia|gresearch|ibtsd3|mygre|onyx|ppi|srp|title2|toefl-registration|toeflrts)\.ets\.org/" to="https://$1.ets.org/"/>
2162</ruleset><ruleset name="EZTV">
2163  <target host="www.ezrss.it" />
2164  <target host="ezrss.it" />
2165  <target host="www.eztv.it" />
2166  <target host="eztv.it" />
2167  <target host="www.zoink.it" />
2168  <target host="zoink.it" />
2169  <target host="www.ezimages.eu" />
2170  <target host="ezimages.eu" />
2171
2172  <rule from="^(http|https)://(www\.)?(ezrss\.it|eztv\.it|zoink\.it|ezimages\.eu)/" to="https://$3/"/>
2173  <rule from="^http://torrent\.zoink\.it/" to="https://torrent.zoink.it/"/>
2174</ruleset>
2175<ruleset name="EasyNews">
2176  <target host="www.easynews.com" />
2177  <target host="easynews.com" />
2178  <target host="members.easynews.com" />
2179
2180  <rule from="^http://(www\.)?easynews\.com/" to="https://easynews.com/"/>
2181  <rule from="^http://members\.easynews\.com/" to="https://secure.members.easynews.com/"/>
2182</ruleset>
2183
2184<ruleset name="Economist">
2185<target host="www.economist.com" />
2186<target host="economist.com" />
2187<target host="media.economist.com" />
2188<rule from="^http://(www\.)?economist\.com/" to="https://www.economist.com/"/>
2189<rule from="^http://media\.economist\.com/" to="https://media.economist.com/"/>
2190</ruleset>
2191<ruleset name="EdUbuntu">
2192  <target host="edubuntu.org" />
2193  <target host="www.edubuntu.org" />
2194
2195  <rule from="^http://(www\.)?edubuntu\.org/" to="https://edubuntu.org/"/>
2196</ruleset>
2197<ruleset name="Edas.info">
2198  <target host="edas.info" />
2199  <target host="www.edas.info" />
2200
2201  <rule from="^http://(www\.)?edas\.info/" to="https://www.edas.info/" />
2202</ruleset>
2203<ruleset name="Egg">
2204  <target host="*.egg.com"/>
2205  <target host="egg.com"/>
2206
2207  <rule from="^http://(new\.|www\.)?egg\.com/" to="https://new.egg.com/"/>
2208  <rule from="^http://(your|phonehome)\.egg\.com/" to="https://$1.egg.com/"/>
2209</ruleset>
2210<ruleset name="ehrensenf" default_off="Cert warning">
2211  <target host="ehrensenf.de"/>
2212  <target host="www.ehrensenf.de"/>
2213
2214  <securecookie host="^(.*\.)?ehrensenf\.de$" name=".*" />
2215
2216  <rule from="^http://(www\.)?ehrensenf\.de/" to="https://www.ehrensenf.de/"/>
2217</ruleset>
2218<ruleset name="Elgiganten.se">
2219        <target host="elgiganten.se" />
2220        <rule from="^http://elgiganten\.se/" to="https://www.elgiganten.se/"/>
2221        <rule from="^http://www\.elgiganten\.se/" to="https://www.elgiganten.se/"/>
2222</ruleset>
2223
2224<ruleset name="Emediate.eu">
2225  <target host="eas4.emediate.eu" />
2226  <rule from="^http://eas4\.emediate\.eu/" to="https://eas4.emediate.eu/"/>
2227</ruleset>
2228
2229<ruleset name="Emsisoft">
2230        <target host="emsisoft.com" />
2231        <target host="www.emsisoft.com" />
2232        <rule from="^http://www\.emsisoft\.com/" to="https://www.emsisoft.com/"/>
2233        <rule from="^http://emsisoft\.com/" to="https://www.emsisoft.com/"/>
2234</ruleset>
2235
2236<ruleset name="EnergyStar">
2237  <target host="www.energystar.gov" />
2238  <target host="energystar.gov" />
2239
2240  <rule from="^http://(www\.)?energystar\.gov/" to="https://www.energystar.gov/"/>
2241</ruleset>
2242
2243<ruleset name="Eniro.se">
2244  <target host="eniro.se" />
2245  <rule from="^http://eniro\.se/" to="https://www.eniro.se/"/>
2246  <rule from="^http://www\.eniro\.se/" to="https://www.eniro.se/"/>
2247</ruleset>
2248
2249<ruleset name="Enom">
2250  <!-- Probably not be shippable until
2251  http://www.enom.com/domainsearch/default.aspx is unbroken or an appropriate
2252  exclusion is written for it -->
2253  <target host="www.enom.com" />
2254  <target host="enom.com" />
2255
2256  <rule from="^http://(www\.)?enom\.com/" to="https://www.enom.com/"/>
2257</ruleset>
2258<ruleset name="Epilepsy Foundation of America">
2259        <target host="epilepsyfoundation.org" />
2260        <target host="www.epilepsyfoundation.org" />
2261
2262        <rule from="^http://(www\.)?epilepsyfoundation\.org/" to="https://www.epilepsyfoundation.org/" />
2263</ruleset><ruleset name="Epilepsy Ontario">
2264        <target host="epilepsyontario.org" />
2265        <target host="www.epilepsyontario.org" />
2266
2267        <rule from="^http://(www\.)?epilepsyontario\.org/" to="https://www.epilepsyontario.org/" />
2268
2269        <!-- Invoking https://epilepsyontario.org/ gives a certificate
2270        error, so redirect https://epilepsyontario.org/ to
2271        https://www.epilepsyontario.org/ -->
2272        <rule from="^https://epilepsyontario\.org/" to="https://www.epilepsyontario.org/" />
2273</ruleset><ruleset name="Epson.com (partial)">
2274  <target host="www.epson.com" />
2275  <target host="epson.com" />
2276  <target host="was.epson.com" />
2277  <target host="pos.epson.com" />
2278
2279        <exclusion pattern="^http://(www\.)?epson\.com/cgi-bin/Store/jsp/Product/Photos.do"/>
2280        <!-- URLs such as http://www.epson.com/snowleopard -->
2281        <exclusion pattern="^http://(www\.)?epson\.com/([a-zA-Z]([a-zA-Z0-9])+){1}$"/>
2282        <exclusion pattern="^http://(www\.)?epson\.com/cgi-bin/Store/consumer/"/>
2283
2284        <rule from="^http://(www\.)?epson\.com/" to="https://www.epson.com/"/>
2285        <rule from="^http://was\.epson\.com/" to="https://was.epson.com/"/>
2286        <rule from="^http://pos\.epson\.com/" to="https://pos.epson.com/"/>
2287        <rule from="^https://(www\.)?epson\.com/(([a-zA-Z]([a-zA-Z0-9])+){1})$" to="https://$1epson.com/$2"/>
2288</ruleset>
2289
2290
2291<ruleset name="Erowid">
2292  <target host="www.erowid.com" />
2293  <target host="erowid.com" />
2294  <target host="www.erowid.org" />
2295  <target host="erowid.org" />
2296
2297  <rule from="^http://(www\.)?erowid\.(com|org)/" to="https://www.erowid.org/"/>
2298</ruleset>
2299<ruleset name="Euro-ix.net">
2300  <target host="euro-ix.net" />
2301  <target host="www.euro-ix.net" />
2302
2303  <rule from="^http://(www\.)?euro-ix\.net/" to="https://www.euro-ix.net/" />
2304</ruleset>
2305<!-- almost everything on europa.eu is missconfigured. but there are some exceptions. -->
2306<ruleset name="Europa.eu">
2307        <target host="consilium.europa.eu" />
2308        <target host="www.consilium.europa.eu" />
2309        <target host="www.ecb.europa.eu" />
2310        <target host="www.ecb.eu" />
2311        <rule from="^http://www\.consilium\.europa\.eu/" to="https://www.consilium.europa.eu/"/>
2312        <rule from="^http://consilium\.europa\.eu/" to="https://www.consilium.europa.eu/"/>
2313        <rule from="^http://www\.ecb\.europa\.eu/" to="https://www.ecb.europa.eu/"/>
2314        <rule from="^http://www\.ecb\.eu/" to="https://www.ecb.europa.eu/"/>
2315</ruleset>
2316<ruleset name="Eventbrite">
2317  <target host="eventbrite.com" />
2318  <target host="*.eventbrite.com" />
2319
2320  <rule from="^http://([^/:@]*\.)?eventbrite\.com/" to="https://$1eventbrite.com/" />
2321</ruleset>
2322<ruleset name="Evernote">
2323  <target host="www.evernote.com" />
2324  <target host="evernote.com" />
2325
2326  <securecookie host="^(.*\.)?evernote\.com$" name=".*" />
2327
2328  <rule from="^http://(www\.)?evernote\.com/" to="https://www.evernote.com/"/>
2329</ruleset>
2330<!-- uses data from stats.examiner.com that doesnt allow https with a correct cert. 2o7.net-->
2331<!-- Uses b.scorecardresearch.com, that only provides ssl via akamai. -->
2332<ruleset name="examiner.com">
2333        <target host="examiner.com" />
2334        <target host="www.examiner.com" />
2335        <target host="cdn2-b.examiner.com" />
2336        <rule from="^http://examiner\.com/" to="https://www.examiner.com/"/>
2337        <rule from="^http://www\.examiner\.com/" to="https://www.examiner.com/"/>
2338        <rule from="^http://cdn2\-b\.examiner\.com/" to="https://cdn2-b.examiner.com/"/>
2339</ruleset>
2340
2341<ruleset name="EzineArticles">
2342  <target host="www.ezinearticles.com" />
2343  <target host="blog.ezinearticles.com" />
2344  <target host="shop.ezinearticles.com" />
2345  <target host="subscriptions.ezinearticles.com" />
2346  <target host="ezinearticles.com" />
2347
2348  <rule from="^http://(www\.)?ezinearticles\.com/" to="https://ezinearticles.com/"/>
2349  <rule from="^http://(subscriptions)\.ezinearticles\.com/" to="https://$1.ezinearticles.com/"/>
2350  <!--
2351  <rule from="^http://(blog|shop|subscriptions)\.ezinearticles\.com/" to="https://$1.ezinearticles.com/"/>
2352  -->
2353</ruleset>
2354<ruleset name="FAAN College Network">
2355        <target host="faancollegenetwork.org" />
2356        <target host="www.faancollegenetwork.org" />
2357
2358        <rule from="^http://(www\.)?faancollegenetwork\.org/" to="https://www.faancollegenetwork.org/" />
2359</ruleset><ruleset name="FAZ">
2360  <target host="www.faz.net" />
2361  <target host="faz.net" />
2362  <target host="www.faz.de" />
2363  <target host="faz.de" />
2364
2365  <rule from="^http://(www\.)?faz\.(net|de)/" to="https://www.faz.net/"/>
2366</ruleset>
2367<ruleset name="Facebook+ (may break apps)" default_off="waiting for full FB cert deployment">
2368  <target host="facebook.com" />
2369  <target host="*.facebook.com" />
2370
2371  <securecookie host="^(.*\.)?facebook\.com$" name="c_user" />
2372  <securecookie host="^(.*\.)?facebook\.com$" name="lu" />
2373  <securecookie host="^(.*\.)?facebook\.com$" name="sct" />
2374  <securecookie host="^(.*\.)?facebook\.com$" name="xs" />
2375
2376  <rule from="^http://([a-z][a-z])-([a-z][a-z])\.facebook\.com/" to="https://www.facebook.com/"/>
2377
2378  <rule from="^http://apps\.facebook\.com/" to="https://apps.facebook.com/" />
2379</ruleset>
2380<ruleset name="FFMPEG" default_off="Certificate and SSL handshake errors">
2381  <target host="www.ffmpeg.org" />
2382  <target host="ffmpeg.org" />
2383
2384  <rule from="^(http|https)://(www\.)?ffmpeg\.org/" to="https://ffmpeg.org/"/>
2385</ruleset>
2386<ruleset name="FHI.se">
2387        <target host="fhi.se" />
2388        <target host="www.fhi.se" />
2389        <rule from="^http://www\.fhi\.se/" to="https://www.fhi.se/"/>
2390        <rule from="^http://fhi\.se/" to="https://fhi.se/"/>
2391</ruleset>
2392
2393<ruleset name="FHS.se">
2394        <target host="www.fhs.se" />
2395        <target host="fhs.se" />
2396        <rule from="^http://fhs\.se/" to="https://www.fhs.se/"/>
2397        <rule from="^http://www\.fhs\.se/" to="https://www.fhs.se/"/>
2398</ruleset>
2399
2400<ruleset name="FMV.se">
2401        <target host="fmv.se" />
2402        <target host="www.fmv.se" />
2403        <rule from="^http://www\.fmv\.se/" to="https://www.fmv.se/"/>
2404        <rule from="^http://fmv\.se/" to="https://www.fmv.se/"/>
2405</ruleset>
2406
2407<ruleset name="Free Software Foundation">
2408        <target host="fsf.org"/>
2409        <target host="www.fsf.org"/>
2410        <target host="static.fsf.org"/>
2411        <target host="gnu.org"/>
2412        <target host="*.gnu.org"/>
2413
2414        <rule from="^http://(www\.)?fsf\.org/" to="https://www.fsf.org/"/>
2415        <rule from="^http://static\.fsf\.org/" to="https://static.fsf.org/"/>
2416        <rule from="^http://(www\.)?gnu\.org/" to="https://www.gnu.org/"/>
2417        <rule from="^http://(lists|savannah)\.gnu\.org/" to="https://$1.gnu.org/"/>
2418</ruleset>
2419<ruleset name="FSFE.org">
2420  <target host="www.fsfe.org" />
2421  <target host="fsfe.org" />
2422  <rule from="^http://www\.fsfe\.org/" to="https://www.fsfe.org/"/>
2423  <rule from="^http://fsfe\.org/" to="https://fsfe.org/"/>
2424</ruleset>
2425
2426<ruleset name="FTD.de">
2427  <target host="www.ftd.de" />
2428  <target host="ftd.de" />
2429
2430  <rule from="^http://(www\.)?ftd\.de/" to="https://www.ftd.de/"/>
2431</ruleset>
2432<ruleset name="Facebook">
2433  <target host="facebook.com" />
2434  <target host="*.facebook.com" />
2435  <target host="*.facebook.de" />
2436  <target host="facebook.de" />
2437  <target host="*.facebook.fr" />
2438  <target host="facebook.fr" />
2439  <target host="connect.facebook.net" />
2440  <target host="*.fbcdn.net" />
2441  <target host="fbcdn-profile-a.akamaihd.net" />
2442
2443  <rule from="^http://(www\.)?facebook\.com/" to="https://www.facebook.com/"/>
2444  <rule from="^http://m\.facebook\.com/"      to="https://m.facebook.com/"/>
2445  <rule from="^http://ssl\.facebook\.com/"    to="https://ssl.facebook.com/"/>
2446  <rule from="^http://login\.facebook\.com/"  to="https://login.facebook.com/"/>
2447  <rule from="^http://developers\.facebook\.com/"  to="https://developers.facebook.com/"/>
2448  <rule from="^http://www\.v6\.facebook\.com/"
2449          to="https://www.v6.facebook.com/"/>
2450
2451  <rule from="^http://s-static\.ak\.facebook\.com/"
2452          to="https://s-static.ak.facebook.com/" />
2453
2454  <rule from="^http://profile\.ak\.facebook\.com/"
2455          to="https://profile.ak.facebook.com/" />
2456
2457  <rule from="^http://badge\.facebook\.com/badge/"
2458          to="https://www.facebook.com/badge/"/>
2459
2460  <rule from="^https?://(de-de\.|www\.)?facebook\.de/"
2461          to="https://www.facebook.com/"/>
2462  <rule from="^https?://de-de\.facebook\.com/"
2463          to="https://www.facebook.com/"/>
2464
2465  <rule from="^https?://(fr-fr\.|www\.)?facebook\.fr/"
2466          to="https://www.facebook.com/"/>
2467  <rule from="^https?://fr-fr\.facebook\.com/"
2468          to="https://www.facebook.com/"/>
2469
2470  <rule from="^http://connect\.facebook\.net/"
2471          to="https://connect.facebook.net/"/>
2472
2473  <rule from="^http://([^@:\./]+)\.fbcdn\.net/"
2474          to="https://$1.fbcdn.net/"/>
2475
2476  <rule from="^http://fbcdn-profile-a\.akamaihd\.net/"
2477          to="https://fbcdn-profile-a.akamaihd.net/"/>
2478</ruleset><ruleset name="Fanboy">
2479  <target host="fanboy.co.nz" />
2480  <target host="www.fanboy.co.nz" />
2481  <target host="secure.fanboy.co.nz" />
2482
2483  <securecookie host="^(.+\.)?fanboy\.co\.nz$" name=".*"/>
2484
2485  <rule from="^http://(www\.)?fanboy\.co\.nz/" to="https://secure.fanboy.co.nz/"/>
2486  <rule from="^http://secure\.fanboy\.co\.nz/" to="https://secure.fanboy.co.nz/"/>
2487</ruleset>
2488<!-- farmaciforbundet.se is a swedish labour union -->
2489<ruleset name="Farmaciforbundet.se">
2490        <target host="farmaciforbundet.se" />
2491        <target host="www.farmaciforbundet.se" />
2492        <rule from="^http://farmaciforbundet\.se/" to="https://www.farmaciforbundet.se/"/>
2493        <rule from="^http://www\.farmaciforbundet\.se/" to="https://www.farmaciforbundet.se/"/>
2494</ruleset>
2495
2496<ruleset name="FAS.org">
2497  <target host="www.fas.org" />
2498  <target host="fas.org" />
2499  <rule from="^http://www\.fas\.org/" to="https://www.fas.org/"/>
2500  <rule from="^http://fas\.org/" to="https://fas.org/"/>
2501</ruleset>
2502
2503<!-- medica info.. medical info should be private -->
2504<ruleset name="Fass.se">
2505        <target host="fass.se" />
2506        <target host="www.fass.se" />
2507        <rule from="^http://fass\.se/" to="https://www.fass.se/"/>
2508        <rule from="^http://www\.fass\.se/" to="https://www.fass.se/"/>
2509</ruleset>
2510
2511<ruleset name="Fastmail">
2512  <target host="www.fastmail.fm" />
2513  <target host="fastmail.fm" />
2514
2515  <rule from="^http://(www\.)?fastmail\.fm/" to="https://fastmail.fm/"/>
2516</ruleset>
2517<ruleset name="Fedora Project">
2518  <target host="fedoraproject.org" />
2519  <target host="*.fedoraproject.org" />
2520
2521  <rule from="^http://(www\.)?fedoraproject\.org/" to="https://fedoraproject.org/" />
2522  <rule from="^http://(alt|archives|blogs|boot|docs|lists|mirrors|spins|start|talk)\.fedoraproject\.org/" to="https://$1.fedoraproject.org/" />
2523</ruleset><ruleset name="FeedMyInbox">
2524  <target host="www.feedmyinbox.com" />
2525  <target host="feedmyinbox.com" />
2526
2527  <securecookie host="^(.*\.)?feedmyinbox\.com$" name=".*" />
2528
2529  <rule from="^http://(www\.)?feedmyinbox\.com/" to="https://www.feedmyinbox.com/"/>
2530</ruleset>
2531<ruleset name="Fefe">
2532  <target host="blog.fefe.de" />
2533
2534  <rule from="^http://blog\.fefe\.de/" to="https://blog.fefe.de/"/>
2535</ruleset>
2536
2537<ruleset name="Feide">
2538  <target host="idp.feide.no" />
2539
2540  <rule from="^http://idp\.feide\.no/" to="https://idp.feide.no/"/>
2541</ruleset>
2542<ruleset name="Fianna Fail">
2543  <target host="www.fiannafail.ie" />
2544  <target host="fiannafail.ie" />
2545
2546  <rule from="^http://(www\.)?fiannafail\.ie/" to="https://secure.fiannafail.ie/"/>
2547</ruleset>
2548<ruleset name="Finn">
2549  <target host="finn.no" />
2550  <target host="www.finn.no" />
2551
2552  <exclusion pattern="^http://labs\.finn\.no/"/>
2553  <exclusion pattern="^http://kart\.finn\.no/"/>
2554  <exclusion pattern="^http://oppdrag\.finn\.no/"/>
2555  <exclusion pattern="^http://katalog\.finn\.no/"/>
2556  <exclusion pattern="^http://www\.katalog\.finn\.no/"/>
2557  <rule from="^http://finn\.no/" to="https://finn.no/"/>
2558  <rule from="^http://www\.finn\.no/" to="https://www.finn.no/"/>
2559</ruleset>
2560
2561<!-- already enforces https. adding to prevent sslstrips on port 80 -->
2562<ruleset name="Fiskeriverket.se">
2563        <target host="fiskeriverket.se" />
2564        <target host="www.fiskeriverket.se" />
2565        <rule from="^http://fiskeriverket\.se/" to="https://www.fiskeriverket.se/"/>
2566        <rule from="^http://www\.fiskeriverket\.se/" to="https://www.fiskeriverket.se/"/>
2567</ruleset>
2568
2569<ruleset name="FiveTV">
2570  <target host="*.five.tv" />
2571  <target host="five.tv" />
2572
2573  <rule from="^http://(www\.)?five\.tv/" to="https://www.five.tv/"/>
2574  <rule from="^http://(about|demand|fwd|sso)\.five\.tv/" to="https://$1.five.tv/"/>
2575</ruleset>
2576<!-- already enforces https. adding to prevent sslstrips on port 80 -->
2577<ruleset name="Flashback.org">
2578        <target host="flashback.org" />
2579        <target host="www.flashback.org" />
2580        <rule from="^http://flashback\.org/" to="https://www.flashback.org/"/>
2581        <rule from="^http://www\.flashback\.org/" to="https://www.flashback.org/"/>
2582</ruleset>
2583
2584<ruleset name="Flattr">
2585  <target host="api.flattr.com" />
2586  <target host="www.flattr.com" />
2587  <target host="flattr.com" />
2588
2589  <rule from="^http://(www\.)?flattr\.com/" to="https://flattr.com/" />
2590  <rule from="^http://api\.flattr\.com/" to="https://api.flattr.com/" />
2591</ruleset>
2592<ruleset name="Flickr (partial)">
2593        <target host="www.flickr.com" />
2594        <target host="flickr.com" />
2595
2596        <rule from="^http://(www\.)?flickr\.com/" to="https://secure.flickr.com/"/>
2597</ruleset>
2598<ruleset name="FluxBB.org">
2599  <target host="www.fluxbb.org" />
2600  <target host="fluxbb.org" />
2601
2602  <rule from="^http://(www\.)?fluxbb\.org/" to="https://fluxbb.org/"/>
2603</ruleset><ruleset name="Fokus Bank">
2604  <target host="fokus.no" />
2605  <target host="www.fokus.no" />
2606
2607  <rule from="^http://fokus\.no/" to="https://www.fokus.no/"/>
2608  <rule from="^http://www\.fokus\.no/" to="https://www.fokus.no/"/>
2609</ruleset>
2610
2611<!-- This is a swedish insurance company -->
2612<ruleset name="Folksam.se">
2613        <target host="folksam.se" />
2614        <target host="www.folksam.se" />
2615        <rule from="^http://www\.folksam\.se/" to="https://www.folksam.se/"/>
2616        <rule from="^http://folksam\.se/" to="https://www.folksam.se/"/>
2617</ruleset>
2618
2619<ruleset name="Food Allergy Initiative">
2620        <target host="faiusa.org" />
2621        <target host="www.faiusa.org" />
2622
2623        <rule from="^http://(www\.)?faiusa\.org/" to="https://www.faiusa.org/" />
2624</ruleset><ruleset name="Food Allergy &amp; Anaphylaxis Network">
2625        <target host="foodallergy.org"/>
2626        <target host="www.foodallergy.org"/>
2627
2628        <rule from="^http://(www\.)?foodallergy\.org/" to="https://www.foodallergy.org/" />
2629</ruleset><ruleset name="Foris Wine">
2630  <target host="foriswine.com" />
2631  <target host="www.foriswine.com" />
2632
2633  <rule from="^http://(www\.)?foriswine\.com/" to="https://www.foriswine.com/"/>
2634</ruleset>
2635<ruleset name="Forsakringskassan.se">
2636  <target host="www.forsakringskassan.se" />
2637  <target host="forsakringskassan.se" />
2638  <rule from="^http://www\.forsakringskassan\.se/" to="https://www.forsakringskassan.se/"/>
2639  <rule from="^http://forsakringskassan\.se/" to="https://www.forsakringskassan.se/"/>
2640</ruleset>
2641
2642<!-- forsvarsforbundet.se is a swedish labour union -->
2643<ruleset name="Forsvarsforbundet.se">
2644        <target host="forsvarsforbundet.se" />
2645        <target host="www.forsvarsforbundet.se" />
2646        <rule from="^http://forsvarsforbundet\.se/" to="https://www.forsvarsforbundet.se/"/>
2647        <rule from="^http://www\.forsvarsforbundet\.se/" to="https://www.forsvarsforbundet.se/"/>
2648</ruleset>
2649
2650<!-- Fortum is nordic power company. -->
2651<ruleset name="Fortum.se">
2652        <target host="fortum.se" />
2653        <target host="www.fortum.se" />
2654        <target host="fortum.fi" />
2655        <target host="www.fortum.fi" />
2656        <rule from="^http://fortum\.se/" to="https://www.fortum.se/"/>
2657        <rule from="^http://www\.fortum\.se/" to="https://www.fortum.se/"/>
2658        <rule from="^http://fortum\.fi/" to="https://www.fortum.fi/"/>
2659        <rule from="^http://www\.fortum\.fi/" to="https://www.fortum.fi/"/>
2660</ruleset>
2661
2662<ruleset name="Foursquare.com">
2663  <target host="foursquare.com" />
2664  <target host="www.foursquare.com" />
2665
2666  <rule from="^http://(www\.)?foursquare\.com/" to="https://foursquare.com/" />
2667</ruleset>
2668<ruleset name="Freedombox Foundation">
2669  <target host="freedomboxfoundation.org" />
2670  <target host="www.freedomboxfoundation.org" />
2671
2672  <rule from="^http://(www\.)?freedomboxfoundation\.org/" to="https://www.freedomboxfoundation.org/"/>
2673</ruleset>
2674
2675<ruleset name="Freelancer">
2676  <target host="freelancer.com" />
2677  <target host="*.freelancer.com" />
2678  <target host="freelancer.co.uk" />
2679  <target host="*.freelancer.co.uk" />
2680
2681  <securecookie host="^(.+\.)?freelancer\.(com|co\.uk)$" name=".*"/>
2682
2683  <rule from="^http://(www\.)?freelancer\.(com|co\.uk)/" to="https://www.freelancer.$2/"/>
2684  <rule from="^http://(cdn[0-9]+)\.freelancer\.(com|co\.uk)/" to="https://$1.freelancer.$2/"/>
2685</ruleset>
2686<ruleset name="Freenet">
2687  <target host="*.freenetproject.org" />
2688  <target host="freenetproject.org" />
2689
2690        <rule from="^http://freenetproject\.org/" to="https://freenetproject.org/"/>
2691        <rule from="^http://downloads\.freenetproject\.org/" to="https://downloads.freenetproject.org/"/>
2692        <rule from="^http://emu\.freenetproject\.org/" to="https://emu.freenetproject.org/"/>
2693        <rule from="^http://bugs\.freenetproject\.org/" to="https://bugs.freenetproject.org/"/>
2694        <rule from="^http://checksums\.freenetproject\.org/" to="https://checksums.freenetproject.org/"/>
2695</ruleset>
2696<ruleset name="Freenode.net" default_off="CACert">
2697  <target host="freenode.net" />
2698  <target host="*.freenode.net" />
2699
2700  <rule from="^http://(www\.)?freenode\.net/" to="https://www.freenode.net/"/>
2701  <rule from="^http://(blog|dev|webchat)\.freenode\.net/"
2702          to="https://$1.freenode.net/"/>
2703</ruleset>
2704<ruleset name="Der Freitag" default_off="self signed">
2705  <target host="www.freitag.de" />
2706  <target host="freitag.de" />
2707
2708  <rule from="^http://(www\.)?freitag\.de/" to="https://www.freitag.de/"/>
2709</ruleset>
2710<ruleset name="Fridge">
2711  <target host="frid.ge" />
2712  <target host="www.frid.ge" />
2713
2714  <securecookie host="^(.+\.)?frid\.ge$" name=".*"/>
2715
2716  <rule from="^http://(www\.)?frid\.ge/" to="https://frid.ge/"/>
2717</ruleset>
2718<ruleset name="Friendfeed">
2719  <target host="www.friendfeed.com" />
2720  <target host="friendfeed.com" />
2721
2722  <rule from="^http://(www\.)?friendfeed\.com/" to="https://friendfeed.com/"/>
2723</ruleset>
2724<ruleset name="Frontline Defenders">
2725  <target host="www.frontlinedefenders.org" />
2726  <target host="frontlinedefenders.org" />
2727
2728  <rule from="^http://(www\.)?frontlinedefenders\.org/" to="https://$1frontlinedefenders.org/"/>
2729</ruleset>
2730<ruleset name="FusionIO">
2731  <target host="fusionio.com" />
2732  <target host="www.fusionio.com" />
2733  <target host="support.fusionio.com" />
2734  <target host="quote.fusionio.com" />
2735
2736  <securecookie host="^(.+\.)?fusionio\.com$" name=".*"/>
2737
2738  <rule from="^http://fusionio\.com/" to="https://fusionio.com/"/>
2739  <rule from="^http://(www|support|quote)\.fusionio\.com/" to="https://$1.fusionio.com/"/>
2740</ruleset>
2741<ruleset name="GLAD (Gay &amp; Lesbian Advocates &amp; Defenders)">
2742        <target host="glad.org" />
2743        <target host="*.glad.org" />
2744
2745        <rule from="^http://(www\.)?glad\.org/" to="https://www.glad.org/" />
2746        <rule from="^http://([a-zA-Z0-9\-]+)\.glad\.org/" to="https://$1.glad.org/" />
2747
2748        <!-- Invoking https://glad.org/ produces a certificate error, so redirect
2749        https://glad.org/ to https://www.glad.org/ -->
2750        <rule from="^https://glad\.org/" to="https://www.glad.org/" />
2751</ruleset>
2752<ruleset name="GMX" match_rule="http:.*gmx\.">
2753  <target host="www.gmx.*" />
2754  <target host="gmx.*" />
2755  <target host="www.gmx.co.uk" />
2756  <target host="gmx.co.uk" />
2757  <target host="service.gmx.com" />
2758  <target host="service.gmx.net" />
2759  <target host="help.gmx.com" />
2760  <target host="storage-file-eu.gmx.com" />
2761
2762  <!-- in countries like se, it, ca, and ru, www.gmx.cctld redirects
2763       to www.gmx.com; we may as well secure that a bit but it should
2764       work regardless of whether we got all of these countries -->
2765
2766  <rule from="^http://(www\.)?gmx\.(se|it|ca|ru)/"
2767          to="https://www.gmx.com/" />
2768
2769  <!-- In these domains GMX supports SSL right at the homepage -->
2770  <!-- https://gmx.com appears to work but hopefully redirecting away won't
2771  break anything.-->
2772
2773  <rule from="^http://(www\.)?gmx\.(fr|co\.uk|ch|at|com|net)/"
2774          to="https://www.gmx.$2/" />
2775
2776  <!-- gmx.de lives at gmx.net -->
2777
2778  <rule from="^http://(www\.)?gmx\.de/"
2779          to="https://www.gmx.net/" />
2780
2781  <!-- a lot of the back-end work is reportedly done by service.gmx.* -->
2782
2783  <rule from="^http://service\.gmx\.(com|net)/"
2784          to="https://service.gmx.$1/" />
2785
2786  <rule from="^http://help\.gmx\.com/"
2787          to="https://help.gmx.com/" />
2788       
2789   <!-- Gmx file storage service (WebDAV) -->
2790  <rule from="^http://storage-file-eu\.gmx\.com/"
2791          to="https://storage-file-eu.gmx.com/" />
2792</ruleset>
2793<ruleset name="GNOME (partial)">
2794  <target host="mail.gnome.org" />
2795  <target host="live.gnome.org" />
2796
2797  <rule from="^http://(mail|live)\.gnome\.org/" to="https://$1.gnome.org/" />
2798</ruleset>
2799<ruleset name="Gibson Research">
2800<target host="www.grc.com" />
2801<target host="grc.com" />
2802<rule from="^http://(www\.)?grc\.com/" to="https://www.grc.com/"/>
2803</ruleset>
2804<ruleset name="GRSecurity.net">
2805        <target host="grsecurity.net" />
2806        <target host="www.grsecurity.net" />
2807        <target host="forums.grsecurity.net" />
2808        <rule from="^http://grsecurity\.net/" to="https://grsecurity.net/"/>
2809        <rule from="^http://www\.grsecurity\.net/" to="https://grsecurity.net/"/>
2810        <rule from="^http://forums\.grsecurity\.net/" to="https://forums.grsecurity.net/"/>
2811</ruleset>
2812
2813<!-- Gothenburg university -->
2814<!-- lots of subdomains lack ssl, and the site does less intelligent rewriteing. how to fix?.-->
2815<ruleset name="GU.se">
2816        <target host="www.gu.se" />
2817        <target host="gu.se" />
2818        <rule from="^http://gu\.se/" to="https://www.gu.se/"/>
2819        <rule from="^http://www\.gu\.se/" to="https://www.gu.se/"/>
2820</ruleset>
2821
2822<ruleset name="Gandi">
2823  <target host="www.gandi.net" />
2824  <target host="gandi.net" />
2825
2826  <rule from="^http://(www\.)?gandi\.net/" to="https://www.gandi.net/"/>
2827</ruleset>
2828<!-- Av vendor. includes plaintext from st.gdata-software.com -->
2829<ruleset name="G Data Software">
2830        <target host="gdata-software.com" />
2831        <target host="www.gdata-software.com" />
2832        <rule from="^http://www\.gdata-software\.com/" to="https://www.gdata-software.com/"/>
2833        <rule from="^http://gdata-software\.com/" to="https://gdata-software.com/"/>
2834</ruleset>
2835
2836<!-- slashdot stores most of their stuff here -->
2837<ruleset name="Geek.net">
2838        <target host="www.geek.net" />
2839        <target host="geek.net" />
2840        <rule from="^http://geek\.net/" to="https://geek.net/"/>
2841        <rule from="^http://www\.geek\.net/" to="https://geek.net/"/>
2842</ruleset>
2843
2844<ruleset name="Gentoo" match_rule="http://.*\.gentoo\.org">
2845  <target host="bugs.gentoo.org" />
2846  <target host="forums.gentoo.org" />
2847
2848  <!-- Considered but not included:
2849         devmanual.gentoo.org
2850         anoncvs.gentoo.org
2851         store.gentoo.org
2852         packages.gentoo.org
2853   -->
2854
2855  <rule from="^http://bugs\.gentoo\.org/" to="https://bugs.gentoo.org/"/>
2856  <rule from="^http://forums\.gentoo\.org/" to="https://forums.gentoo.org/"/>
2857</ruleset>
2858<!--  -->
2859<ruleset name="georgetown.edu">
2860  <target host="www.law.georgetown.edu" />
2861  <target host="www.georgetown.edu" />
2862  <target host="georgetown.edu" />
2863  <rule from="^http://www\.law\.georgetown\.edu/" to="https://www.law.georgetown.edu/"/>
2864  <rule from="^http://www\.georgetown\.edu/" to="https://www.georgetown.edu/"/>
2865  <rule from="^http://georgetown\.edu/" to="https://www.georgetown.edu/"/>
2866</ruleset>
2867
2868<ruleset name="GetFirebug">
2869  <target host="www.getfirebug.com" />
2870  <target host="getfirebug.com" />
2871
2872  <rule from="^http://(www\.)?getfirebug\.com/" to="https://getfirebug.com/"/>
2873</ruleset>
2874<ruleset name="GetPersonas.com">
2875        <target host="getpersonas.com" />
2876        <target host="www.getpersonas.com" />
2877
2878        <rule from="^http://(www\.)?getpersonas\.com/" to="https://www.getpersonas.com/"/>
2879</ruleset>
2880<ruleset name="GetClicky">
2881  <target host="getclicky.com" />
2882  <target host="*.getclicky.com" />
2883
2884  <rule from="^http://getclicky\.com/" to="https://www.getclicky.com/"/>
2885  <rule from="^http://([^/:@]*)\.getclicky\.com/" to="https://$1.getclicky.com/"/>
2886</ruleset>
2887<ruleset name="GiBlod.no">
2888  <target host="www.giblod.no" />
2889  <target host="giblod.no" />
2890
2891  <rule from="^http://(www\.)?giblod\.no/" to="https://www.giblod.no/"/>
2892</ruleset>
2893<ruleset name="Gigaset.com">
2894        <target host="gigaset.com" />
2895        <target host="www.gigaset.com" />
2896        <rule from="^http://gigaset\.com/" to="https://gigaset.com/"/>
2897        <rule from="^http://www\.gigaset\.com/" to="https://gigaset.com/"/>
2898</ruleset>
2899
2900<ruleset name="GitHub">
2901  <target host="*.github.com" />
2902  <target host="github.com" />
2903
2904  <securecookie host="^(.*\.)?github\.com$" name=".*" />
2905
2906  <rule from="^http://(www\.)?github\.com/" to="https://github.com/"/>
2907  <rule from="^http://(assets\d+|gist)\.github\.com/" to="https://$1.github.com/"/>
2908</ruleset>
2909<ruleset name="Gitorious">
2910  <target host="gitorious.org" />
2911  <target host="*.gitorious.org" />
2912
2913  <exclusion pattern="^http://(blog|en|status)\.gitorious\.org/"/>
2914
2915  <rule from="^http://gitorious\.org/"
2916          to="https://gitorious.org/"/>
2917  <rule from="^http://([^/:@]+)\.gitorious\.org/"
2918          to="https://$1.gitorious.org/"/>
2919</ruleset><ruleset name="Give Kids the World">
2920        <target host="gktw.org" />
2921        <target host="www.gktw.org" />
2922        <target host="givekidstheworld.org" />
2923        <target host="www.givekidstheworld.org" />
2924        <target host="secure.gktw.org" />
2925       
2926        <target host="givekidstheworldstore.org" />
2927        <target host="www.givekidstheworldstore.org" />
2928
2929        <rule from="^https?://(www\.)?(gktw|givekidstheworld)\.org/" to="https://secure.gktw.org/" />
2930
2931        <rule from="^http://(www\.)?givekidstheworldstore\.org/" to="https://www.givekidstheworldstore.org/" />
2932</ruleset><ruleset name="Global Scale Technologies">
2933  <target host="globalscaletechnologies.com" />
2934  <target host="www.globalscaletechnologies.com" />
2935
2936  <rule from="^http://(www\.)?globalscaletechnologies\.com/" to="https://www.globalscaletechnologies.com/" />
2937</ruleset>
2938<ruleset name="TheGlobeAndMail">
2939  <target host="www.theglobeandmail.com" />
2940  <target host="theglobeandmail.com" />
2941
2942  <rule from="^http://theglobeandmail\.com/" to="https://www.theglobeandmail.com/"/>
2943  <rule from="^http://www\.theglobeandmail\.com/" to="https://www.theglobeandmail.com/"/>
2944</ruleset>
2945
2946<ruleset name="Gnuheter.org" default_off="invalid certificate">
2947        <target host="gnuheter.org" />
2948        <target host="www.gnuheter.org" />
2949        <rule from="^http://www\.gnuheter\.org/" to="https://www.gnuheter.org/"/>
2950        <rule from="^http://gnuheter\.org/" to="https://gnuheter.org/"/>
2951</ruleset>
2952<ruleset name="GoDaddy">
2953  <target host="*.godaddy.com" />
2954  <target host="godaddy.com" />
2955  <target host="www.godaddymobile.com" />
2956  <target host="godaddymobile.com" />
2957
2958  <rule from="^http://(www\.)?godaddy\.com/" to="https://www.godaddy.com/"/>
2959  <rule from="^http://(www\.)?godaddymobile\.com/" to="https://www.godaddymobile.com/"/>
2960  <rule from="^http://(community|shops|who)\.godaddy\.com/" to="https://$1.godaddy.com/"/>
2961</ruleset>
2962<ruleset name="Good.net">
2963  <target host="good.net" />
2964  <target host="goodnet.com" />
2965  <target host="this-download-would-be-faster-with-a-premium-account-at-good.net" />
2966  <target host="*.good.net" />
2967  <target host="*.goodnet.com" />
2968  <target host="*.this-download-would-be-faster-with-a-premium-account-at-good.net" />
2969
2970  <rule from="^http://([^/]+)/" to="https://$1/" />
2971</ruleset>
2972<ruleset name="Google Search" match_rule="http:.*google\.">
2973  <target host="*.google.com" />
2974  <target host="google.com" />
2975  <target host="www.google.com.*" />
2976  <target host="google.com.*" />
2977  <target host="www.google.co.*" />
2978  <target host="google.co.*" />
2979  <target host="www.google.*" />
2980  <target host="google.*" />
2981  <!-- beyond clients1 these do not currently exist in the ccTLDs,
2982       but just in case... -->
2983  <target host="clients1.google.com.*" />
2984  <target host="clients2.google.com.*" />
2985  <target host="clients3.google.com.*" />
2986  <target host="clients4.google.com.*" />
2987  <target host="clients5.google.com.*" />
2988  <target host="clients1.google.co.*" />
2989  <target host="clients2.google.co.*" />
2990  <target host="clients3.google.co.*" />
2991  <target host="clients4.google.co.*" />
2992  <target host="clients5.google.co.*" />
2993  <target host="clients1.google.*" />
2994  <target host="clients2.google.*" />
2995  <target host="clients3.google.*" />
2996  <target host="clients4.google.*" />
2997  <target host="clients5.google.*" />
2998
2999  <!-- Some Google pages can generate naive links back to the
3000       unencrypted version of encrypted.google.com, which is a
3001       301 but theoretically vulnerable to SSL stripping. -->
3002
3003  <rule from="^http://encrypted\.google\.com/"
3004          to="https://encrypted.google.com/"/>
3005
3006  <!-- The most basic case. -->
3007
3008  <rule from="^http://(www\.)?google\.com/search"
3009          to="https://encrypted.google.com/search"/>
3010
3011  <!-- A very annoying exception that we seem to need for the basic case -->
3012
3013  <exclusion pattern="^http://(www\.)?google\.com/search.*tbs=shop" />
3014  <exclusion pattern="^http://clients[0-9]\.google\.com/.*client=products.*" />
3015  <exclusion pattern="^http://suggestqueries\.google\.com/.*client=.*" />
3016
3017  <!-- This is necessary for image results links from web search results -->
3018
3019  <exclusion pattern="^http://(www\.)?google\.com/search.*tbm=isch.*" />
3020
3021  <!-- The /about stuff is not available in HTTPS as of 2011-07. -->
3022
3023  <exclusion pattern="^http://(www\.)?google\.com/about" />
3024
3025  <!-- There are two distinct cases for these firefox searches -->
3026
3027  <rule from="^http://(www\.)?google(\.com?)?\.[a-z][a-z]/firefox/?$"
3028          to="https://encrypted.google.com/"/>
3029
3030  <rule from="^http://(www\.)?google(\.com?)?\.[a-z][a-z]/firefox"
3031          to="https://encrypted.google.com/search"/>
3032
3033  <rule from="^http://(www\.)?google\.com/webhp"
3034          to="https://encrypted.google.com/webhp"/>
3035
3036  <rule from="^http://(www\.)?google\.com?\.[a-z][a-z]/webhp"
3037          to="https://encrypted.google.com/webhp"/>
3038
3039  <rule from="^http://(www\.)?google\.[a-z][a-z]/webhp"
3040          to="https://encrypted.google.com/webhp"/>
3041
3042  <rule from="^http://(www\.)?google\.com/squared"
3043          to="https://www.google.com/squared"/>
3044
3045  <rule from="^http://codesearch\.google\.com/"
3046          to="https://codesearch.google.com/"/>
3047
3048  <rule from="^http://(www\.)?google\.com/codesearch"
3049          to="https://www.google.com/codesearch"/>
3050
3051  <rule from="^http://(www\.)?google\.com/#"
3052          to="https://encrypted.google.com/#"/>
3053
3054  <rule from="^http://(www\.)?google\.com/$"
3055          to="https://encrypted.google.com/"/>
3056
3057  <!-- most google international sites look like "google.fr" -->
3058
3059  <rule
3060    from="^http://(www\.)?google\.[^/@:][^/@:]/(search\?|#)"
3061      to="https://encrypted.google.com/search?" />
3062
3063  <!-- some look like "google.co.jp" -->
3064  <!-- and some crazy ones like "google.com.au" -->
3065  <rule
3066    from="^http://(www\.)?google\.com?\.[^/@:][^/@:]/(search\?|#)"
3067      to="https://encrypted.google.com/search?" />
3068  <!-- Completion urls look like this:
3069
3070http://clients2.google.co.jp/complete/search?hl=ja&client=hp&expIds=17259,24660,24729,24745&q=m&cp=1 HTTP/1.1\r\n
3071
3072   -->
3073  <rule from="^http://clients[0-9]\.google\.com/complete/search"
3074          to="https://clients1.google.com/complete/search"/>
3075
3076  <rule from="^http://clients[0-9]\.google\.com?\.[^/:@][^/:@]/complete/search"
3077          to="https://clients1.google.com/complete/search"/>
3078
3079  <rule from="^http://clients[0-9]\.google\.[^/:@][^/:@]/complete/search"
3080          to="https://clients1.google.com/complete/search"/>
3081
3082  <rule from="^http://suggestqueries\.google\.com/complete/search"
3083          to="https://clients1.google.com/complete/search"/>
3084
3085  <!-- We are trying a large collection of mappings from google country sites
3086       to https://encrypted.google.com/webhp?hl=<lang> where lang is the default
3087       language for that country.  The concern with that was that the hl=
3088       parameter would override any user preference for a particular language,
3089       which would be Bad, especially if people got bounced from
3090       http://google.com to google.cctld to https://google/webhp?hl=<constant>
3091       but since we actually prevent google from performing the first bounce,
3092       we don't have to worry about this so much!
3093       -->
3094
3095  <rule
3096   from="^http://(www\.)?google\.(com?\.)?(au|ca|gh|ie|in|jm|ke|lk|my|na|ng|nz|pk|rw|sl|sg|ug|uk|za|zw)/?$"
3097     to="https://encrypted.google.com/" />
3098
3099  <rule
3100   from="^http://(www\.)?google\.(com?\.)?(ar|bo|cl|co|cu|cr|ec|es|gt|mx|pa|pe|py|sv|uy|ve)/?$"
3101    to="https://encrypted.google.com/webhp?hl=es" />
3102
3103  <rule
3104   from="^http://(www\.)?google\.(com\.)?(ae|bh|eg|jo|kw|lb|ly|om|qa|sa)/?$"
3105     to="https://encrypted.google.com/webhp?hl=ar" />
3106
3107  <rule from="^http://(www\.)?google\.(at|ch|de)/?$"
3108          to="https://encrypted.google.com/webhp?hl=de" />
3109
3110  <rule from="^http://(www\.)?google\.(fr|nl|it|pl|ru|bg|pt|ro|hr|fi|no)/?$"
3111          to="https://encrypted.google.com/webhp?hl=$2" />
3112
3113  <rule from="^http://(www\.)?google\.com?\.(id|th|tr)/?$"
3114          to="https://encrypted.google.com/webhp?hl=$2" />
3115
3116  <rule from="^http://(www\.)?google\.com\.il/?$"
3117          to="https://encrypted.google.com/webhp?hl=he" />
3118
3119  <rule from="^http://(www\.)?google\.com\.kr/?$"
3120          to="https://encrypted.google.com/webhp?hl=ko" />
3121
3122  <rule from="^http://(www\.)?google\.com\.kz/?$"
3123          to="https://encrypted.google.com/webhp?hl=kk" />
3124
3125  <rule from="^http://(www\.)?google\.com\.jp/?$"
3126          to="https://encrypted.google.com/webhp?hl=ja" />
3127
3128  <rule from="^http://(www\.)?google\.com\.vn/?$"
3129          to="https://encrypted.google.com/webhp?hl=vi" />
3130
3131  <rule from="^http://(www\.)?google\.com\.br/?$"
3132          to="https://encrypted.google.com/webhp?hl=pt-BR" />
3133
3134  <rule from="^http://(www\.)?google\.se/?$"
3135          to="https://encrypted.google.com/webhp?hl=sv" />
3136
3137</ruleset>
3138<ruleset name="Google APIs">
3139  <target host="www.google-analytics.com" />
3140  <target host="ssl.google-analytics.com" />
3141  <target host="*.googleapis.com" />
3142  <target host="*.commondatastorage.googleapis.com"/>
3143  <target host="google.com" />
3144  <target host="www.google.com" />
3145  <target host="translate.google.com" />
3146  <target host="apis.google.com" />
3147  <target host="*.apis.google.com" />
3148  <target host="gstatic.com" />
3149  <target host="*.gstatic.com" />
3150  <target host="api.recaptcha.net" />
3151  <target host="gdata.youtube.com" />
3152
3153  <rule from="^http://www\.google-analytics\.com/"
3154          to="https://ssl.google-analytics.com/"/>
3155  <rule from="^http://(ajax|chart|fonts|translate|www)\.googleapis\.com/"
3156          to="https://$1.googleapis.com/"/>
3157  <rule from="^http://commondatastorage\.googleapis\.com/"
3158          to="https://commondatastorage.googleapis.com/"/>
3159  <rule from="^http://([^@:\./]+)\.commondatastorage\.googleapis\.com/"
3160          to="https://$1.commondatastorage.googleapis.com/"/>
3161  <rule from="^http://translate\.google\.com/translate_a/element\.js"
3162          to="https://translate.google.com/translate_a/element.js"/>
3163
3164<!-- There is an interesting question about whether we should
3165     append &strip=1 to all cache URLs.  This causes them to load without
3166     images and styles, which is more secure but can look worse.  Without
3167     &strip=1, the images and styles from the cached pages still load from
3168     the original, typically unencrypted, page.  With &strip=1, the
3169     cached page will be text-only and will come exclusively from Google's
3170     HTTPS server. -->
3171
3172  <rule from="^http://(www\.|ssl\.)?gstatic\.com/"
3173          to="https://ssl.gstatic.com/" />
3174  <rule from="^http://api\.recaptcha\.net/"
3175          to="https://www.google.com/recaptcha/api/"/>
3176  <rule from="^http://(www\.)?google\.com/recaptcha/"
3177          to="https://www.google.com/recaptcha/"/>
3178  <rule from="^http://www\.google\.com/calendar/embed"
3179          to="https://www.google.com/calendar/embed"/>
3180  <rule from="^http://(www\.)?google\.com/uds"
3181          to="https://www.google.com/uds"/>
3182  <rule from="^http://(www\.)?google\.com/chart"
3183          to="https://www.google.com/chart"/>
3184  <rule from="^http://apis\.google\.com/"
3185          to="https://apis.google.com/"/>
3186  <rule from="^http://chart\.apis\.google\.com/chart"
3187          to="https://chart.googleapis.com/chart"/>
3188
3189<!--  jsapi was causing problems on some sites that embed google maps:
3190      https://trac.torproject.org/projects/tor/ticket/2335
3191      Apparently now fixed; thanks, Google! -->
3192
3193  <rule from="^http://www\.google\.com/jsapi"
3194          to="https://www.google.com/jsapi"/>
3195
3196  <rule from="^http://(www\.)?google\.com/afsonline/"
3197          to="https://www.google.com/afsonline/"/>
3198
3199  <rule from="^http://gdata\.youtube\.com/"
3200          to="https://gdata.youtube.com/"/>
3201</ruleset>
3202<ruleset name="Google Images">
3203  <target host="images.google.com" />
3204  <target host="www.google.com" />
3205  <target host="encrypted.google.com" /> <!-- only for applicable list purposes -->
3206
3207  <rule from="^http://images\.google\.com/" to="https://encrypted.google.com/imghp" />
3208  <rule from="^http://(images|www|encrypted)\.google\.com/(.*tbm=isch)" to="https://encrypted.google.com/$2"/>
3209</ruleset>
3210<ruleset name="GoogleMaps">
3211        <target host="maps.google.com" />
3212        <target host="maps.gstatic.com" />
3213        <target host="maps-api-ssl.google.com"/>
3214        <target host="maps.googleapis.com"/>
3215        <target host="maps.google.*"/>
3216        <target host="maps.google.com.*"/>
3217        <target host="maps.google.co.*"/>
3218
3219        <securecookie host="^maps\.google\.(com?\.)?(au|ca|gh|ie|in|jm|ke|lk|my|na|ng|nz|pk|rw|sl|sg|ug|uk|za|zw)$" name=".*"/>
3220        <securecookie host="^maps\.(google|gstatic|googleapis)\.com$" name=".*"/>
3221        <securecookie host="^maps-api-ssl\.google\.com$" name=".*"/>
3222
3223        <rule from="^http://maps\.(google|gstatic|googleapis)\.com/" to="https://maps.$1.com/"/>
3224        <rule from="^http://maps\.google\.([^/]+)/" to="https://maps.google.$1/"/>
3225        <rule from="^http://maps-api-ssl\.google\.com/" to="https://maps-api-ssl.google.com/"/>
3226</ruleset>
3227
3228<!-- XXX: Needs more testing -->
3229<ruleset name="GoogleServices">
3230  <target host="google.*" />
3231  <target host="google.com" />
3232  <target host="*.google.com" />
3233  <target host="google.co.*" />
3234  <target host="google.com.*" />
3235  <target host="www.google.*" />
3236  <target host="www.google.co.*" />
3237  <target host="www.google.com.*" />
3238  <target host="groups.google.de" />
3239  <target host="gmail.com" />
3240  <target host="www.gmail.com" />
3241  <target host="googlecode.com" />
3242  <target host="*.googlecode.com" />
3243  <target host="news.google.co.*" />
3244  <target host="news.google.com.*" />
3245  <target host="news.google.*" />
3246  <target host="appspot.com" />
3247  <target host="*.appspot.com" />
3248  <target host="pagead2.googlesyndication.com" />
3249  <target host="partner.googleadservices.com" />
3250  <target host="googleusercontent.com" />
3251  <target host="*.googleusercontent.com" />
3252
3253  <exclusion pattern="^http://(news\.)?google\.com/newspapers" />
3254  <exclusion pattern="^http://(news\.)?google\.com/archivesearch" />
3255  <!-- why did Google break this :( :( ? -->
3256  <exclusion pattern="^http://webcache\.googleusercontent\.com" />
3257
3258  <rule from="^http://spreadsheets\.google\.com/"
3259          to="https://spreadsheets.google.com/"/>
3260  <rule from="^http://docs\.google\.com/"
3261          to="https://docs.google.com/"/>
3262  <rule from="^http://groups\.google\.com/"
3263          to="https://groups.google.com/"/>
3264  <rule from="^http://groups\.google\.de/"
3265          to="https://groups.google.de/"/>
3266  <rule from="^http://mail\.google\.com/"
3267          to="https://mail.google.com/"/>
3268  <rule from="^http://(www\.)?gmail\.com/"
3269          to="https://mail.google.com/"/>
3270  <rule from="^http://(www\.)?google\.com/reader/"
3271          to="https://www.google.com/reader/"/>
3272  <rule from="^http://(www\.)?google\.com/webfonts"
3273          to="https://www.google.com/webfonts"/>
3274  <rule from="^http://code\.google\.com/"
3275          to="https://code.google.com/"/>
3276  <rule from="^http://sites\.google\.com/"
3277          to="https://sites.google.com/"/>
3278  <rule from="^http://plus\.google\.com/"
3279          to="https://plus.google.com/"/>
3280  <rule from="^http://adwords\.google\.com/"
3281          to="https://adwords.google.com/"/>
3282
3283  <!-- This worked for a while but seems to be unstable
3284  <rule from="^http://(www\.)?google((\.com?)?(\.[^/@:][^/@:])?)/products"
3285          to="https://www.google$2/products" />
3286   -->
3287
3288  <rule from="^http://(www\.)?google((\.com?)?(\.[^/@:][^/@:])?)/profiles"
3289          to="https://www.google$2/profiles" />
3290
3291  <rule from="^http://news\.google((\.com?)?(\.[^/@:][^/@:])?)/news"
3292          to="https://www.google.com/news" />
3293
3294  <rule from="^http://news\.google((\.com?)?(\.[^/@:][^/@:])?)/newshp"
3295          to="https://www.google.com/news" />
3296
3297  <rule from="^http://news\.google((\.com?)?(\.[^/@:][^/@:])?)/$"
3298          to="https://www.google.com/news" />
3299
3300  <rule from="^http://(www\.)?googlecode\.com/$"
3301          to="https://code.google.com/" />
3302  <rule from="^http://([^/:@]+)\.googlecode\.com/$"
3303          to="https://code.google.com/p/$1/" />
3304  <rule from="^http://([^/:@]+)\.googlecode\.com/(.+)"
3305          to="https://$1.googlecode.com/$2" />
3306
3307  <rule from="^http://(www\.)?google\.com/finance"
3308          to="https://www.google.com/finance"/>
3309  <rule from="^http://(www\.)?google\.co\.uk/finance"
3310          to="https://www.google.co.uk/finance"/>
3311  <rule from="^https?://finance\.google\.com/"
3312          to="https://www.google.com/finance/"/>
3313  <rule from="^https?://finance\.google\.co\.uk/"
3314          to="https://www.google.co.uk/finance/"/>
3315  <rule from="^http://(www\.)?google\.com/phone/"
3316          to="https://www.google.com/phone/"/>
3317  <rule from="^http://feedburner\.google\.com/"
3318          to="https://feedburner.google.com/"/>
3319  <rule from="^http://trends\.google\.com/"
3320          to="https://www.google.com/trends"/>
3321  <rule from="^http://pack\.google\.com/"
3322          to="https://pack.google.com/"/>
3323  <rule from="^http://appengine\.google\.com/"
3324          to="https://appengine.google.com/"/>
3325  <rule from="^http://([^@:\./]+\.)?appspot\.com/"
3326          to="https://$1appspot.com/"/>
3327  <rule from="^http://pagead2\.googlesyndication\.com/"
3328          to="https://pagead2.googlesyndication.com/"/>
3329  <rule from="^http://partner\.googleadservices\.com/"
3330          to="https://partner.googleadservices.com/"/>
3331  <rule from="^http://googleusercontent\.com/"
3332          to="https://www.googleusercontent.com/"/>
3333  <rule from="^http://([^@:\./]+)\.googleusercontent\.com/"
3334          to="https://$1.googleusercontent.com/"/>
3335  <rule from="^http://(www\.)?google\.com/buzz"
3336          to="https://www.google.com/buzz"/>
3337
3338  <rule from="^http://(www\.)?google\.com/contacts"
3339          to="https://www.google.com/contacts"/>
3340  <rule from="^http://(www\.)?google\.co\.uk/contacts"
3341          to="https://www.google.co.uk/contacts"/>
3342  <rule from="^http://(www\.)?google\.co\.in/contacts"
3343          to="https://www.google.co.in/contacts"/>
3344
3345  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(adplanner|ads|css|intl|js|logos|tools|googleblogs|support|transparencyreport)/"
3346          to="https://www.google.com/$4/"/>
3347  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(calendar|dictionary|trends|url)"
3348          to="https://www.google.com/$4"/>
3349  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/(cse|custom)"
3350          to="https://www.google.com/cse" />
3351
3352  <rule from="^http://(www\.)?google\.com/newproducts/"
3353          to="https://www.google.com/newproducts/"/>
3354  <rule from="^http://(www\.)?google\.com/moderator/"
3355          to="https://www.google.com/moderator/"/>
3356  <rule from="^http://(www\.)?google\.com/accounts/"
3357          to="https://www.google.com/accounts/"/>
3358
3359  <!-- Note: This rule is NOT for the Google Images service, which is
3360       available via a redirect from http://www.google.com/images
3361       (with no slash), but rather for images used internally by
3362       Google, within http://www.google.com/images/ (with a slash).
3363       This fixes the mixed content warning on Google Dictionary. -->
3364  <rule from="^http://(www\.)?google(\.com?)?(\.[^/@:][^/@:])?/images/"
3365          to="https://www.google.com/images/"/>
3366</ruleset>
3367<ruleset name="Governo Português">
3368  <target host="www.portugal.gov.pt" />
3369  <target host="portugal.gov.pt" />
3370  <target host="portaldocidadao.gov.pt" />
3371  <target host="www.portaldocidadao.gov.pt" />
3372  <target host="portaldaempresa.gov.pt" />
3373  <target host="www.portaldaempresa.gov.pt" />
3374
3375  <exclusion pattern="^http://www\.portugal\.gov\.pt/PortalMovel/" />
3376  <rule from="^http://portaldocidadao\.pt/" to="https://www.portaldocidadao.pt/"/>
3377  <rule from="^http://www\.portaldocidadao\.pt/" to="https://www.portaldocidadao.pt/"/>
3378  <rule from="^http://portaldaempresa\.pt/" to="https://www.portaldaempresa.pt/"/>
3379  <rule from="^http://www\.portaldaempresa\.pt/" to="https://www.portaldaempresa.pt/"/>
3380  <rule from="^http://portugal\.gov\.pt/" to="https://www.portugal.gov.pt/"/>
3381  <rule from="^http://www\.portugal\.gov\.pt/" to="https://www.portugal.gov.pt/"/>
3382 </ruleset>
3383<ruleset name="Gowalla (partial)">
3384  <target host="gowalla.com" />
3385  <target host="www.gowalla.com" />
3386
3387  <rule from="^http://(www\.)?gowalla\.com/"
3388          to="https://gowalla.com/"/>
3389</ruleset><ruleset name="Gravatar">
3390  <target host="*.gravatar.com" />
3391
3392  <rule from="^http://((www|en|s|secure|0|1|2)\.)?gravatar\.com/" to="https://secure.gravatar.com/"/>
3393</ruleset>
3394<ruleset name="Grepular">
3395  <target host="www.grepular.com" />
3396  <target host="secure.grepular.com" />
3397  <target host="grepular.com" />
3398
3399  <rule from="^http://((www|secure)\.)?grepular\.com/" to="https://grepular.com/"/>
3400</ruleset>
3401<ruleset name="Groton.org">
3402  <target host="www.groton.org" />
3403  <target host="groton.org" />
3404  <rule from="^http://www\.groton\.org/" to="https://www.groton.org/"/>
3405  <rule from="^http://groton\.org/" to="https://www.groton.org/"/>
3406</ruleset>
3407
3408<ruleset name="Groupon.se">
3409  <target host="groupon.se" />
3410  <rule from="^http://groupon\.se/" to="https://www.groupon.se/"/>
3411  <rule from="^http://www\.groupon\.se/" to="https://www.groupon.se/"/>
3412</ruleset>
3413
3414<ruleset name="Groupon DE/UK">
3415  <target host="groupon.de" />
3416  <target host="*.groupon.de" />
3417  <target host="groupon.co.uk" />
3418  <target host="*.groupon.co.uk" />
3419
3420  <exclusion pattern="^http://(news|jobs|blog)\.groupon\.co\.uk/"/>
3421  <exclusion pattern="^http://action\.groupon\.de/"/>
3422  <rule from="^http://groupon\.(de|co\.uk)/" to="https://www.groupon.$1/"/>
3423  <rule from="^http://([^/:@]*)\.groupon\.(de|co\.uk)/" to="https://$1.groupon.$2/"/>
3424</ruleset>
3425<!-- gsfacket is a swedish labour union -->
3426<ruleset name="Gsfacket.se">
3427        <target host="gsfacket.se" />
3428        <target host="www.gsfacket.se" />
3429        <rule from="^http://gsfacket\.se/" to="https://www.gsfacket.se/"/>
3430        <rule from="^http://www\.gsfacket\.se/" to="https://www.gsfacket.se/"/>
3431</ruleset>
3432
3433<ruleset name="Guardian Project">
3434  <target host="guardianproject.info" />
3435  <target host="www.guardianproject.info" />
3436
3437  <rule from="^http://(www\.)?guardianproject\.info/" to="https://guardianproject.info/"/>
3438</ruleset>
3439
3440<ruleset name="GuideStar">
3441        <target host="guidestar.org" />
3442        <target host="www.guidestar.org" />
3443        <target host="www2.guidestar.org" />
3444
3445        <rule from="^http://www2\.guidestar\.org/" to="https://www2.guidestar.org/" />
3446        <rule from="^http://(www\.)?guidestar\.org/?$" to="https://www2.guidestar.org/" />
3447</ruleset><ruleset name="Guifi.net" default_off="self-signed">
3448  <target host="guifi.net" />
3449  <target host="www.guifi.net" />
3450
3451  <rule from="^http://(www\.)?guifi\.net/" to="https://guifi.net/"/>
3452</ruleset>
3453<ruleset name="Gulesider">
3454  <target host="gulesider.no" />
3455  <target host="www.gulesider.no" />
3456
3457  <exclusion pattern="^http://kundesider\.gulesider\.no/"/>
3458  <rule from="^http://(www\.)?gulesider\.no/" to="https://www.gulesider.no/"/>
3459</ruleset>
3460
3461<ruleset name="HD.se">
3462  <target host="hd.se" />
3463  <target host="*.hd.se" />
3464  <rule from="^http://hd\.se/" to="https://hd.se/"/>
3465  <rule from="^http://www\.hd\.se/" to="https://hd.se/"/>
3466</ruleset>
3467
3468<ruleset name="Huntington's Disease Society of America">
3469        <target host="hdsa.org" />
3470        <target host="www.hdsa.org" />
3471
3472        <!-- Invoking https://hdsa.org/ produces a certificate error,
3473        so redirect https://hdsa.org/ to https://www.hdsa.org/ -->
3474        <rule from="^https?://hdsa\.org/" to="https://www.hdsa.org/" />
3475        <rule from="^http://www\.hdsa\.org/" to="https://www.hdsa.org/" />
3476</ruleset><ruleset name="HGO.se">
3477        <target host="www.hgo.se" />
3478        <target host="hgo.se" />
3479        <target host="space.hgo.se" />
3480        <rule from="^http://hgo\.se/" to="https://www.hgo.se/"/>
3481        <rule from="^http://www\.hgo\.se/" to="https://www.hgo.se/"/>
3482        <rule from="^http://space\.hgo\.se/" to="https://space.hgo.se/"/>
3483</ruleset>
3484
3485<ruleset name="HH.se">
3486        <target host="www.hh.se" />
3487        <target host="hh.se" />
3488        <rule from="^http://hh\.se/" to="https://www.hh.se/"/>
3489        <rule from="^http://www\.hh\.se/" to="https://www.hh.se/"/>
3490</ruleset>
3491
3492<ruleset name="HIG.se">
3493        <target host="www.hig.se" />
3494        <target host="hig.se" />
3495        <rule from="^http://hig\.se/" to="https://www.hig.se/"/>
3496        <rule from="^http://www\.hig\.se/" to="https://www.hig.se/"/>
3497</ruleset>
3498
3499<ruleset name="HIS.se">
3500        <target host="www.his.se" />
3501        <target host="his.se" />
3502        <rule from="^http://his\.se/" to="https://www.his.se/"/>
3503        <rule from="^http://www\.his\.se/" to="https://www.his.se/"/>
3504</ruleset>
3505
3506<ruleset name="HKK">
3507<target host="www.hkk.de" />
3508<target host="hkk.de" />
3509<rule from="^http://(www\.)?hkk\.de/" to="https://www.hkk.de/"/>
3510</ruleset>
3511<ruleset name="Hm.com">
3512  <target host="www.hm.com" />
3513  <target host="hm.com" />
3514  <rule from="^http://www\.hm\.com/" to="https://www.hm.com/"/>
3515  <rule from="^http://hm\.com/" to="https://www.hm.com/"/>
3516</ruleset>
3517
3518<ruleset name="HMV">
3519  <target host="www.hmv.com" />
3520  <target host="hmv.com" />
3521  <target host="hmv.co.uk" />
3522  <target host="www.hmv.co.uk" />
3523  <target host="www3.hmv.co.uk" />
3524
3525  <rule from="^http://hmv\.com/" to="https://hmv.com/"/>
3526  <rule from="^http://www\.hmv\.com/" to="https://hmv.com/"/>
3527  <rule from="^http://hmv\.co\.uk/" to="https://hmv.com/"/>
3528  <rule from="^http://www\.hmv\.co\.uk/" to="https://hmv.com/"/>
3529  <rule from="^http://www3\.hmv\.co\.uk/" to="https://www3.hmv.co.uk/"/>
3530</ruleset>
3531<ruleset name="HON.ch (Health On the Net)" default_off="Some images broken">
3532        <target host="hon.ch" />
3533        <target host="www.hon.ch" />
3534        <target host="services.hon.ch" />
3535        <target host="healthonnet.org" />
3536        <target host="www.healthonnet.org" />
3537
3538        <rule from="^http://(www\.)?hon\.ch/" to="https://www.hon.ch/" />
3539        <rule from="^http://services\.hon\.ch/" to="https://services.hon.ch/" />
3540        <rule from="^http://(www\.)?healthonnet\.org/" to="https://www.healthonnet.org/" />
3541</ruleset>
3542<ruleset name="HSBC">
3543  <target host="hsbc.*" />
3544  <target host="www.hsbc.*" />
3545  <target host="hsbc.co.*" />
3546  <target host="www.hsbc.co.*" />
3547  <target host="hsbc.com.*" />
3548  <target host="www.hsbc.com.*" />
3549  <target host="*.hsbctrinkaus.de" />
3550  <target host="hsbctrinkaus.de" />
3551  <target host="*.sabb.com" />
3552  <target host="sabb.com" />
3553  <target host="*.firstdirect.com" />
3554  <target host="firstdirect.com" />
3555  <target host="*.us.hsbc.com" />
3556  <target host="us.hsbc.com" />
3557
3558  <!--
3559     Sites work with or without www, but ssl certs are for www only.
3560     The list of country sites comes from https://www.hsbc.com/1/2
3561     These do not work (no https service runs):
3562       www.hsbc.ie, www.kuwait.hsbc.com, www.hfcbank.co.uk, www.hsbc.co.za,
3563       www.hangseng.com, www.hsbc.co.id, www.hsbc.ge, www.hsbc.cz,
3564       www.hsbc.com.pa.
3565     These do not work (invalid ssl cert!):
3566       www.hsbc.co.nz, www.hsbc.com.tr, www.hsbc.com.uy.
3567  -->
3568  <rule from="^http://(?:www\.)?hsbc\.(com|co\.uk|com\.ar|am|com\.au|com\.bh|com\.bd|bm|com\.br|com\.bn|ca|ky|com\.cn|com\.co|com\.eg|fr|gr|com\.hk|co\.in|co\.jp|kz|jo|co\.kr|com\.lb|com\.mo|com\.my|com\.mt|co\.mu|com\.mx|co\.om|com\.pk|com\.py|com\.ph|pl|com\.qa|ru|com\.sg|lk|com\.tw|co\.th|ae|com\.vn)/"
3569        to="https://www.hsbc.$1/" />
3570
3571  <!-- some odd regional sites not using hsbc.tld names -->
3572  <rule from="^http://(?:www\.)?hsbctrinkaus\.de/" to="https://www.hsbctrinkaus.de/" />
3573  <rule from="^http://(?:www\.)?sabb\.com/" to="https://www.sabb.com/" />
3574  <rule from="^http://(?:www\.)?firstdirect\.com/" to="https://www.firstdirect.com/" />
3575  <rule from="^http://(?:www\.)?us\.hsbc\.com/" to="https://www.us.hsbc.com/" />
3576</ruleset>
3577<ruleset name="Home School Legal Defense Association">
3578        <target host="hslda.org" />
3579        <target host="www.hslda.org" />
3580        <target host="secure.hslda.org" />
3581
3582        <rule from="^http://(www\.)?hslda\.org/" to="https://www.hslda.org/" />
3583        <rule from="^http://secure\.hslda\.org/" to="https://secure.hslda.org/" />
3584</ruleset><!-- hogskoleverket -->
3585<ruleset name="HSV.se">
3586        <target host="www.hsv.se" />
3587        <target host="hsv.se" />
3588        <rule from="^http://hsv\.se/" to="https://www.hsv.se/"/>
3589        <rule from="^http://www\.hsv\.se/" to="https://www.hsv.se/"/>
3590</ruleset>
3591
3592<ruleset name="HTC" default_off="displays error message">
3593  <target host="www.htc.com" />
3594  <target host="htc.com" />
3595
3596  <rule from="^http://(www\.)?htc\.com/" to="https://www.htc.com/"/>
3597</ruleset>
3598
3599<ruleset name="HTTPwatch.com">
3600        <target host="httpwatch.com" />
3601        <target host="blog.httpwatch.com" />
3602        <target host="www.httpwatch.com" />
3603        <rule from="^http://www\.httpwatch\.com/" to="https://www.httpwatch.com/"/>
3604        <rule from="^http://blog\.httpwatch\.com/" to="https://blog.httpwatch.com/"/>
3605        <rule from="^http://httpwatch\.com/" to="https://httpwatch.com/"/>
3606</ruleset>
3607
3608<ruleset name="HUK Coburg">
3609  <target host="www.huk.de" />
3610  <target host="huk.de" />
3611
3612  <rule from="^http://(www\.)?huk\.de/" to="https://www.huk.de/"/>
3613</ruleset>
3614<ruleset name="Hackinthebox.org">
3615  <target host="hackinthebox.org" />
3616  <target host="www.hackinthebox.org" />
3617  <target host="forum.hackinthebox.org" />
3618
3619  <rule from="^http://forum\.hackinthebox\.org/" to="https://forum.hackinthebox.org/" />
3620  <rule from="^http://(www\.)?hackinthebox\.org/" to="https://www.hackinthebox.org/" />
3621</ruleset>
3622<ruleset name="Hakko.com">
3623  <target host="www.hakko.com" />
3624  <target host="hakko.com" />
3625
3626  <rule from="^http://(www\.)?hakko\.com/" to="https://www.hakko.com/"/>
3627</ruleset>
3628<!-- already enforces https. adding to prevent sslstrips on port 80 -->
3629<ruleset name="Halebop.se">
3630        <target host="halebop.se" />
3631        <target host="www.halebop.se" />
3632        <rule from="^http://halebop\.se/" to="https://www.halebop.se/"/>
3633        <rule from="^http://www\.halebop\.se/" to="https://www.halebop.se/"/>
3634</ruleset>
3635
3636<ruleset name="Heroku (buggy)" default_off="Not all Heroku apps have SSL enabled">
3637  <target host="heroku.com" />
3638  <target host="*.heroku.com" />
3639
3640  <exclusion pattern="^http://(status|news)\.heroku\.com/"/>
3641
3642  <rule from="^http://heroku\.com/" to="https://heroku.com/"/>
3643  <rule from="^http://([^/:@]*)\.heroku\.com/" to="https://$1.heroku.com/"/>
3644</ruleset>
3645
3646<ruleset name="Hexagon">
3647  <target host="hexagon.cc" />
3648  <target host="www.hexagon.cc" />
3649
3650  <rule from="^http://(www\.)?hexagon\.cc/" to="https://hexagon.cc/"/>
3651</ruleset>
3652<ruleset name="Hi">
3653  <target host="*.hi.nl" />
3654 
3655  <rule from="^http://(www\.)?hi\.nl/" to="https://www.hi.nl/"/>
3656  <rule from="^http://(shop|shop\.www)\.?hi\.nl/" to="https://shop.www.hi.nl/"/>
3657</ruleset><ruleset name="Hidemyass">
3658        <target host="hidemyass.com" />
3659        <target host="www.hidemyass.com" />
3660        <target host="1.hidemyass.com" />
3661        <target host="2.hidemyass.com" />
3662        <target host="3.hidemyass.com" />
3663        <target host="4.hidemyass.com" />
3664        <target host="5.hidemyass.com" />
3665       
3666        <securecookie host="^(.+\.)?hidemyass\.com$" name=".*"/>
3667       
3668        <rule from="^http://(www\.)?hidemyass\.com/" to="https://hidemyass.com/"/>
3669        <rule from="^http://(1|2|3|4|5)\.hidemyass\.com/" to="https://$1.hidemyass.com/"/>
3670</ruleset>
3671<!-- more adobe overture -->
3672<ruleset name="Ai.Hitbox.com">
3673  <target host="ai.hitbox.com" />
3674  <rule from="^http://ai\.hitbox\.com/" to="https://ai.hitbox.com/"/>
3675</ruleset>
3676
3677<ruleset name="Homebase">
3678  <target host="www.homebase.com" />
3679  <target host="homebase.com" />
3680  <target host="www.homebase.co.uk" />
3681  <target host="homebase.co.uk" />
3682
3683  <rule from="^http://homebase\.co\.uk/" to="https://www.homebase.co.uk/"/>
3684  <rule from="^http://www\.homebase\.co\.uk/" to="https://www.homebase.co.uk/"/>
3685  <rule from="^http://www\.homebase\.com/" to="https://www.homebase.co.uk/"/>
3686  <rule from="^http://homebase\.com/" to="https://www.homebase.co.uk/"/>
3687</ruleset>
3688<ruleset name="Hostican Web Hosting">
3689  <target host="www.hostican.com" />
3690  <target host="chat.hostican.com" />
3691  <target host="forum.hostican.com" />
3692
3693  <rule from="^http://(www|chat|forum)\.hostican\.com/" to="https://$1.hostican.com/"/>
3694</ruleset>
3695
3696<ruleset name="Hosts">
3697  <target host="www.hosts.co.uk" />
3698  <target host="admin.hosts.co.uk" />
3699  <target host="webmail.hosts.co.uk" />
3700  <target host="hosts.co.uk" />
3701
3702  <rule from="^http://(www\.)?hosts\.co\.uk/" to="https://www.hosts.co.uk/"/>
3703  <rule from="^http://(admin|webmail)\.hosts\.co\.uk/" to="https://$1.hosts.co.uk/"/>
3704</ruleset>
3705<ruleset name="Hotfile">
3706  <target host="www.hotfile.com" />
3707  <target host="hotfile.com" />
3708
3709  <rule from="^http://(www\.)?hotfile\.com/" to="https://hotfile.com/"/>
3710</ruleset>
3711
3712<ruleset name="Human Rights Campaign (partial)">
3713        <target host="hrc.org" />
3714        <target host="www.hrc.org" />
3715
3716        <rule from="^http://(www\.)?hrc\.org/" to="https://www.hrc.org/" />
3717
3718        <!-- Invoking https://hrc.org/ produces a certificate error, so
3719        redirect https://hrc.org/ to https://www.hrc.org/ -->
3720        <rule from="^https://hrc\.org/" to="https://www.hrc.org/" />
3721</ruleset><ruleset name="Hungerhost">
3722  <target host="www.hungerhost.com" />
3723  <target host="hungerhost.com" />
3724
3725  <rule from="^http://(www\.)?hungerhost\.com/" to="https://hungerhost.com/"/>
3726</ruleset>
3727<ruleset name="HurricaneElectric">
3728  <target host="he.net" />
3729  <target host="www.he.net" />
3730  <target host="ipv6.he.net" />
3731  <target host="admin.he.net" />
3732  <!-- bgp.he.net and faq.he.net are don't support SSL at the moment -->
3733
3734  <rule from="^http://he\.net/" to="https://www.he.net/"/>
3735  <rule from="^http://([^/:@]*)\.he\.net/" to="https://$1.he.net/"/>
3736</ruleset>
3737<ruleset name="Hushmail">
3738  <target host="www.hushmail.com" />
3739  <target host="hushmail.com" />
3740
3741  <rule from="^http://(www\.)?hushmail\.com/" to="https://www.hushmail.com/"/>
3742</ruleset>
3743<ruleset name="Hustler">
3744  <target host="www.hustlermagazine.com" />
3745  <target host="hustlermagazine.com" />
3746  <target host="www.hustlercanada.com" />
3747  <target host="hustlercanada.com" />
3748
3749  <rule from="^http://(www\.)?hustlermagazine\.com/" to="https://www.hustlermagazine.com/"/>
3750  <rule from="^http://(www\.)?hustlercanada\.com/" to="https://www.hustlercanada.com/"/>
3751</ruleset>
3752<ruleset name="Hypovereinsbank">
3753  <target host="hvb.de"/>
3754  <target host="www.hvb.de"/>
3755  <target host="hypovereinsbank.de"/>
3756  <target host="www.hypovereinsbank.de"/>
3757
3758  <securecookie host="^(.*\.)?hvb\.de$" name=".*" />
3759  <securecookie host="^(.*\.)?hypovereinsbank\.de$" name=".*" />
3760
3761  <rule from="^http://(www\.)?hypovereinsbank\.de/" to="https://www.hypovereinsbank.de/"/>
3762  <rule from="^http://(www\.)?hvb\.de/" to="https://www.hypovereinsbank.de/"/>
3763</ruleset>
3764<ruleset name="I Do Foundation">
3765        <target host="idofoundation.org" />
3766        <target host="www.idofoundation.org" />
3767
3768        <rule from="^http://(www\.)?idofoundation\.org/" to="https://www.idofoundation.org/" />
3769</ruleset><ruleset name="I2P" default_off="expired, CAcert">
3770  <target host="i2p2.de" />
3771  <target host="www.i2p2.de" />
3772  <target host="trac.i2p2.de" />
3773  <target host="docs.i2p2.de" />
3774  <target host="syndie.i2p2.de" />
3775
3776  <rule from="^http://(www\.)?i2p2\.de/" to="https://www.i2p2.de/"/>
3777  <rule from="^http://trac\.i2p2\.de/" to="https://trac.i2p2.de/"/>
3778  <rule from="^http://docs\.i2p2\.de/" to="https://docs.i2p2.de/"/>
3779  <rule from="^http://syndie\.i2p2\.de/" to="https://syndie.i2p2.de/"/>
3780</ruleset>
3781<!-- ibm have lots of resources, besides software, also developerworks and
3782redbooks. -->
3783<ruleset name="IBM">
3784        <target host="ibm.com" />
3785        <target host="www.ibm.com" />
3786        <target host="www.redbooks.ibm.com" />
3787        <rule from="^http://ibm\.com/" to="https://www.ibm.com/"/>
3788        <rule from="^http://www\.ibm\.com/" to="https://www.ibm.com/"/>
3789        <rule from="^http://www\.redbooks\.ibm\.com/" to="https://www.redbooks.ibm.com/"/>
3790</ruleset>
3791
3792<ruleset name="ICA.se">
3793        <target host="www.ica.se" />
3794        <target host="ica.se" />
3795        <rule from="^http://ica\.se/" to="https://www.ica.se/"/>
3796        <rule from="^http://www\.ica\.se/" to="https://www.ica.se/"/>
3797</ruleset>
3798
3799<ruleset name="ICMail">
3800  <target host="icmail.com" />
3801  <target host="www.icmail.com" />
3802
3803  <rule from="^http://(www\.)?icmail\.net/" to="https://icmail.net/"/>
3804</ruleset>
3805<!-- idg does their best to make https tricky -->
3806<ruleset name="IDG.com.au">
3807        <target host="demo.idg.com.au" />
3808        <target host="cdn.idg.com.au" />
3809        <rule from="^http://demo\.idg\.com\.au/" to="https://demo.idg.com.au/"/>
3810        <rule from="^http://cdn\.idg\.com\.au/" to="https://cdn.idg.com.au/"/>
3811</ruleset>
3812
3813<ruleset name="IDG.se">
3814  <target host="www.idg.se" />
3815  <target host="idg.se" />
3816  <rule from="^http://idg\.se/" to="https://idg.se/"/>
3817  <rule from="^http://www\.idg\.se/" to="https://www.idg.se/"/>
3818</ruleset>
3819
3820<ruleset name="IEEE">
3821  <target host="ieee.org" />
3822  <target host="www.ieee.org" />
3823
3824  <rule from="^http://(www\.)?ieee\.org/" to="https://origin.www.ieee.org/"/>
3825</ruleset>
3826<ruleset name="IELTS">
3827  <target host="ielts.org" />
3828  <target host="*.ielts.org" />
3829
3830  <rule from="^http://(www\.|results\.)?ielts\.org/" to="https://$1ielts.org/"/>
3831</ruleset>
3832<ruleset name="IETF">
3833  <target host="ietf.org" />
3834  <target host="www.ietf.org" />
3835  <target host="tools.ietf.org" />
3836  <target host="datatracker.ietf.org" />
3837
3838  <rule from="^http://(www\.)?ietf\.org/" to="https://www.ietf.org/"/>
3839  <rule from="^http://(tools|datatracker)\.ietf\.org/" to="https://$1.ietf.org/"/>
3840</ruleset>
3841<ruleset name="IFA.ch">
3842  <target host="ifa.ch"/>
3843  <target host="www.ifa.ch"/>
3844  <securecookie host="^(.*\.)?ifa\.ch$" name=".*" />
3845
3846  <rule from="^http://(www\.)?ifa\.ch/" to="https://www.ifa.ch/"/>
3847</ruleset>
3848<ruleset name="IIS.net">
3849        <target host="iis.net" />
3850        <target host="www.iis.net" />
3851        <target host="learn.iis.net" />
3852        <rule from="^http://www\.iis\.net/" to="https://www.iis.net/"/>
3853        <rule from="^http://learn\.iis\.net/" to="https://learn.iis.net/"/>
3854        <rule from="^http://iis\.net/" to="https://www.iis.net/"/>
3855</ruleset>
3856
3857<!-- IIS handles the swedish TLD, .se. -->
3858<ruleset name="IIS.se">
3859  <target host="iis.se" />
3860  <target host="www.iis.se" />
3861  <rule from="^http://iis\.se/" to="https://www.iis.se/"/>
3862  <rule from="^http://www\.iis\.se/" to="https://www.iis.se/"/>
3863</ruleset>
3864
3865<ruleset name="IKK-Gesundplus">
3866<target host="www.ikk-gesundplus.de" />
3867<target host="ikk-gesundplus.de" />
3868<rule from="^http://(www\.)?ikk-gesundplus\.de/" to="https://www.ikk-gesundplus.de/"/>
3869</ruleset>
3870<ruleset name="IKK-Suedwest">
3871<target host="www.ikk-suedwest.de" />
3872<target host="ikk-suedwest.de" />
3873<rule from="^http://(www\.)?ikk-suedwest\.de/" to="https://www.ikk-suedwest.de/"/>
3874</ruleset>
3875<ruleset name="ILO.org">
3876        <target host="www.ilo.org" />
3877        <target host="ilo.org" />
3878        <rule from="^http://ilo\.org/" to="https://www.ilo.org/"/>
3879        <rule from="^http://www\.ilo\.org/" to="https://www.ilo.org/"/>
3880</ruleset>
3881
3882<ruleset name="IMF.org">
3883  <target host="www.imf.org" />
3884  <target host="imf.org" />
3885  <rule from="^http://www\.imf\.org/" to="https://www.imf.org/"/>
3886  <rule from="^http://imf\.org/" to="https://www.imf.org/"/>
3887</ruleset>
3888
3889<ruleset name="IPCC.ch">
3890        <target host="www.ipcc.ch" />
3891        <target host="ipcc.ch" />
3892        <rule from="^http://ipcc\.ch/" to="https://ipcc.ch/"/>
3893        <rule from="^http://www\.ipcc\.ch/" to="https://www.ipcc.ch/"/>
3894</ruleset>
3895
3896<ruleset name="IRF.se">
3897        <target host="irf.se" />
3898        <target host="www.irf.se" />
3899        <rule from="^http://www\.irf\.se/" to="https://www.irf.se/"/>
3900        <rule from="^http://irf\.se/" to="https://www.irf.se/"/>
3901</ruleset>
3902
3903<ruleset name="ISC">
3904  <target host="isc.org" />
3905  <target host="www.isc.org" />
3906
3907  <rule from="^http://(www\.)?isc\.org/" to="https://www.isc.org/"/>
3908</ruleset>
3909<ruleset name="ISIS">
3910  <target host="isis.poly.edu" />
3911
3912  <rule from="^http://isis\.poly\.edu/" to="https://isis.poly.edu/"/>
3913</ruleset>
3914<ruleset name="IceHeberg">
3915  <target host="iceheberg.fr" />
3916  <target host="www.iceheberg.fr" />
3917
3918  <rule from="^http://(www\.)?iceheberg\.fr/" to="https://www.iceheberg.fr/"/>
3919</ruleset>
3920<ruleset name="Identica">
3921  <target host="www.identi.ca" />
3922  <target host="identi.ca" />
3923
3924  <rule from="^http://(www\.)?identi\.ca/" to="https://identi.ca/"/>
3925</ruleset>
3926<ruleset name="IdentityTheft">
3927  <target host="identitytheft.org.uk"/>
3928  <target host="www.identitytheft.org.uk"/>
3929
3930  <rule from="^http://(www\.)?identitytheft\.org\.uk/" to="https://www.identitytheft.org.uk/"/>
3931</ruleset>
3932<ruleset name="Imgur">
3933  <target host="imgur.com" />
3934  <target host="www.imgur.com" />
3935  <target host="i.imgur.com" />
3936  <target host="api.imgur.com" />
3937
3938  <exclusion pattern="^http://(www\.)?imgur\.com/[a-zA-Z0-9]+\.[a-z]+$" />
3939
3940  <rule from="^http://(www\.)?imgur\.com/" to="https://imgur.com/" />
3941  <rule from="^http://api\.imgur\.com/" to="https://api.imgur.com/" />
3942
3943  <!-- i.imgur.com doesn't match the certificate, but *some* urls can be converted to imgur.com -->
3944  <rule from="^http://i\.imgur\.com/((images|include)(/.*)?)?$" to="https://imgur.com/$1" />
3945</ruleset>
3946<ruleset name="Immunityinc.com">
3947        <target host="immunityinc.com" />
3948        <target host="www.immunityinc.com" />
3949        <rule from="^http://immunityinc\.com/" to="https://immunityinc.com/"/>
3950        <rule from="^http://www\.immunityinc\.com/" to="https://www.immunityinc.com/"/>
3951</ruleset>
3952
3953<ruleset name="Imrworldwide.com">
3954        <target host="secure-us.imrworldwide.com" />
3955        <target host="secure-dk.imrworldwide.com" />
3956
3957        <rule from="^http://secure-us\.imrworldwide\.com/" to="https://secure-us.imrworldwide.com/" />
3958        <rule from="^http://secure-dk\.imrworldwide\.com/" to="https://secure-dk.imrworldwide.com/" />
3959</ruleset>
3960<ruleset
3961        name="Indymedia.org"
3962        match_rule="http:.*indymedia\.org(\.uk)?">
3963  <target host="indymedia.org" />
3964  <target host="*.indymedia.org" />
3965  <target host="www.*.indymedia.org" />
3966  <target host="indymedia.org.uk" />
3967  <target host="*.indymedia.org.uk" />
3968  <target host="www.*.indymedia.org.uk" />
3969  <target host="northern-indymedia.org" />
3970  <target host="*.northern-indymedia.org" />
3971
3972<!--
3973 This is a ruleset for the https-everywhere extension for firefox.
3974 for more info see https://www.eff.org/https-everywhere
3975
3976 to install install the extension put this file in
3977  ~/.mozilla/your.profile/HTTPSEverywhereUserRules
3978-->
3979<!-- 2010/07/14 Version 0.1 chekov(at-sign)riseup.net -->
3980<!--
3981 scope of this document:
3982  indymedia.org based imcs and infrastrucure
3983  it also includes the indymedia.org.uk and the northern-indymedia.org ans northernindymedia.org domains
3984  discuss this document at the im-tech list from lists.indymedia.org
3985  not including indymedia.us, indymedia.org.il and the like
3986
3987 2010-06-23 report on tested sites:
3988 == working ==
3989 "global"
3990 volunteer, irc, chat, lists
3991 radio, docs, mir
3992 biotech, video, keys
3993
3994 linksunten
3995
3996 == failed ==
3997 ambazonia|austin|beirut|bergstedt|blackcat|bulgaria|canarias|chiapas|
3998 colorado|dc|dl1\.video|hm|hudsonmohawk|jakarta|korea|laplana|lille1|mail\.se
3999 |minneapolis|mke|nettlau|newsreal|nycap|old\.estrecho|ottawa|perth|pl|
4000 rochester|romania|rous|russia|shiva|sweden|twincities|victoria|wmass|worcester|www1\.mexico|mexico|www3\.ch
4001
4002 print, satellite, translations
4003 india, italia
4004-->
4005
4006  <!-- global -->
4007  <rule from="^http://indymedia\.org/" to="https://indymedia.org/"/>
4008
4009  <!--
4010    <rule from="^http://www\.indymedia\.org/" to="https://www.indymedia.org/"/>
4011    see sites without www prefix
4012  -->
4013
4014  <!-- exclusion for infrastructure -->
4015  <exclusion pattern="^http://(www\.)?(print|translations|satellite)\.indymedia\.org/"/>
4016
4017  <!-- exclusion for imcs -->
4018
4019  <exclusion pattern="^http://(www\.)?(de|pr|india|italia|beirut)\.indymedia\.org/"/>
4020
4021  <exclusion pattern="^http://(ambazonia|austin|beirut|bergstedt|blackcat|bulgaria|canarias|chiapas|colorado|dc|dl1\.video|hm|hudsonmohawk|jakarta|korea|laplana|lille1|mail\.se|minneapolis|mke|nettlau|newsreal|nycap|old\.estrecho|ottawa|perth|pl|rochester|romania|rous|russia|shiva|sweden|twincities|victoria|wmass|worcester|(www(1)?\.)?mexico|www3\.ch)\.indymedia\.org/"/>
4022  <exclusion pattern="^http://(media[12]?\.argentina|buscador\.argentina)\.indymedia\.org/"/>
4023  <exclusion pattern="^http://((dev\.)?boston)\.indymedia\.org/"/>
4024  <exclusion pattern="^http://((www2?\.)?brasil|brazil)\.indymedia\.org/"/>
4025  <exclusion pattern="^http://(chicago|chicago2|www0\.chicago|dev\.chicago)\.indymedia\.org/"/>
4026  <exclusion pattern="^http://(de|media[12]?\.de|www[23]\.de|www[23]\.germany)\.indymedia\.org/"/>
4027  <exclusion pattern="^http://((www[12]\.)?istanbul|media2?\.istanbul|bagimsiz-istanbul|istanbul\.bbm)\.indymedia\.org/"/>
4028  <exclusion pattern="^http://((publish\.)?sandiego)\.indymedia\.org/"/>
4029
4030  <!-- domains with www prefix -->
4031  <rule from="^http://www\.([^/:@]*)\.indymedia\.org/" to="https://www.$1.indymedia.org/"/>
4032
4033  <!-- doamins without www as prefix -->
4034  <rule from="^http://([^/:@]*)\.indymedia\.org/" to="https://$1.indymedia.org/"/>
4035
4036  <!-- indymedia.org.uk -->
4037  <rule from="^http://indymedia\.org\.uk/" to="https://indymedia.org.uk/"/>
4038  <rule from="^http://(london|notts|sheffield)\.indymedia\.org\.uk/" to="https://$1.indymedia.org.uk/"/>
4039  <rule from="^http://www\.(london|notts|sheffield)\.indymedia\.org\.uk/" to="https://www.$1.indymedia.org.uk/"/>
4040
4041  <!-- northern-indymedia.org -->
4042<!--
4043https same as http: www.northern-indymedia.org, www.northern-indymedia.org , northern-indymedia.org, m.northern-indymedia.org
4044                                        mobi.northern-indymedia.org, mobile.northern-indymedia.org, wap.northern-indymedia.org
4045https differs http: mob.northern-indymedia.org, joinin.northern-indymedia.org, radio.northern-indymedia.org
4046                                        indyzines.northern-indymedia.org, sol.northern-indymedia.org, list.northern-indymedia.org
4047                                        lists.northern-indymedia.org, mailinglist.northern-indymedia.org
4048-->
4049  <rule from="^http://northern-indymedia\.org/" to="https://northern-indymedia.org/"/>
4050  <rule from="^http://(www|m|mobi|mobile|wap)\.northern-indymedia\.org/" to="https://$1.northern-indymedia.org/"/>
4051  <!-- northernindymedia.org -->
4052  <rule from="^http://(www\.)?northernindymedia\.org/" to="https://$1northern-indymedia.org/"/>
4053
4054</ruleset>
4055<ruleset name="Inet.se">
4056  <target host="inet.se" />
4057  <target host="www.inet.se" />
4058
4059  <rule from="^http://(www\.)?inet\.se/" to="https://www.inet.se/"/>
4060</ruleset>
4061<ruleset name="InfoWorld.com">
4062        <target host="infoworld.com" />
4063        <target host="www.infoworld.com" />
4064        <rule from="^http://infoworld\.com/" to="https://www.infoworld.com/"/>
4065        <rule from="^http://www\.infoworld\.com/" to="https://www.infoworld.com/"/>
4066</ruleset>
4067
4068<ruleset name="Infragard.net">
4069  <target host="infragard.net" />
4070  <target host="www.infragard.net" />
4071
4072  <rule from="^http://(www\.)?infragard\.net/" to="https://www.infragard.net/" />
4073</ruleset>
4074<ruleset name="Inria.fr">
4075        <target host="www.inria.fr" />
4076        <target host="inria.fr" />
4077        <target host="planete.inria.fr" />
4078        <rule from="^http://www\.inria\.fr/" to="https://www.inria.fr/"/>
4079        <rule from="^http://inria\.fr/" to="https://www.inria.fr/"/>
4080        <rule from="^http://planete\.inria\.fr/" to="https://planete.inria.fr/"/>
4081</ruleset>
4082<ruleset name="Inschrijven.nl">
4083  <target host="www.inschrijven.nl" />
4084  <target host="inschrijven.nl" />
4085
4086  <rule from="^http://(?:www\.)?inschrijven\.nl/" to="https://www.inschrijven.nl/"/>
4087</ruleset>
4088<ruleset name="Insight">
4089  <target host="insight.com" />
4090  <target host="*.insight.com" />
4091
4092  <securecookie host="^(.+\.)?insight\.com$" name=".*"/>
4093
4094  <rule from="^http://insight\.com/" to="https://www.insight.com/"/>
4095  <rule from="^http://(www|uk)\.insight\.com/" to="https://$1.insight.com/"/>
4096  <rule from="^http://(i|img|images|imagesqa)(\d+)\.insight\.com/" to="https://$1$2.insight.com/"/>
4097</ruleset>
4098<ruleset name="Instapaper">
4099  <target host="www.instapaper.com"/>
4100  <target host="instapaper.com"/>
4101
4102  <rule from="^http://(www\.)?instapaper\.com/" to="https://www.instapaper.com/"/>
4103</ruleset>
4104<ruleset name="InterNetworX">
4105  <target host="*.inwx.de" />
4106  <target host="inwx.de" />
4107
4108  <securecookie host="^(.*\.)?inwx\.de$" name=".*" />
4109
4110  <rule from="^http://(www\.)?inwx\.de/" to="https://www.inwx.de/" />
4111</ruleset>
4112<ruleset name="Interpol">
4113  <target host="interpol.int"/>
4114  <target host="www.interpol.int"/>
4115
4116  <rule from="^http://(www\.)?interpol\.int/" to="https://www.interpol.int/"/>
4117</ruleset>
4118<ruleset name="Irish Broadband">
4119  <target host="irishbroadband.ie" />
4120  <target host="*.irishbroadband.ie" />
4121
4122  <rule from="^http://irishbroadband\.ie/" to="https://www.irishbroadband.ie/"/>
4123  <rule from="^http://([^/:@]*)\.irishbroadband\.ie/" to="https://$1.irishbroadband.ie/"/>
4124</ruleset>
4125<ruleset name="IsoHunt">
4126    <target host="isohunt.com" />
4127    <target host="www.isohunt.com" />
4128
4129    <rule from="^http://(www\.)?isohunt\.com/" to="https://isohunt.com/"/>
4130</ruleset>
4131<ruleset name="ItsLearning">
4132  <target host="www.itslearning.com" />
4133  <target host="itslearning.com" />
4134
4135  <rule from="^http://(www\.)?itslearning\.com/"
4136          to="https://www.itslearning.com/"/>
4137</ruleset>
4138<ruleset name="Ixquick">
4139  <target host="ixquick.com" />
4140  <target host="*.ixquick.com" />
4141  <target host="startpage.com" />
4142  <target host="*.startpage.com" />
4143  <target host="startingpage.com" />
4144  <target host="*.startingpage.com" />
4145  <target host="*.ixquick-proxy.com" />
4146
4147  <rule from="^http://ixquick\.com/" to="https://ixquick.com/"/>
4148  <rule from="^http://([^@/:]*)\.ixquick\.com/" to="https://$1.ixquick.com/"/>
4149  <rule from="^http://([^@/:]*)\.ixquick-proxy\.com/" to="https://$1.ixquick-proxy.com/" />
4150
4151  <!-- Ixquick and Startpage appear to be basically the same -->
4152
4153  <rule from="^http://startpage\.com/" to="https://startpage.com/"/>
4154  <rule from="^http://([^@/:]*)\.startpage\.com/" to="https://$1.startpage.com/"/>
4155
4156  <!-- Startingpage is basically a Google-only version of Startpage -->
4157
4158  <rule from="^http://startingpage\.com/" to="https://startingpage.com/"/>
4159  <rule from="^http://([^@/:]*)\.startingpage\.com/" to="https://$1.startingpage.com/"/>
4160</ruleset>
4161<ruleset name="Izquierda-unida.es" default_off="Cert warning">
4162  <target host="izquierda-unida.es" />
4163  <target host="www.izquierda-unida.es" />
4164
4165  <rule from="^http://(www\.)?izquierda-unida\.es/" to="https://www.izquierda-unida.es/" />
4166</ruleset>
4167<ruleset name="JANET">
4168  <target host="ja.net" />
4169  <target host="www.ja.net" />
4170
4171  <rule from="^http://(www\.)?ja\.net/" to="https://www.ja.net/"/>
4172</ruleset>
4173<ruleset name="JPG Magazine">
4174  <target host="jpgmag.com" />
4175  <rule from="^http://(www\.)?jpgmag\.com/" to="https://jpgmag.com/"/>
4176</ruleset>
4177<ruleset name="JAKO-O">
4178  <target host="jako-o.de" />
4179  <target host="www.jako-o.de" />
4180
4181  <target host="jako-o.at" />
4182  <target host="www.jako-o.at" />
4183
4184  <target host="jako-o.lu" />
4185  <target host="www.jako-o.lu" />
4186
4187  <target host="jako-o.eu" />
4188  <target host="www.jako-o.eu" />
4189
4190  <target host="jako-o.com" />
4191  <target host="www.jako-o.com" />
4192
4193  <!--
4194  <securecookie host="^http://(www\.)?jako-o\.de$" name="bbuserid" />
4195  <securecookie host="^http://(www\.)?jako-o\.de$" name="bbpassword" />
4196  -->
4197
4198  <rule from="^http://(www\.)?jako-o\.de/" to="https://www.jako-o.de/"/>
4199  <rule from="^http://(www\.)?jako-o\.at/" to="https://www.jako-o.at/"/>
4200  <rule from="^http://(www\.)?jako-o\.lu/" to="https://www.jako-o.lu/"/>
4201  <rule from="^http://(www\.)?jako-o\.eu/" to="https://www.jako-o.eu/"/>
4202  <rule from="^http://(www\.)?jako-o\.com/" to="https://www.jako-o.com/"/>
4203</ruleset>
4204<ruleset name="D.S.V. Sint Jansbrug">
4205  <target host="www.sintjansbrug.nl" />
4206  <target host="www.jansbrug.nl" />
4207
4208        <rule from="^http://www\.(sint)?jansbrug\.nl/" to="https://www.sintjansbrug.nl/"/>
4209</ruleset>
4210<ruleset name="Jappix">
4211  <target host="jappix.com" />
4212  <target host="www.jappix.com" />
4213
4214  <rule from="^http://(www\.)?jappix\.com/" to="https://www.jappix.com/"/>
4215</ruleset>
4216
4217<ruleset name="Java">
4218  <target host="java.com" />
4219  <target host="www.java.com" />
4220
4221  <rule from="^http://(?:www\.)?java\.com(?::80)?/" to="https://www.java.com/"/>
4222  <rule from="^https://(?:www\.)?java\.com:80/" to="https://www.java.com/"/>
4223</ruleset>
4224<ruleset name="Jobscout24">
4225  <target host="jobscout24.de" />
4226  <target host="www.jobscout24.de" />
4227
4228  <rule from="^http://(www\.)?jobscout24\.de/" to="https://www.jobscout24.de/"/>
4229</ruleset>
4230<ruleset name="Joker">
4231  <target host="*.joker.com" />
4232  <target host="joker.com" />
4233
4234  <rule from="^http://([^/:@]*\.)?joker\.com/" to="https://$1joker.com/"/>
4235</ruleset>
4236<ruleset name="Joslin Diabetes Center">
4237        <target host="joslin.org" />
4238        <target host="www.joslin.org" />
4239
4240        <rule from="^http://(www\.)?joslin\.org/" to="https://www.joslin.org/" />
4241
4242        <!-- Invoking https://joslin.org/ produces a certificate error, so
4243        redirect https://joslin.org/ to https://www.joslin.org/ -->
4244        <rule from="^https://joslin\.org/" to="https://www.joslin.org/" />
4245</ruleset><ruleset name="Jottit">
4246  <target host="jottit.com" />
4247  <target host="*.jottit.com" />
4248
4249  <rule from="^http://jottit\.com/" to="https://jottit.com/"/>
4250  <rule from="^http://([^/:@]*)\.jottit\.com/" to="https://$1.jottit.com/"/>
4251</ruleset>
4252<ruleset name="Juniper Networks">
4253  <target host="www.juniper.net" />
4254  <target host="juniper.net" />
4255
4256  <rule from="^http://(www\.)?juniper\.net/" to="https://www.juniper.net/"/>
4257</ruleset>
4258<!-- jusek is a swedish labour union -->
4259<ruleset name="Jusek.se">
4260        <target host="jusek.se" />
4261        <target host="www.jusek.se" />
4262        <rule from="^http://jusek\.se/" to="https://www.jusek.se/"/>
4263        <rule from="^http://www\.jusek\.se/" to="https://www.jusek.se/"/>
4264</ruleset>
4265
4266<ruleset name="JustGive">
4267        <target host="justgive.org" />
4268        <target host="www.justgive.org" />
4269        <target host="ido.justgive.org" />
4270
4271        <rule from="^http://justgive\.org/" to="https://www.justgive.org/" />
4272        <rule from="^http://(www|ido)\.justgive\.org/" to="https://$1.justgive.org/" />
4273</ruleset><ruleset name="JustTomatoes.com">
4274  <target host="justtomatoes.com" />
4275  <target host="www.justtomatoes.com" />
4276
4277  <rule from="^http://(www\.)?justtomatoes\.com/" to="https://www.justtomatoes.com/" />
4278</ruleset>
4279<!-- Karlstad university -->
4280<ruleset name="KAU.se">
4281        <target host="www.kau.se" />
4282        <target host="kau.se" />
4283        <rule from="^http://kau\.se/" to="https://www.kau.se/"/>
4284        <rule from="^http://www\.kau\.se/" to="https://www.kau.se/"/>
4285</ruleset>
4286
4287<ruleset name="KDE Bugtracker">
4288  <target host="bugs.kde.org" />
4289  <target host="mail.kde.org" />
4290
4291        <rule from="^http://(bugs|mail)\.kde\.org/" to="https://$1.kde.org/"/>
4292</ruleset>
4293<ruleset name="KEMI.se">
4294        <target host="kemi.se" />
4295        <target host="www.kemi.se" />
4296        <rule from="^http://www\.kemi\.se/" to="https://www.kemi.se/"/>
4297        <rule from="^http://kemi\.se/" to="https://kemi.se/"/>
4298</ruleset>
4299
4300<ruleset name="KI.se">
4301  <target host="bibliometrics.ki.se" />
4302  <target host="cas.ki.se" />
4303  <target host="cwaa.ki.se" />
4304  <target host="child3.ki.se" />
4305  <target host="exjobb.meb.ki.se" />
4306  <target host="fonder.ki.se" />
4307  <target host="kib.ki.se" />
4308  <target host="metasearch.kib.ki.se" />
4309  <rule from="^http://bibliometrics\.ki\.se/" to="https://bibliometrics.ki.se/"/>
4310  <rule from="^http://cas\.ki\.se/" to="https://cas.ki.se/"/>
4311  <rule from="^http://cwaa\.ki\.se/" to="https://cwaa.ki.se/"/>
4312  <rule from="^http://child3\.ki\.se/" to="https://child3.ki.se/"/>
4313  <rule from="^http://exjobb\.meb\.ki\.se/" to="https://exjobb.meb.ki.se/"/>
4314  <rule from="^http://fonder\.ki\.se/" to="https://fonder.ki.se/"/>
4315  <rule from="^http://kib\.ki\.se/" to="https://kib.ki.se/"/>
4316  <rule from="^http://metasearch\.kib\.ki\.se/" to="https://metasearch.kib.ki.se/"/>
4317</ruleset>
4318
4319<ruleset name="KKH-Allianz">
4320<target host="www.kkh-allianz.de" />
4321<target host="kkh-allianz.de" />
4322<rule from="^http://(www\.)?kkh-allianz\.de/" to="https://www.kkh-allianz.de/"/>
4323</ruleset>
4324<ruleset name="KKH.se">
4325        <target host="www.kkh.se" />
4326        <target host="kkh.se" />
4327        <rule from="^http://kkh\.se/" to="https://kkh.se/"/>
4328        <rule from="^http://www\.kkh\.se/" to="https://www.kkh.se/"/>
4329</ruleset>
4330
4331<ruleset name="KLM">
4332  <!-- Rule created by Jeroen van der Gun -->
4333
4334  <target host="www.klm.com" />
4335  <target host="klm.com" />
4336
4337  <rule from="^http://(www\.)?klm\.com/" to="https://www.klm.com/"/>
4338</ruleset>
4339<ruleset name="KMH.se">
4340        <target host="www.kmh.se" />
4341        <target host="kmh.se" />
4342        <rule from="^http://kmh\.se/" to="https://www.kmh.se/"/>
4343        <rule from="^http://www\.kmh\.se/" to="https://www.kmh.se/"/>
4344</ruleset>
4345
4346<ruleset name="KPN">
4347  <target host="*.kpn.com" />
4348
4349  <rule from="^http://(www\.)?kpn\.(com|nl)/" to="https://www.kpn.com/"/>
4350</ruleset><ruleset name="KPT.ch">
4351        <target host="kpt.ch" />
4352        <target host="www.kpt.ch" />
4353        <securecookie host="^(.*\.)?kpt\.ch$" name=".*" />
4354
4355        <rule from="^http://(www\.)?kpt\.ch/" to="https://www.kpt.ch/"/>
4356</ruleset>
4357<ruleset name="KTH.se">
4358  <target host="kth.se" />
4359  <target host="www.kth.se" />
4360  <target host="intra.kth.se" />
4361  <rule from="^http://kth\.se/" to="https://www.kth.se/"/>
4362  <rule from="^http://www\.kth\.se/" to="https://www.kth.se/"/>
4363  <rule from="^http://intra\.kth\.se/" to="https://intra.kth.se/"/>
4364</ruleset>
4365
4366<ruleset name="Kabel Deutschland">
4367  <target host="kabeldeutschland.de" />
4368  <target host="www.kabeldeutschland.de" />
4369
4370  <rule from="^http://(www\.)?kabeldeutschland\.de/" to="https://www.kabeldeutschland.de/"/>
4371</ruleset>
4372<ruleset name="Karagarga">
4373  <target host="karagarga.net" />
4374  <target host="www.karagarga.net" />
4375
4376  <rule from="^http://(www\.)?karagarga\.net/" to="https://karagarga.net/"/>
4377</ruleset>
4378<ruleset name="Kayak">
4379  <target host="kayak.com" />
4380  <target host="www.kayak.com" />
4381
4382  <rule from="^http://(www\.)?kayak\.com/" to="https://www.kayak.com/"/>
4383</ruleset>
4384
4385<ruleset name="Kernel.org">
4386  <target host="kernel.org" />
4387  <target host="*.kernel.org" />
4388  <target host="*.git.kernel.org" />
4389  <target host="*.wiki.kernel.org" />
4390
4391  <rule from="^http://kernel\.org/" to="https://www.kernel.org/"/>
4392  <!-- subdomain-only certificates -->
4393  <rule from="^http://((www|ftp|pub|all|eu|boot|accounts|patchwork|bugzilla|userweb)\.kernel\.org)/" to="https://$1/"/>
4394  <!-- sub-subdomain certificates -->
4395  <rule from="^http://(([a-zA-Z0-9-]+\.)?(git|wiki)\.kernel\.org)/" to="https://$1/"/>
4396  <!--
4397  As of 2010-08-13, known unprotected domains are:
4398  wireless.kernel.org
4399  planet.kernel.org
4400  mirrors.kernel.org
4401  archive.kernel.org
4402  vger.kernel.org
4403  -->
4404</ruleset>
4405<ruleset name="Kismetwireless.net">
4406        <target host="kismetwireless.net" />
4407        <target host="www.kismetwireless.net" />
4408        <rule from="^http://(www\.)?kismetwireless\.net/" to="https://kismetwireless.net/"/>
4409</ruleset>
4410<ruleset name="Knappschaft-Bahn-See">
4411<target host="www.kbs.de" />
4412<target host="kbs.de" />
4413<rule from="^http://(www\.)?kbs\.de/" to="https://www.kbs.de/"/>
4414</ruleset>
4415<!-- kommunal is a swedish labour union -->
4416<ruleset name="Kommunal.se">
4417        <target host="kommunal.se" />
4418        <target host="www.kommunal.se" />
4419        <rule from="^http://kommunal\.se/" to="https://www.kommunal.se/"/>
4420        <rule from="^http://www\.kommunal\.se/" to="https://www.kommunal.se/"/>
4421</ruleset>
4422
4423<ruleset name="Komplett.no">
4424  <target host="komplett.no" />
4425  <target host="www.komplett.no" />
4426
4427        <rule from="^http://(www\.)?komplett\.no/" to="https://www.komplett.no/"/>
4428</ruleset>
4429<ruleset name="Konami.com">
4430        <target host="konami.com" />
4431        <target host="www.konami.com" />
4432        <rule from="^http://konami\.com/" to="https://www.konami.com/"/>
4433        <rule from="^http://www\.konami\.com/" to="https://www.konami.com/"/>
4434</ruleset>
4435
4436<ruleset name="Konstfack.se">
4437        <target host="www.konstfack.se" />
4438        <target host="konstfack.se" />
4439        <rule from="^http://konstfack\.se/" to="https://www.konstfack.se/"/>
4440        <rule from="^http://www\.konstfack\.se/" to="https://www.konstfack.se/"/>
4441</ruleset>
4442
4443<ruleset name="Kotex">
4444        <target host="kotex.com" />
4445        <target host="www.kotex.com" />
4446        <target host="dare.kotex.com" />
4447
4448        <rule from="^http://(www\.)?kotex\.com/" to="https://www.kotex.com/" />
4449        <rule from="^http://dare\.kotex\.com/" to="https://dare.kotex.com/" />
4450</ruleset>
4451<!-- only enterprice.krebsonsecurity.com seems to have ssl :( -->
4452<ruleset name="krebsonsecurity.com">
4453        <target host="krebsonsecurity.com" />
4454        <target host="www.krebsonsecurity.com" />
4455        <rule from="^http://www\.krebsonsecurity\.com/" to="https://krebsonsecurity.com/"/>
4456        <rule from="^http://krebsonsecurity\.com/" to="https://krebsonsecurity.com/"/>
4457</ruleset>
4458
4459<ruleset name="KriminalVarden.se">
4460        <target host="kriminalvarden.se" />
4461        <target host="www.kriminalvarden.se" />
4462        <rule from="^http://www\.kriminalvarden\.se/" to="https://www.kriminalvarden.se/"/>
4463        <rule from="^http://kriminalvarden\.se/" to="https://www.kriminalvarden.se/"/>
4464</ruleset>
4465
4466<ruleset name="kuro5hin.org">
4467        <target host="kuro5hin.org" />
4468        <target host="www.kuro5hin.org" />
4469        <rule from="^http://kuro5hin\.org/" to="https://www.kuro5hin.org/"/>
4470        <rule from="^http://www\.kuro5hin\.org/" to="https://www.kuro5hin.org/"/>
4471</ruleset>
4472
4473<!-- Linkoping university -->
4474<!-- lots of subdomains lack ssl, -->
4475<ruleset name="LIU.se">
4476        <target host="www.liu.se" />
4477        <target host="liu.se" />
4478        <target host="www.hu.liu.se" />
4479        <target host="www.imh.liu.se" />
4480        <target host="www.ibl.liu.se" />
4481        <target host="www.isv.liu.se" />
4482        <target host="www.isak.liu.se" />
4483        <target host="www.lith.liu.se" />
4484        <target host="www.student.liu.se" />
4485        <target host="www.tema.liu.se" />
4486        <rule from="^http://liu\.se/" to="https://www.liu.se/"/>
4487        <rule from="^http://www\.liu\.se/" to="https://www.liu.se/"/>
4488        <rule from="^http://www\.imh\.liu\.se/" to="https://www.imh.liu.se/"/>
4489        <rule from="^http://www\.ibl\.liu\.se/" to="https://www.ibl.liu.se/"/>
4490        <rule from="^http://www\.isv\.liu\.se/" to="https://www.isv.liu.se/"/>
4491        <rule from="^http://www\.hu\.liu\.se/" to="https://www.hu.liu.se/"/>
4492        <rule from="^http://www\.isak\.liu\.se/" to="https://www.isak.liu.se/"/>
4493        <rule from="^http://www\.lith\.liu\.se/" to="https://www.lith.liu.se/"/>
4494        <rule from="^http://www\.student\.liu\.se/" to="https://www.student.liu.se/"/>
4495        <rule from="^http://www\.tema\.liu\.se/" to="https://www.tema.liu.se/"/>
4496</ruleset>
4497
4498<ruleset name="LKML">
4499        <target host="lkml.org" />
4500        <target host="www.lkml.org" />
4501        <rule from="^http://(www\.)?lkml\.org/"
4502                to="https://lkml.org/" />
4503</ruleset>
4504<ruleset name="LM Uni Muenchen">
4505  <target host="uni-muenchen.de"/>
4506  <target host="*.uni-muenchen.de"/>
4507
4508  <securecookie host="^(.*\.)?uni-muenchen\.de$" name=".*" />
4509
4510  <rule from="^http://(www\.)?uni-muenchen\.de/" to="https://www.uni-muenchen.de/"/>
4511  <rule from="^http://uni-muenchen\.de/" to="https://www.uni-muenchen.de/"/>
4512</ruleset>
4513<ruleset name="LWN">
4514  <target host="lwn.net" />
4515  <target host="www.lwn.net" />
4516
4517  <rule from="^http://(www\.)?lwn\.net/" to="https://lwn.net/"/>
4518</ruleset>
4519
4520<ruleset name="La Caixa">
4521  <target host="lacaixa.es" />
4522  <target host="*.lacaixa.es" />
4523
4524  <rule from="^http://lacaixa\.es/" to="https://lacaixa.es/"/>
4525  <rule from="^http://([^/:@]*)\.lacaixa\.es/" to="https://$1.lacaixa.es/"/>
4526</ruleset>
4527<!-- This is a swedish insurance company -->
4528<ruleset name="Lansforsakringar.se">
4529        <target host="lansforsakringar.se" />
4530        <target host="www.lansforsakringar.se" />
4531        <target host="www1.lansforsakringar.se" />
4532        <rule from="^http://www\.lansforsakringar\.se/" to="https://www.lansforsakringar.se/"/>
4533        <rule from="^http://www1\.lansforsakringar\.se/" to="https://www1.lansforsakringar.se/"/>
4534        <rule from="^http://lansforsakringar\.se/" to="https://www.lansforsakringar.se/"/>
4535</ruleset>
4536
4537<ruleset name="Lantmateriet.se">
4538        <target host="lantmateriet.se" />
4539        <target host="www.lantmateriet.se" />
4540        <rule from="^http://www\.lantmateriet\.se/" to="https://www.lantmateriet.se/"/>
4541        <rule from="^http://lantmateriet\.se/" to="https://www.lantmateriet.se/"/>
4542</ruleset>
4543
4544<ruleset name="LastPass" default_off="Breaks addon ( https://eff.org/r.3Dq )">
4545  <target host="lastpass.com" />
4546  <target host="www.lastpass.com" />
4547
4548  <securecookie host="^(.+\.)?lastpass\.com$" name=".*"/>
4549
4550  <rule from="^http://(www\.)?lastpass\.com/" to="https://lastpass.com/"/>
4551</ruleset>
4552<ruleset name="Lastminute.com">
4553  <target host="www.lastminute.com" />
4554  <target host="lastminute.com" />
4555
4556  <rule from="^http://(www\.)?lastminute\.com/" to="https://www.lastminute.com/"/>
4557</ruleset>
4558<ruleset name="Lavabit">
4559  <target host="lavabit.com" />
4560  <target host="www.lavabit.com" />
4561  <target host="click.lavabit.com" />
4562  <target host="hosting.lavabit.com" />
4563
4564  <securecookie host="^(.+\.)?lavabit\.com$" name=".*"/>
4565
4566  <rule from="^http://(www\.)?lavabit\.com/" to="https://lavabit.com/"/>
4567  <rule from="^http://(click|hosting)\.lavabit\.com/" to="https://$1.lavabit.com/"/>
4568</ruleset>
4569<ruleset name="Lavasoft">
4570        <target host="lavasoft.com" />
4571        <target host="www.lavasoft.com" />
4572        <rule from="^http://lavasoft\.com/" to="https://secure.lavasoft.com/"/>
4573        <rule from="^http://www\.lavasoft\.com/" to="https://secure.lavasoft.com/"/>
4574</ruleset>
4575
4576<ruleset name="Lawblog.de" default_off="CACert">
4577  <target host="www.lawblog.de" />
4578  <target host="lawblog.de" />
4579
4580  <rule from="^http://(www\.)?lawblog\.de/" to="https://www.lawblog.de/" />
4581</ruleset>
4582<ruleset name="LboroAcUk">
4583  <target host="*.lboro.ac.uk"/>
4584
4585  <securecookie host="^(bestmaths|dspace|email(admin)?|engskills|lists|luis|lorls|oss|pdwww|wfa)\.lboro\.ac\.uk$" name=".*"/>
4586  <rule  from="^http://(bestmaths|dspace|email(admin)?|engskills|lists|luis|lorls|oss|pdwww|wfa)\.lboro\.ac\.uk/" to="https://$1.lboro.ac.uk/"/>
4587</ruleset>
4588<ruleset name="leadback.advertising.com">
4589  <target host="leadback.advertising.com" />
4590  <rule from="^http://leadback\.advertising\.com/" to="https://secure.leadback.advertising.com/"/>
4591</ruleset>
4592
4593<ruleset name="LegitScript">
4594  <target host="www.legitscript.com" />
4595  <target host="legitscript.com" />
4596
4597  <rule from="^http://(www\.)?legitscript\.com/" to="https://secure.legitscript.com/"/>
4598</ruleset><ruleset name="Legtux" default_off="self-signed certificate">
4599  <target host="legtux.org" />
4600  <target host="www.legtux.org" />
4601
4602  <rule from="^http://(www\.)?legtux\.org/" to="https://www.legtux.org/"/>
4603</ruleset>
4604<ruleset name="Lelo.com">
4605        <target host="lelo.com" />
4606        <target host="*.lelo.com" />
4607        <rule from="^http://lelo\.com/" to="https://lelo.com/"/>
4608        <rule from="^http://([^/:@]*)\.lelo\.com/" to="https://$1.lelo.com/"/>
4609</ruleset>
4610<ruleset name="Lenovo">
4611  <target host="lenovo.com" />
4612  <target host="www.lenovo.com" />
4613  <target host="shop.lenovo.com" />
4614  <target host="lenovo.co.uk" />
4615  <target host="www.lenovo.co.uk" />
4616
4617  <securecookie host="^(.+\.)?lenovo\.com$" name=".*"/>
4618
4619  <exclusion pattern="^http://lenovo\.com/friendsandfamily$"/>
4620  <exclusion pattern="^http://shop\.lenovo\.com/us(/.*)?$"/>
4621
4622  <rule from="^http://(www\.)?lenovo\.com/epp$" to="https://www.lenovo.com/epp/"/>
4623
4624  <rule from="^http://lenovo\.com/" to="https://www.lenovo.com/"/>
4625  <rule from="^http://(www|shop)\.lenovo\.com/" to="https://$1.lenovo.com/"/>
4626 
4627  <rule from="^http://(www\.)?lenovo\.co\.uk/?$" to="https://www.lenovo.com/uk/en/"/>
4628</ruleset>
4629<ruleset name="LensRentals.com">
4630  <target host="www.lensrentals.com" />
4631  <target host="lensrentals.com" />
4632
4633        <rule from="^http://(www\.)?lensrentals\.com/" to="https://www.lensrentals.com/"/>
4634</ruleset>
4635<ruleset name="Library Anywhere">
4636        <target host="www.libanywhere.com"/>
4637        <target host="libanywhere.com"/>
4638        <target host="syndetics.com"/>
4639        <target host="www.syndetics.com"/>
4640        <target host="secure.syndetics.com"/>
4641
4642        <rule from="^http://(www\.)?libanywhere\.com/" to="https://www.libanywhere.com/"/>
4643        <rule from="^http://(www\.)?syndetics\.com/" to="https://secure.syndetics.com/"/>
4644</ruleset>
4645<ruleset name="LibraryThing">
4646  <target host="pics.librarything.com" />
4647  <target host="static.librarything.com" />
4648  <target host="www.librarything.com" />
4649  <target host="librarything.com" />
4650
4651  <securecookie host="^(.*\.)?librarything\.com$" name=".*" />
4652
4653  <rule from="^http://(www\.)?librarything\.com/" to="https://www.librarything.com/"/>
4654  <rule from="^http://(pics|static)?\.librarything\.com/" to="https://$1.librarything.com/"/>
4655</ruleset>
4656<ruleset name="LibreOffice">
4657
4658        <target host="www.libreoffice.org" />
4659        <target host="libreoffice.org" />
4660
4661        <rule from="^http://(www\.)?libreoffice\.org/" to="https://www.libreoffice.org/"/>
4662</ruleset><ruleset name="LibreOffice-Box">
4663<target host="libreofficebox.org" />
4664<target host="www.libreofficebox.org" />
4665<rule from="^http://(www\.)?libreofficebox\.org/" to="https://www.libreofficebox.org/"/>
4666</ruleset>
4667<!-- cdn.www.liferay.com lacks ssl :( -->
4668<!-- liferay.org lives under liferay.com. should be fixable. -->
4669<ruleset name="Liferay.com">
4670  <target host="www.liferay.com" />
4671  <target host="liferay.com" />
4672  <rule from="^http://www\.liferay\.com/" to="https://www.liferay.com/"/>
4673  <rule from="^http://liferay\.com/" to="https://liferay.com/"/>
4674</ruleset>
4675
4676<ruleset name="LiftShare">
4677  <target host="liftshare.com"/>
4678  <target host="www.liftshare.com"/>
4679  <target host="images.liftshare.com"/>
4680  <target host="scripts.liftshare.com"/>
4681
4682  <securecookie host="^(.+\.)?liftshare\.com$" name=".*"/>
4683
4684  <rule from="^http://liftshare\.com/" to="https://liftshare.com/"/>
4685  <rule from="^http://(images|www|scripts)\.liftshare\.com/" to="https://$1.liftshare.com/"/>
4686</ruleset>
4687<ruleset name="Lighttpd.net" default_off="CACert">
4688        <target host="lighttpd.net" />
4689        <target host="www.lighttpd.net" />
4690        <target host="blog.lighttpd.net" />
4691        <target host="redmine.lighttpd.net" />
4692        <rule from="^http://www\.lighttpd\.net/" to="https://www.lighttpd.net/"/>
4693        <rule from="^http://lighttpd\.net/" to="https://www.lighttpd.net/"/>
4694        <rule from="^http://blog\.lighttpd\.net/" to="https://blog.lighttpd.net/"/>
4695        <rule from="^http://redmine\.lighttpd\.net/" to="https://redmine.lighttpd.net/"/>
4696</ruleset>
4697
4698<ruleset name="Lindt USA">
4699  <target host="www.lindtusa.com" />
4700  <target host="lindtusa.com" />
4701
4702  <rule from="^http://(www\.)?lindtusa\.com/" to="https://www.lindtusa.com/"/>
4703</ruleset>
4704<ruleset name="Link+ Catalog">
4705        <target host="csul.iii.com" />
4706
4707        <rule from="^http://csul\.iii\.com/" to="https://csul.iii.com/" />
4708</ruleset>
4709<ruleset name="LinkedIn (minimal)">
4710        <target host="platform.linkedin.com" />
4711
4712        <rule from="^http://platform\.linkedin\.com/" to="https://platform.linkedin.com/" />
4713</ruleset>
4714<ruleset name="Linkomanija" default_off="self-signed">
4715  <target host="www.linkomanija.net" />
4716   <rule from="^http://(www\.)linkomanija\.net/"
4717          to="https://www.linkomanija.net/"/>
4718</ruleset>
4719<ruleset name="Linode">
4720  <target host="linode.com" />
4721  <target host="www.linode.com" />
4722  <target host="stats.linode.com" />
4723  <target host="manager.linode.com" />
4724
4725  <securecookie host="^(.+\.)?linode\.com$" name=".*"/>
4726
4727  <rule from="^http://(www\.)?linode\.com/" to="https://www.linode.com/"/>
4728  <rule from="^http://(stats|manager)\.linode\.com/" to="https://$1.linode.com/"/>
4729</ruleset>
4730 <ruleset name="Linux.com">
4731   <target host="linux.com" />
4732   <target host="store.linux.com" />
4733   <target host="www.linux.com" />
4734 
4735   <rule from="^http://(www\.)?linux\.com/" to="https://www.linux.com/"/>
4736   <rule from="^http://store\.linux\.com/" to="https://store.linux.com/"/>
4737 </ruleset>
4738<ruleset name="DaLinuxFrenchPage">
4739  <target host="linuxfr.org" />
4740  <target host="www.linuxfr.org" />
4741
4742  <rule from="^http://(www\.)?linuxfr\.org/" to="https://linuxfr.org/"/>
4743</ruleset>
4744
4745<ruleset name="LinuxFoundation">
4746  <target host="*.linuxfoundation.org" />
4747
4748  <rule from="^http://([^/:@]*)\.linuxfoundation\.org/" to="https://$1.linuxfoundation.org/"/>
4749</ruleset>
4750
4751<ruleset name="LinuxQuestions">
4752  <target host="linuxquestions.org" />
4753  <target host="www.linuxquestions.org" />
4754
4755  <securecookie host="^(.+\.)?linuxquestions\.org$" name=".*"/>
4756
4757  <rule from="^http://(www\.)?linuxquestions\.org/" to="https://www.linuxquestions.org/"/>
4758</ruleset>
4759<ruleset name="Hotmail / Live">
4760  <target host="*.live.com" />
4761  <target host="*.hotmail.com" />
4762  <target host="hotmail.com" />
4763  <!-- target host is * because Live URLs can contain multiple unpredictable
4764       components, like http://snXXXw.sntXXX.mail.live.com/default.aspx
4765       In the current target host syntax, a wildcard can match only one
4766       hostname element, not two, and only one wildcard per target host
4767       is permitted. -->
4768
4769  <!-- Microsoft itself protects the login this way but we can prevent
4770       against SSL stripping. -->
4771  <rule from="^http://(login|onecare|mail)\.live\.com/" to="https://$1.live.com/"/>
4772
4773  <!-- Both of these appear to trigger two good things: (1) the user is
4774       prompted to make HTTPS the default; (2) even if the user decides
4775       not to, the remainder of that mail-reading session is automatically
4776       HTTPS-only. -->
4777  <rule from="^http://(www\.)hotmail\.com/" to="https://www.hotmail.com/"/>
4778  <rule from="^http://([^@:/]+)\.([^@:/]+)\.mail\.live\.com/" to="https://$2.mail.live.com/"/>
4779  <!-- example:
4780       http://sn133w.snt133.mail.live.com/default.aspx?wa=wsignin1.0 >>>
4781       https://snt133.mail.live.com/default.aspx?wa=wsignin1.0  -->
4782</ruleset>
4783<!-- NOTE: In its current form and with the current site configuration,
4784this rule protects login passwords but prevents the user from reading
4785other users' journals! -->
4786
4787<ruleset name="LiveJournal" default_off="breaks for non-logged-in users">
4788  <target host="livejournal.com" />
4789  <target host="www.livejournal.com" />
4790
4791  <rule from="^http://(?:www\.)?livejournal\.com/" to="https://www.livejournal.com/"/>
4792</ruleset>
4793<ruleset name="LoadImpact.com">
4794        <target host="loadimpact.com" />
4795        <target host="www.loadimpact.com" />
4796        <rule from="^http://www\.loadimpact\.com/" to="https://www.loadimpact.com/"/>
4797        <rule from="^http://loadimpact\.com/" to="https://loadimpact.com/"/>
4798</ruleset>
4799
4800<ruleset name="Local.ch">
4801        <target host="local.ch" />
4802        <target host="www.local.ch" />
4803        <target host="auto.local.ch" />
4804        <target host="blog.local.ch" />
4805        <target host="developer.local.ch" />
4806        <target host="guide.local.ch" />
4807        <target host="id.local.ch" />
4808        <target host="immo.local.ch" />
4809        <target host="info.local.ch" />
4810        <target host="map.local.ch" />
4811        <target host="market.local.ch" />
4812        <target host="my.local.ch" />
4813        <target host="news.local.ch" />
4814        <target host="tel.local.ch" />
4815        <target host="yellow.local.ch" />
4816
4817        <rule from="^http://(www\.)?local\.ch/" to="https://www.local.ch/"/>
4818        <rule from="^http://auto\.local\.ch/" to="https://auto.local.ch/"/>
4819        <rule from="^http://blog\.local\.ch/" to="https://blog.local.ch/"/>
4820        <rule from="^http://developer\.local\.ch/" to="https://developer.local.ch/"/>
4821        <rule from="^http://guide\.local\.ch/" to="https://guide.local.ch/"/>
4822        <rule from="^http://id\.local\.ch/" to="https://id.local.ch/"/>
4823        <rule from="^http://immo\.local\.ch/" to="https://immo.local.ch/"/>
4824        <rule from="^http://info\.local\.ch/" to="https://info.local.ch/"/>
4825        <rule from="^http://map\.local\.ch/" to="https://map.local.ch/"/>
4826        <rule from="^http://market\.local\.ch/" to="https://market.local.ch/"/>
4827        <rule from="^http://my\.local\.ch/" to="https://my.local.ch/"/>
4828        <rule from="^http://news\.local\.ch/" to="https://news.local.ch/"/>
4829        <rule from="^http://tel\.local\.ch/" to="https://tel.local.ch/"/>
4830        <rule from="^http://yellow\.local\.ch/" to="https://yellow.local.ch/"/>
4831</ruleset>
4832<ruleset name="Loopt">
4833  <target host="loopt.com" />
4834  <target host="www.loopt.com" />
4835
4836  <rule from="^http://(www\.)?loopt\.com/" to="https://www.loopt.com/"/>
4837</ruleset>
4838<ruleset name="LoveFilm">
4839  <target host="lovefilm.com" />
4840  <target host="*.lovefilm.com" />
4841
4842  <rule from="^http://(www\.)?lovefilm\.com/" to="https://www.lovefilm.com/"/>
4843  <rule from="^http://(static|images[0-9]*)\.lovefilm\.com/" to="https://$1.lovefilm.com/"/>
4844</ruleset>
4845<ruleset name="M86security">
4846<target host="www.m86security.com" />
4847<target host="m86security.com" />
4848<rule from="^http://(www\.)?m86security\.com/" to="https://www.m86security.com/"/>
4849</ruleset>
4850<ruleset name="MAH.se">
4851        <target host="www.mah.se" />
4852        <target host="mah.se" />
4853        <rule from="^http://mah\.se/" to="https://www.mah.se/"/>
4854        <rule from="^http://www\.mah\.se/" to="https://www.mah.se/"/>
4855</ruleset>
4856
4857<ruleset name="MDH.se">
4858        <target host="www.mdh.se" />
4859        <target host="mdh.se" />
4860        <rule from="^http://mdh\.se/" to="https://www.mdh.se/"/>
4861        <rule from="^http://www\.mdh\.se/" to="https://www.mdh.se/"/>
4862</ruleset>
4863
4864<!-- Mitt universitetet -->
4865<!-- Mid sweden university -->
4866<ruleset name="MIUN.se">
4867        <target host="www.miun.se" />
4868        <target host="portal.miun.se" />
4869        <target host="miun.se" />
4870        <rule from="^http://miun\.se/" to="https://www.miun.se/"/>
4871        <rule from="^http://www\.miun\.se/" to="https://www.miun.se/"/>
4872        <rule from="^http://portal\.miun\.se/" to="https://portal.miun.se/"/>
4873</ruleset>
4874
4875<ruleset name="MSN" default_off="certificate mismatch">
4876  <target host="my.msn.com" />
4877
4878  <rule from="^http://my\.msn\.com/" to="https://my.msn.com/"/>
4879</ruleset>
4880<ruleset name="MacWorld">
4881  <target host="www.macworld.com" />
4882
4883  <rule from="^http://www\.macworld\.com/" to="https://www.macworld.com/"/>
4884
4885</ruleset>
4886<ruleset name="Magento">
4887  <target host="magentocommerce.com" />
4888  <target host="www.magentocommerce.com" />
4889
4890  <rule from="^http://(www\.)?magentocommerce\.com/" to="https://www.magentocommerce.com/"/>
4891</ruleset>
4892
4893<ruleset name="Magnatune">
4894  <target host="magnatune.com" />
4895  <target host="www.magnatune.com" />
4896
4897        <rule from="^http://(www\.)?magnatune\.com/" to="https://magnatune.com/"/>
4898</ruleset>
4899<ruleset name="Magnet.ie">
4900  <!-- cert valid only for www. -->
4901  <target host="magnet.ie" />
4902  <target host="www.magnet.ie" />
4903
4904  <rule from="^http://(www\.)?magnet\.ie/" to="https://www.magnet.ie/"/>
4905</ruleset>
4906<ruleset name="Mail.com">
4907  <target host="www.mail.com" />
4908  <target host="mail.com" />
4909  <target host="service.mail.com" />
4910  <securecookie host="^(.*\.)?mail.com$" name=".*" />
4911
4912  <rule from="^http://(www\.)?mail\.com/" to="https://www.mail.com/"/>
4913  <rule from="^http://service\.mail\.com/" to="https://service.mail.com/"/>
4914</ruleset>
4915<ruleset name="Make-A-Wish Foundation of Michigan">
4916        <target host="wishmich.org" />
4917        <target host="www.wishmich.org" />
4918
4919        <rule from="^http://(www\.)?wishmich\.org/" to="https://www.wishmich.org/" />
4920</ruleset><ruleset name="Malwarebytes">
4921  <target host="www.malwarebytes.org" />
4922  <target host="malwarebytes.org" />
4923  <target host="store.malwarebytes.org" />
4924  <target host="forums.malwarebytes.org" />
4925
4926  <rule from="^http://(www\.)?malwarebytes\.org/" to="https://malwarebytes.org/"/>
4927<rule from="^http://(www\.)?forums\.malwarebytes\.org/" to="https://forums.malwarebytes.org/"/>
4928<rule from="^http://(www\.)?store\.malwarebytes\.org/" to="https://store.malwarebytes.org/"/>
4929</ruleset>
4930<ruleset name="MarksandSpencer">
4931  <target host="marksandspencer.com" />
4932  <target host="www.marksandspencer.com" />
4933
4934  <securecookie host="^(.*\.)?marksandspencer\.com$" name=".*" />
4935
4936  <rule from="^http://(www\.)?marksandspencer\.com/" to="https://www.marksandspencer.com/"/>
4937</ruleset><ruleset name="Mandriva.com">
4938        <target host="mandriva.com" />
4939        <target host="www.mandriva.com" />
4940        <target host="webapps.mandriva.com" />
4941        <rule from="^http://mandriva\.com/" to="https://mandriva.com/"/>
4942        <rule from="^http://www\.mandriva\.com/" to="https://www.mandriva.com/"/>
4943        <rule from="^http://webapps\.mandriva\.com/" to="https://webapps.mandriva.com/"/>
4944</ruleset>
4945
4946<ruleset name="MapQuest">
4947  <target host="mapquest.com" />
4948  <target host="www.mapquest.com" />
4949  <target host="mapquestapi.com" />
4950  <target host="www.mapquestapi.com" />
4951  <target host="mapquesthelp.com" />
4952  <target host="www.mapquesthelp.com" />
4953
4954  <rule from="^http://(www\.)?mapquest\.com/" to="https://www.mapquest.com/"/>
4955  <rule from="^http://developer\.mapquest\.com/" to="https://developer.mapquest.com/"/>
4956  <rule from="^http://(www\.)?mapquestapi\.com/" to="https://www.mapquestapi.com/"/>
4957  <rule from="^http://(www\.)?mapquesthelp\.com/" to="https://www.mapquesthelp.com/"/>
4958</ruleset>
4959<ruleset name="Marxists Internet Archive" default_off="Self signed">
4960  <target host="marxists.org" />
4961  <target host="www.marxists.org" />
4962  <target host="marx.org" />
4963  <target host="www.marx.org" />
4964
4965  <rule from="^(http|https)://(www\.)?marxists\.org/" to="https://www.marxists.org/"/>
4966  <rule from="^(http|https)://(www\.)?marx\.org/" to="https://www.marxists.org/"/>
4967</ruleset>
4968<ruleset name="Massage Magazine">
4969        <target host="massagemag.com" />
4970        <target host="www.massagemag.com" />
4971        <securecookie host="^(.*\.)?massagemag\.com$" name=".*" />
4972
4973        <rule from="^http://(www\.)?massagemag\.com/" to="https://www.massagemag.com/"/>
4974</ruleset>
4975
4976<ruleset name="Materiel.net">
4977  <target host="*.materiel.net" />
4978  <target host="materiel.net" />
4979
4980  <rule from="^http://materiel\.net/" to="https://www.materiel.net/" />
4981  <rule from="^http://([^@/:]*)\.materiel\.net/" to="https://$1.materiel.net/" />
4982</ruleset>
4983<ruleset name="Mathtag.com">
4984        <target host="pixel.mathtag.com" />
4985        <target host="action.mathtag.com" />
4986
4987        <rule from="^http://(pixel|action)\.mathtag\.com/" to="https://$1.mathtag.com/" />
4988</ruleset><ruleset name="MaxMind">
4989  <target host="maxmind.com" />
4990  <target host="www.maxmind.com" />
4991
4992  <rule from="^http://(www\.)?maxmind\.com/" to="https://www.maxmind.com/" />
4993</ruleset>
4994<ruleset name="May First/People Link">
4995  <target host="id.mayfirst.org" />
4996  <target host="support.mayfirst.org" />
4997  <target host="members.mayfirst.org" />
4998  <target host="lists.mayfirst.org" />
4999
5000  <rule from="^http://(id|support|members|lists)\.mayfirst\.org/" to="https://$1.mayfirst.org/"/>
5001</ruleset>
5002<!-- Av vendor. promos.mcafee.com lacks https -->
5003<ruleset name="McAfee">
5004        <target host="mcafee.com" />
5005        <target host="www.mcafee.com" />
5006        <target host="blogs.mcafee.com" />
5007        <target host="home.mcafee.com" />
5008        <target host="images.mcafee.com" />
5009        <target host="images.scanalert.com"/>
5010        <target host="mcafeesecure.com" />
5011        <target host="www.mcafeesecure.com" />
5012        <target host="secureimages.mcafee.com" />
5013        <target host="shop.mcafee.com" />
5014        <rule from="^http://(www\.)?mcafee\.com/" to="https://www.mcafee.com/"/>
5015        <rule from="^http://blogs\.mcafee\.com/" to="https://blogs.mcafee.com/"/>
5016        <rule from="^http://home\.mcafee\.com/" to="https://home.mcafee.com/"/>
5017        <rule from="^http://shop\.mcafee\.com/" to="https://shop.mcafee.com/"/>
5018        <rule from="^http://images\.mcafee\.com/" to="https://images.mcafee.com/"/>
5019        <rule from="^http://images\.scanalert\.com/" to="https://images.scanalert.com/"/>
5020        <rule from="^http://secureimages\.mcafee\.com/" to="https://secureimages.mcafee.com/"/>
5021        <rule from="^http://www\.mcafeesecure\.com/" to="https://www.mcafeesecure.com/"/>
5022</ruleset>
5023<ruleset name="MedicAlert">
5024        <target host="medicalert.org" />
5025        <target host="www.medicalert.org" />
5026
5027        <rule from="^http://(www\.)?medicalert\.org/" to="https://www.medicalert.org/" />
5028</ruleset><ruleset name="Medikamente-Per-Klick">
5029  <target host="www.medikamente-per-klick.de"/>
5030  <target host="medikamente-per-klick.de"/>
5031  <target host="shop.medikamente-per-klick.de"/>
5032  <target host="www.kosmetik-per-klick.de"/>
5033  <target host="kosmetik-per-klick.de"/>
5034  <target host="www.ernaehrung-per-klick.de"/>
5035  <target host="ernaehrung-per-klick.de"/>
5036
5037  <rule from="^http://((www|shop)\.)?medikamente-per-klick\.de/" to="https://www.medikamente-per-klick.de/"/>
5038  <rule from="^http://(www\.)?kosmetik-per-klick\.de/" to="https://www.kosmetik-per-klick.de/"/>
5039  <rule from="^http://(www\.)?ernaehrung-per-klick\.de/" to="https://www.ernaehrung-per-klick.de/"/>
5040</ruleset>
5041<!-- pharmacy. medical info should be private -->
5042<ruleset name="Medstop.se">
5043        <target host="medstop.se" />
5044        <target host="www.medstop.se" />
5045        <rule from="^http://medstop\.se/" to="https://www.medstop.se/"/>
5046        <rule from="^http://www\.medstop\.se/" to="https://www.medstop.se/"/>
5047</ruleset>
5048
5049<ruleset name="Meebo">
5050  <target host="www.meebo.com" />
5051  <target host="meebo.com" />
5052
5053  <rule from="^http://(www\.)?meebo\.com/" to="https://www.meebo.com/"/>
5054</ruleset>
5055<ruleset name="Meego">
5056  <target host="www.meego.com" />
5057  <target host="meego.com" />
5058
5059  <rule from="^http://(www\.)?meego\.com/" to="https://www.meego.com/"/>
5060</ruleset>
5061<ruleset name="meinVZ" default_off="Certificate mismatch">
5062  <target host="www.meinvz.net" />
5063
5064  <rule from="^http://www\.meinvz\.net/" to="https://www.meinvz.net/"/>
5065</ruleset>
5066<!-- These guys are included from some of the UN sites. -->
5067<ruleset name="Meltwaternews.con">
5068        <target host="www.meltwaternews.com" />
5069        <target host="meltwaternews.com" />
5070        <rule from="^http://meltwaternews\.com/" to="https://meltwaternews.com/"/>
5071        <rule from="^http://www\.meltwaternews\.com/" to="https://www.meltwaternews.com/"/>
5072</ruleset>
5073
5074<ruleset name="Mibbit">
5075  <target host="*.mibbit.com"/>
5076  <target host="*.chat.mibbit.com"/>
5077
5078  <securecookie host="^(.*\.)?mibbit.com$" name=".*" />
5079
5080  <!-- Forcing SSL on homepage would redirect to Mibbit chat page -->
5081  <rule from="^http://chat\.mibbit\.com/" to="https://chat.mibbit.com/"/>
5082  <rule from="^http://data\.mibbit\.com/" to="https://data.mibbit.com/"/>
5083  <rule from="^http://02\.chat\.mibbit\.com/" to="https://02.chat.mibbit.com/"/>
5084  <rule from="^http://widgetmanager\.mibbit\.com/" to="https://widgetmanager.mibbit.com/"/>
5085</ruleset>
5086<ruleset name="Microchip.com">
5087  <target host="www.microchip.com" />
5088  <target host="microchip.com" />
5089
5090  <rule from="^http://(www\.)?microchip\.com/" to="https://www.microchip.com/"/>
5091</ruleset>
5092<ruleset name="Microsoft">
5093  <target host="*.microsoft.com" />
5094  <target host="microsoft.com" />
5095  <target host="blogs.msdn.com" />
5096  <target host="*.technet.microsoft.com" />
5097  <target host="*.windowsupdate.microsoft.com" />
5098 
5099  <exclusion pattern="^http://www\.microsoft\.com/.*FamilyID" />
5100  <!-- ironic -->
5101  <exclusion pattern="^http://www\.microsoft\.com/security/" />
5102
5103  <rule from="^http://(www\.)?microsoft\.com/"
5104          to="https://www.microsoft.com/"/>
5105  <rule from="^http://(adcenter|advertising|ajax|connect|go|ie|office|office365|office2010|onlinehelp|research|signature|snackbox|social|store|profile|msdn|(?:social\.)?technet|windowsupdate)\.microsoft\.com/"
5106          to="https://$1.microsoft.com/"/>
5107  <rule from="^http://(v4|v5)\.windowsupdate\.microsoft\.com/"
5108          to="https://$1.windowsupdate.microsoft.com/" />
5109  <rule from="^http://blogs\.msdn\.com/"
5110          to="https://blogs.msdn.com/"/>
5111</ruleset>
5112<ruleset name="Mijn ING">
5113  <target host="mijn.ing.nl" />
5114  <rule from="^http://mijn\.ing\.nl/" to="https://mijn.ing.nl/"/>
5115</ruleset>
5116<ruleset name="Miles-and-more.com">
5117  <target host="miles-and-more.com"/>
5118  <target host="www.miles-and-more.com"/>
5119  <securecookie host="^(.*\.)?miles-and-more.com$" name=".*" />
5120
5121  <rule from="^http://(www\.)?miles-and-more\.com/" to="https://www.miles-and-more.com/"/>
5122</ruleset>
5123<ruleset name="MilkAndMore">
5124  <target host="milkandmore.co.uk" />
5125  <target host="www.milkandmore.co.uk" />
5126
5127  <securecookie host="^([^@:/]+\.)?milkandmore\.co\.uk$" name=".*"/>
5128
5129  <rule from="^http://(www\.)?milkandmore\.co\.uk/" to="https://www.milkandmore.co.uk/"/>
5130</ruleset>
5131<ruleset name="lists.mindrot.org">
5132  <target host="lists.mindrot.org" />
5133
5134  <rule from="^http://lists\.mindrot\.org/" to="https://lists.mindrot.org/" />
5135</ruleset>
5136<ruleset name="Mint">
5137  <target host="www.mint.com" />
5138  <target host="mint.com" />
5139
5140  <rule from="^http://(www\.)?mint\.com/" to="https://www.mint.com/"/>
5141</ruleset><ruleset name="Miranda-IM">
5142  <target host="miranda-im.org" />
5143  <target host="*.miranda-im.org" />
5144
5145  <rule from="^http://([^/:@]*)\.miranda-im\.org/" to="https://$1.miranda-im.org/"/>
5146</ruleset>
5147
5148<ruleset name="Mitsubishi.com">
5149  <target host="www.mitsubishi.com" />
5150  <target host="mitsubishi.com" />
5151
5152  <rule from="^http://(www\.)?mitsubishi\.com/" to="https://www.mitsubishi.com/"/>
5153</ruleset>
5154<!-- uses content from http://c0658142.cdn.cloudfiles.rackspacecloud.com which does not use https. -->
5155<!-- blog.mixx.com doesnt use https -->
5156<!-- help.mixx.com doesnt use https -->
5157<!-- engineroom.mixx.com doesnt use https -->
5158<ruleset name="mixx.com">
5159        <target host="mixx.com" />
5160        <target host="www.mixx.com" />
5161        <rule from="^http://mixx\.com/" to="https://mixx.com/"/>
5162        <rule from="^http://www\.mixx\.com/" to="https://www.mixx.com/"/>
5163</ruleset>
5164
5165<ruleset name="ModSecurity">
5166  <target host="modsecurity.org" />
5167  <target host="www.modsecurity.org" />
5168
5169  <rule from="^http://(www\.)?modsecurity\.org/" to="https://modsecurity.org/"/>
5170</ruleset>
5171<ruleset name="Moneybookers">
5172  <target host="moneybookers.com" />
5173  <target host="www.moneybookers.com" />
5174
5175  <rule from="^http://(www\.)?moneybookers\.com/" to="https://www.moneybookers.com/"/>
5176</ruleset>
5177<ruleset name="Mookie1.com">
5178        <target host="t.mookie1.com" />
5179        <target host="b3-uk.mookie1.com" />
5180        <target host="b3.mookie1.com" />
5181        <target host="dna1.mookie1.com" />
5182
5183        <rule from="^http://(t|b3-uk|b3|dna1)\.mookie1\.com/" to="https://$1.mookie1.com/" />
5184</ruleset><ruleset name="MoonPig">
5185  <target host="moonpig.com" />
5186  <target host="www.moonpig.com" />
5187  <target host="moonpig.com.au" />
5188  <target host="www.moonpig.com.au" />
5189
5190  <securecookie host="^(.+\.)?moonpig\.com(\.au)?$" name=".*"/>
5191
5192  <rule from="^http://(www\.)?moonpig\.com/"     to="https://moonpig.com/"/>
5193  <rule from="^http://(www\.)?moonpig\.com\.au/" to="https://www.moonpig.com.au/"/>
5194</ruleset>
5195<!-- dating sites. included on lots of other sites -->
5196<ruleset name="Motesplatsen.se">
5197        <target host="www.motesplatsen.se" />
5198        <rule from="^http://www\.motesplatsen\.se/" to="https://www.motesplatsen.se/"/>
5199</ruleset>
5200
5201<ruleset name="Mountyhall" default_off="self-signed">
5202  <target host="games.mountyhall.com" />
5203
5204  <rule from="^http://games\.mountyhall\.com/" to="https://games.mountyhall.com/" />
5205</ruleset>
5206<ruleset name="MoveOn">
5207        <target host="www.moveon.org" />
5208        <target host="pol.moveon.org" />
5209        <target host="civic.moveon.org" />
5210        <target host="civ.moveon.org" />
5211        <target host="moveonpac.org" />
5212        <target host="www.moveonpac.org" />
5213
5214        <!-- For a URL such as http://www.moveon.org/press where
5215        there is no trailing slash, add a trailing slash when
5216        changing the URL to HTTPS (the previous URL becomes
5217        https://www.moveon.org/press/ for instance.) -->
5218        <rule from="^https?://(www\.)?moveon\.org/([a-z0-9]+)$" to="https://www.moveon.org/$2/" />
5219        <rule from="^https?://(pol|civic|civ)\.moveon\.org/([a-z0-9]+)$" to="https://$1.moveon.org/$2/" />
5220
5221        <!-- As of April 23, 2011, the URL https://www.moveon.org/keepmeposted/ redirects to the
5222        https://civic.moveon.org/keepmeposted// URL. This is probably an error-the correct URL
5223        should be https://civic.moveon.org/keepmeposted/ instead. The rule that comes next tries
5224        to correct this error by adjusting certain URLs that end with two or more slashes. -->
5225        <rule from="^https?://civic\.moveon\.org/([a-z0-9]+){1}/{2,}" to="https://civic.moveon.org/$1/" />
5226
5227        <!-- Change URLs that start with http://www.moveon.org/r? to start with
5228        https://www.moveon.org/r/? instead. -->
5229        <rule from="^http://(www\.)?moveon\.org/r\?" to="https://www.moveon.org/r/?" />
5230
5231        <!-- Handle URLs that do not fall within the previously mentioned
5232        special cases. -->
5233        <rule from="^http://(www\.)?moveon\.org/(([^a-z0-9]+)|([a-z0-9]{2,}\?)|([a-qs-z0-9]\?)|([a-z0-9]+[^a-z0-9?]+)){1}" to="https://www.moveon.org/$2" />
5234        <rule from="^http://(pol|civ)\.moveon\.org/([^a-z0-9]+|([a-z0-9]+[^a-z0-9]+)|$){1}" to="https://$1.moveon.org/$2" />
5235        <rule from="^http://civic\.moveon\.org/(([^a-z0-9]+)|([a-z0-9]+[^a-z0-9/]+)|([a-z0-9]+/($|[^/]+))|$){1}" to="https://civic.moveon.org/$1" />
5236
5237        <!-- Handle URLs for the moveonpac.org domain. -->
5238        <rule from="^http://(www\.)?moveonpac\.org/" to="https://www.moveonpac.org/" />
5239</ruleset>
5240<ruleset name="Movelia">
5241  <target host="movelia.es" />
5242  <target host="www.movelia.es" />
5243
5244  <rule from="^http://(www\.)?movelia\.es/" to="https://www.movelia.es/" />
5245</ruleset>
5246<ruleset name="Mozdev">
5247  <target host="mozdev.org"/>
5248  <target host="hg.mozdev.org"/>
5249  <target host="www.mozdev.org"/>
5250
5251  <rule from="^http://mozdev\.org/" to="https://mozdev.org/"/>
5252  <rule from="^http://(hg|www)\.mozdev\.org/" to="https://$1.mozdev.org/"/>
5253</ruleset><!-- BOOOO: Firefox.com (which some download links pass through) is in
5254     HTTP only... -->
5255
5256<ruleset name="Mozilla">
5257  <target host="mozilla.org" />
5258  <target host="*.mozilla.org" />
5259  <target host="mozilla.com" />
5260  <target host="*.mozilla.com" />
5261  <target host="mozillalabs.com" />
5262  <target host="*.mozillalabs.com" />
5263  <target host="mozillamessaging.com" />
5264  <target host="www.mozillamessaging.com" />
5265  <target host="planet.mozillamessaging.com" />
5266
5267  <rule from="^http://mozilla\.org/" to="https://www.mozilla.org/"/>
5268  <rule from="^http://(addons|bzr|communitystore|creative|developer|directory|donate|education|firefoxlive|ftp|intlstore|krakenbenchmark|lists|l10n|localize|hacks|hg|labs|mail|mpl|mxr|nightly|planet|studentreps|quality|wiki|www|www-archive)\.mozilla\.org/" to="https://$1.mozilla.org/"/>
5269
5270  <rule from="^http://mozilla\.com/" to="https://www.mozilla.com/"/>
5271  <rule from="^http://(blog|input|people|support|www)\.mozilla\.com/" to="https://$1.mozilla.com/"/>
5272
5273  <rule from="^http://(www\.)?mozillalabs\.com/" to="https://mozillalabs.com/"/>
5274  <rule from="^http://(apps|bespin|bespinplugins|gaming|heatmap|jetpack|testpilot)\.mozillalabs\.com/" to="https://$1.mozillalabs.com/"/>
5275
5276  <rule from="^http://mozillamessaging\.com/" to="https://mozillamessaging.com/"/>
5277  <rule from="^http://(planet|www)\.mozillamessaging\.com/" to="https://$1.mozillamessaging.com/"/>
5278</ruleset>
5279<ruleset name="Mozy">
5280  <target host="mozy.com" />
5281  <target host="mozy.co.uk" />
5282  <target host="www.mozy.com" />
5283  <target host="www.mozy.co.uk" />
5284
5285  <securecookie host="^(.+\.)?mozy\.com$" name=".*"/>
5286  <securecookie host="^(.+\.)?mozy\.co\.uk$" name=".*"/>
5287
5288  <rule from="^http://(www\.)?mozy\.com/" to="https://mozy.com/"/>
5289  <rule from="^http://(www\.)?mozy\.co\.uk/" to="https://mozy.co.uk/"/>
5290</ruleset>
5291<ruleset name="Mpx">
5292  <target host="mpx.no" />
5293  <target host="www.mpx.no" />
5294
5295  <rule from="^http://(www\.)?mpx\.no/" to="https://www.mpx.no/"/>
5296</ruleset>
5297
5298<ruleset name="Mullet.se">
5299        <target host="mullet.se" />
5300        <target host="www.mullet.se" />
5301        <rule from="^http://www\.mullet\.se/" to="https://www.mullet.se/"/>
5302        <rule from="^http://mullet\.se/" to="https://mullet.se/"/>
5303</ruleset>
5304
5305<ruleset name="Mullvad.net">
5306        <target host="mullvad.net" />
5307        <target host="www.mullvad.net" />
5308        <rule from="^http://mullvad\.net/" to="https://mullvad.net/"/>
5309        <rule from="^http://www\.mullvad\.net/" to="https://www.mullvad.net/"/>
5310</ruleset>
5311
5312<!-- musikerforbundet is a swedish labour union -->
5313<ruleset name="Musikerforbundet.se">
5314        <target host="musikerforbundet.se" />
5315        <target host="www.musikerforbundet.se" />
5316        <rule from="^http://musikerforbundet\.se/" to="https://www.musikerforbundet.se/"/>
5317        <rule from="^http://www\.musikerforbundet\.se/" to="https://www.musikerforbundet.se/"/>
5318</ruleset>
5319
5320<ruleset name="My-files.de">
5321  <target host="w01.my-files.de" />
5322  <rule from="^http://w01\.my-files\.de/" to="https://w01.my-files.de/"/>
5323</ruleset>
5324<ruleset name="MyCharity.ie">
5325  <!-- cert valid only for www. -->
5326  <target host="mycharity.ie" />
5327  <target host="www.mycharity.ie" />
5328
5329  <rule from="^http://(www\.)?mycharity\.ie/" to="https://www.mycharity.ie/"/>
5330</ruleset>
5331<ruleset name="MyPoints">
5332  <target host="mypoints.com" />
5333  <target host="www.mypoints.com" />
5334
5335  <rule from="^http://(www\.)?mypoints\.com/" to="https://www.mypoints.com/"/>
5336</ruleset>
5337<ruleset name="MySQL">
5338  <target host="mysql.com" />
5339  <target host="*.mysql.com" />
5340
5341  <exclusion pattern="^http://dev\.mysql\.com/" />
5342  <exclusion pattern="^http://bugs\.mysql\.com/" />
5343  <exclusion pattern="^http://wb\.mysql\.com/" />
5344  <exclusion pattern="^http://lists\.mysql\.com/" />
5345  <exclusion pattern="^http://planet\.mysql\.com/" />
5346
5347  <rule from="^http://mysql\.com/" to="https://www.mysql.com/"/>
5348  <rule from="^http://([^/:@]*)\.mysql\.com/" to="https://$1.mysql.com/"/>
5349</ruleset>
5350<ruleset name="MyTUM.de">
5351  <target host="portal.mytum.de"/>
5352
5353  <securecookie host="portal.mytum\.de$" name=".*" />
5354
5355  <rule from="^http://portal\.mytum\.de/" to="https://portal.mytum.de/"/>
5356</ruleset>
5357<ruleset name="MyUHC">
5358  <target host="myuhc.com" />
5359  <target host="www.myuhc.com" />
5360
5361  <rule from="^http://(www\.)?myuhc\.com/" to="https://www.myuhc.com/"/>
5362</ruleset>
5363
5364<ruleset name="MyWOT">
5365  <target host="mywot.com" />
5366  <target host="www.mywot.com" />
5367
5368  <rule from="^http://(www\.)?mywot\.com/" to="https://www.mywot.com/"/>
5369</ruleset>
5370<ruleset name="NL Politiek">
5371  <!-- Rule created by Jeroen van der Gun -->
5372
5373  <target host="cda.nl" />
5374  <target host="www.cda.nl" />
5375  <target host="d66.nl" />
5376  <target host="www.d66.nl" />
5377  <target host="groenlinks.nl" />
5378  <target host="www.groenlinks.nl" />
5379  <target host="sp.nl" />
5380  <target host="www.sp.nl" />
5381
5382  <rule from="^http://(?:www\.)?(cda|d66|sp)\.nl/" to="https://www.$1.nl/" />
5383  <rule from="^http://(?:www\.)?(groenlinks)\.nl/" to="https://$1.nl/" />
5384</ruleset>
5385<ruleset name="National Lawyers Guild">
5386  <target host="nlg.org" />
5387  <target host="www.nlg.org" />
5388
5389  <rule from="^http://(www\.)?nlg\.org/" to="https://www.nlg.org/" />
5390</ruleset>
5391<!-- media.npr.org lacks ssl. -->
5392<ruleset name="NPR.org">
5393  <target host="www.npr.org" />
5394  <target host="npr.org" />
5395  <rule from="^http://www\.npr\.org/" to="https://www.npr.org/"/>
5396  <rule from="^http://npr\.org/" to="https://www.npr.org/"/>
5397</ruleset>
5398
5399<ruleset name="NSF.gov">
5400  <target host="www.nsf.gov" />
5401  <target host="nsf.gov" />
5402  <rule from="^http://www\.nsf\.gov/" to="https://www.nsf.gov/"/>
5403  <rule from="^http://nsf\.gov/" to="https://www.nsf.gov/"/>
5404</ruleset>
5405
5406<ruleset name="Nttdocomo.com">
5407  <target host="www.nttdocomo.com" />
5408  <target host="nttdocomo.com" />
5409  <rule from="^http://www\.nttdocomo\.com/" to="https://www.nttdocomo.com/"/>
5410  <rule from="^http://nttdocomo\.com/" to="https://www.nttdocomo.com/"/>
5411</ruleset>
5412
5413<ruleset name="NTU">
5414  <target host="ntu.ac.uk" />
5415  <target host="www.ntu.ac.uk" />
5416  <target host="ntualumni.org.uk" />
5417  <target host="www.ntualumni.org.uk" />
5418
5419  <rule from="^http://(www\.)?ntu\.ac\.uk/" to="https://www.ntu.ac.uk/"/>
5420  <rule from="^http://(www\.)?ntualumni\.org\.uk/" to="https://www.ntualumni.org.uk/"/>
5421</ruleset>
5422<ruleset name="NYDailyNews">
5423  <target host="nydailynews.com" />
5424  <target host="www.nydailynews.com" />
5425  <target host="classifiedads.dailynews.com" />
5426
5427  <securecookie host="^([^@:/]+\.)?nydailynews\.com$" name=".*"/>
5428
5429  <rule from="^http://(www\.)?nydailynews\.com/" to="https://www.nydailynews.com/"/>
5430  <rule from="^http://(classifiedads)\.nydailynews\.com/" to="https://$1.nydailynews.com/"/>
5431</ruleset>
5432<ruleset name="NYTimes">
5433  <target host="*.nytimes.com" />
5434  <target host="nytimes.com" />
5435
5436  <exclusion pattern="^http://(www\.)?nytimes\.com/roomfordebate"/>
5437  <exclusion pattern="^http://(www\.)?nytimes\.com/(1[89]\d\d|200[0-4])/"/>
5438  <exclusion pattern="^http://(www\.)?nytimes\.com/info/"/>
5439  <exclusion pattern="^http://(www\.)?nytimes\.com/services/xml/rss/index.html"/>
5440
5441  <rule from="^http://(www\.)?nytimes\.com/" to="https://www.nytimes.com/"/>
5442  <rule from="^http://global\.nytimes\.com/" to="https://global.nytimes.com/"/>
5443</ruleset>
5444<ruleset name="NZBIndex.nl">
5445  <target host="nzbindex.nl" />
5446  <target host="www.nzbindex.nl" />
5447
5448  <rule from="^http://(www\.)?nzbindex\.nl/" to="https://nzbindex.nl/"/>
5449</ruleset>
5450
5451<ruleset name="NameCheap">
5452  <target host="namecheap.com" />
5453  <target host="www.namecheap.com" />
5454  <target host="files.namecheap.com" />
5455
5456  <rule from="^http://(www\.)?namecheap\.com/" to="https://www.namecheap.com/"/>
5457  <rule from="^http://files\.namecheap\.com/" to="https://files.namecheap.com/"/>
5458</ruleset>
5459<ruleset name="Names">
5460  <target host="names.co.uk" />
5461  <target host="www.names.co.uk" />
5462  <target host="admin.names.co.uk" />
5463  <target host="webmail4.names.co.uk" />
5464
5465  <rule from="^http://(www\.)?names\.co\.uk/" to="https://www.names.co.uk/"/>
5466  <rule from="^http://(admin|webmail4?)\.names\.co\.uk/" to="https://$1.names.co.uk/"/>
5467</ruleset>
5468<ruleset name="NationalArchivesGovUK">
5469  <target host="nationalarchives.gov.uk"/>
5470  <target host="www.nationalarchives.gov.uk"/>
5471
5472  <securecookie host="^(.+\.)?nationalarchives\.gov\.uk$" name=".*"/>
5473
5474  <rule from="^http://(www\.)?nationalarchives\.gov\.uk/" to="https://www.nationalarchives.gov.uk/"/>
5475</ruleset>
5476<ruleset name="NationalLottery">
5477  <target host="national-lottery.co.uk" />
5478  <target host="www.national-lottery.co.uk" />
5479
5480  <securecookie host="^(.+\.)?national-lottery\.co\.uk$" name=".*"/>
5481
5482  <rule from="^http://(www\.)?national-lottery\.co\.uk/" to="https://www.national-lottery.co.uk/"/>
5483</ruleset>
5484<ruleset name="Nattstad.se">
5485        <target host="nattstad.se" />
5486        <target host="www.nattstad.se" />
5487        <rule from="^http://www\.nattstad\.se/" to="https://www.nattstad.se/"/>
5488        <rule from="^http://nattstad\.se/" to="https://www.nattstad.se/"/>
5489</ruleset>
5490
5491<ruleset name="Naturvardsverket.se">
5492        <target host="naturvardsverket.se" />
5493        <target host="www.naturvardsverket.se" />
5494        <rule from="^http://www\.naturvardsverket\.se/" to="https://www.naturvardsverket.se/"/>
5495        <rule from="^http://naturvardsverket\.se/" to="https://naturvardsverket.se/"/>
5496</ruleset>
5497
5498<ruleset name="NL Overheid">
5499  <!-- Ruleset created by Jeroen van der Gun
5500
5501       This large ruleset secures a large amount of websites
5502       of governmental organizations in the Netherlands.
5503       Note that it only applies one, simple, general rule to them,
5504       so the sites might not be fully covered.
5505       Feel free to contact me for questions.
5506
5507       NOT included are:
5508       * Sites that use HTTPS automatically
5509       * Sites that redirect back to HTTP
5510       -->
5511
5512  <!-- Diversen -->
5513  <target host="digid.nl" /><target host="www.digid.nl" />
5514  <target host="overheid.nl" /><target host="www.overheid.nl" />
5515  <target host="internetconsultatie.nl" /><target host="www.internetconsultatie.nl" />
5516  <target host="werkenbijdeoverheid.nl" /><target host="www.werkenbijdeoverheid.nl" />
5517  <target host="nationaleombudsman.nl" /><target host="www.nationaleombudsman.nl" />
5518  <target host="govcert.nl" /><target host="www.govcert.nl" />
5519
5520  <!-- Politie -->
5521  <target host="politie.nl" /><target host="www.politie.nl" />
5522  <target host="depolitiezoekt.nl" /><target host="www.depolitiezoekt.nl" />
5523
5524  <!-- Ministeries -->
5525  <target host="minbzk.nl" /><target host="www.minbzk.nl" />
5526  <target host="waarschuwingsdienst.nl" /><target host="www.waarschuwingsdienst.nl" />
5527  <target host="bprbzk.nl" /><target host="www.bprbzk.nl" />
5528  <target host="minfin.nl" /><target host="www.minfin.nl" />
5529  <target host="domeinenrz.nl" /><target host="www.domeinenrz.nl" />
5530  <target host="justitie.nl" /><target host="www.justitie.nl" />
5531  <target host="cjib.nl" /><target host="www.cjib.nl" />
5532  <target host="wodc.nl" /><target host="www.wodc.nl" />
5533  <target host="forensischinstituut.nl" /><target host="www.forensischinstituut.nl" />
5534  <target host="hetlnvloket.nl" /><target host="www.hetlnvloket.nl" />
5535  <target host="donorregister.nl" /><target host="www.donorregister.nl" />
5536
5537  <!-- Provincies (alfabetisch) -->
5538  <target host="brabant.nl" /><target host="www.brabant.nl" />
5539  <target host="overijssel.nl" /><target host="www.overijssel.nl" />
5540  <target host="zeeland.nl" /><target host="www.zeeland.nl" />
5541
5542  <!-- Gemeenten (alfabetisch) -->
5543  <target host="aaenhunze.nl" /><target host="www.aaenhunze.nl" />
5544  <target host="amersfoort.nl" /><target host="www.amersfoort.nl" />
5545  <target host="amstelveen.nl" /><target host="www.amstelveen.nl" />
5546  <target host="amsterdam.nl" /><target host="www.amsterdam.nl" />
5547  <target host="bergenopzoom.nl" /><target host="www.bergenopzoom.nl" />
5548  <target host="gemeenteberkelland.nl" /><target host="www.gemeenteberkelland.nl" />
5549  <target host="gemeentebest.nl" /><target host="www.gemeentebest.nl" />
5550  <target host="boarnsterhim.nl" /><target host="www.boarnsterhim.nl" />
5551  <target host="borne.nl" /><target host="www.borne.nl" />
5552  <target host="coevorden.nl" /><target host="www.coevorden.nl" />
5553  <target host="doesburg.nl" /><target host="www.doesburg.nl" />
5554  <target host="duiven.nl" /><target host="www.duiven.nl" />
5555  <target host="elburg.nl" /><target host="www.elburg.nl" />
5556  <target host="geldermalsen.nl" /><target host="www.geldermalsen.nl" />
5557  <target host="haaksbergen.nl" /><target host="www.haaksbergen.nl" />
5558  <target host="haarlemmermeer.nl" /><target host="www.haarlemmermeer.nl" />
5559  <target host="heerenveen.nl" /><target host="www.heerenveen.nl" />
5560  <target host="s-hertogenbosch.nl" /><target host="www.s-hertogenbosch.nl" />
5561  <target host="heusden.nl" /><target host="www.heusden.nl" />
5562  <target host="hilversum.nl" /><target host="www.hilversum.nl" />
5563  <target host="hoorn.nl" /><target host="www.hoorn.nl" />
5564  <target host="horstaandemaas.nl" /><target host="www.horstaandemaas.nl" />
5565  <target host="houten.nl" /><target host="www.houten.nl" />
5566  <target host="huizen.nl" /><target host="www.huizen.nl" />
5567  <target host="lochem.nl" /><target host="www.lochem.nl" />
5568  <target host="maarssen.nl" /><target host="www.maarssen.nl" />
5569  <target host="maastricht.nl" /><target host="www.maastricht.nl" />
5570  <target host="meerssen.nl" /><target host="www.meerssen.nl" />
5571  <target host="middelburg.nl" /><target host="www.middelburg.nl" />
5572  <target host="middendrenthe.nl" /><target host="www.middendrenthe.nl" />
5573  <target host="moerdijk.nl" /><target host="www.moerdijk.nl" />
5574  <target host="gemeentenoordenveld.nl" /><target host="www.gemeentenoordenveld.nl" />
5575  <target host="noordwijkerhout.nl" /><target host="www.noordwijkerhout.nl" />
5576  <target host="oldebroek.nl" /><target host="www.oldebroek.nl" />
5577  <target host="opsterland.nl" /><target host="www.opsterland.nl" />
5578  <target host="oss.nl" /><target host="www.oss.nl" />
5579  <target host="pijnacker-nootdorp.nl" /><target host="www.pijnacker-nootdorp.nl" />
5580  <target host="renkum.nl" /><target host="www.renkum.nl" />
5581  <target host="rheden.nl" /><target host="www.rheden.nl" />
5582  <target host="rijswijk.nl" /><target host="www.rijswijk.nl" />
5583  <target host="schiedam.nl" /><target host="www.schiedam.nl" />
5584  <target host="schijndel.nl" /><target host="www.schijndel.nl" />
5585  <target host="sittard-geleen.nl" /><target host="www.sittard-geleen.nl" />
5586  <target host="smallingerland.nl" /><target host="www.smallingerland.nl" />
5587  <target host="stedebroec.nl" /><target host="www.stedebroec.nl" />
5588  <target host="steenwijkerland.nl" /><target host="www.steenwijkerland.nl" />
5589  <target host="terneuzen.nl" /><target host="www.terneuzen.nl" />
5590  <target host="teylingen.nl" /><target host="www.teylingen.nl" />
5591  <target host="tubbergen.nl" /><target host="www.tubbergen.nl" />
5592  <target host="uden.nl" /><target host="www.uden.nl" />
5593  <target host="utrecht.nl" /><target host="www.utrecht.nl" />
5594  <target host="vlagtwedde.nl" /><target host="www.vlagtwedde.nl" />
5595  <target host="vlissingen.nl" /><target host="www.vlissingen.nl" />
5596  <target host="wageningen.nl" /><target host="www.wageningen.nl" />
5597  <target host="weert.nl" /><target host="www.weert.nl" />
5598  <target host="gemeentewesterveld.nl" /><target host="www.gemeentewesterveld.nl" />
5599  <target host="gemeentewestland.nl" /><target host="www.gemeentewestland.nl" />
5600  <target host="wierden.nl" /><target host="www.wierden.nl" />
5601  <target host="wijchen.nl" /><target host="www.wijchen.nl" />
5602  <target host="winterswijk.nl" /><target host="www.winterswijk.nl" />
5603  <target host="zaltbommel.nl" /><target host="www.zaltbommel.nl" />
5604  <target host="zandvoort.nl" /><target host="www.zandvoort.nl" />
5605  <target host="zeist.nl" /><target host="www.zeist.nl" />
5606  <target host="zutphen.nl" /><target host="www.zutphen.nl" />
5607  <target host="zwijndrecht.nl" /><target host="www.zwijndrecht.nl" />
5608
5609  <!-- And, of course, The Rule -->
5610  <rule from="^http://(?:www\.)?([\w-]+)\.nl/" to="https://www.$1.nl/" />
5611</ruleset>
5612<ruleset name="Neelwafurat.com">
5613  <target host="neelwafurat.com" />
5614  <target host="www.neelwafurat.com" />
5615
5616  <rule from="^http://(www\.)?neelwafurat\.com/" to="https://$1neelwafurat.com/" />
5617</ruleset><ruleset name="Nelly.com">
5618  <target host="www.nelly.com" />
5619  <target host="nelly.com" />
5620  <rule from="^http://www\.nelly\.com/" to="https://nelly.com/"/>
5621  <rule from="^http://nelly\.com/" to="https://nelly.com/"/>
5622</ruleset>
5623
5624<ruleset name="net-security.org">
5625        <target host="www.net-security.org" />
5626        <target host="net-security.org" />
5627        <rule from="^http://www\.net-security\.org/" to="https://www.net-security.org/"/>
5628        <rule from="^http://net-security\.org/" to="https://net-security.org/"/>
5629</ruleset>
5630
5631<ruleset name="Netdoktor.se">
5632  <target host="www.netdoktor.se" />
5633  <target host="netdoktor.se" />
5634  <rule from="^http://www\.netdoktor\.se/" to="https://www.netdoktor.se/"/>
5635  <rule from="^http://netdoktor\.se/" to="https://www.netdoktor.se/"/>
5636</ruleset>
5637
5638<ruleset name="Netflix">
5639  <target host="netflix.com" />
5640  <target host="*.netflix.com" />
5641  <exclusion pattern="^http://blog.netflix.com/" />
5642  <exclusion pattern="^http://developer.netflix.com/" />
5643  <exclusion pattern="^http://ir.netflix.com/" />
5644  <exclusion pattern="^http://techblog.netflix.com/" />
5645
5646  <rule from="^http://([^/:@]*)\.netflix\.com/" to="https://$1.netflix.com/"/>
5647</ruleset>
5648<ruleset name="Nettica">
5649  <target host="nettica.com" />
5650  <target host="www.netteca.com" />
5651
5652  <rule from="^http://(www\.)?nettica\.com/" to="https://www.nettica.com/" />
5653</ruleset>
5654<ruleset name="NetworkWorld">
5655  <target host="networkworld.com"/>
5656  <target host="www.networkworld.com"/>
5657
5658  <securecookie host="^(.+\.)?networkworld\.com$" name=".*"/>
5659
5660  <rule from="^http://(www\.)networkworld\.com/" to="https://www.networkworld.com/"/>
5661</ruleset>
5662<ruleset name="Netzpolitik.org">
5663  <target host="netzpolitik.org" />
5664  <target host="www.netzpolitik.org" />
5665
5666        <rule from="^http://(www\.)?netzpolitik\.org/" to="https://netzpolitik.org/"/>
5667</ruleset>
5668<ruleset name="NewIT">
5669  <target host="newit.co.uk" />
5670  <target host="www.newit.co.uk" />
5671
5672  <securecookie host="^(.+\.)?newit\.co\.uk$" name=".*"/>
5673
5674  <rule from="^http://(www\.)?newit\.co\.uk/" to="https://newit.co.uk/"/>
5675</ruleset>
5676<ruleset name="NewsGator">
5677        <target host="newsgator.com" />
5678        <target host="www.newsgator.com" />
5679
5680        <rule from="^http://(www\.)?newsgator\.com/" to="https://www.newsgator.com/" />
5681</ruleset><!-- www.polls.newsvine.com uses akamai -->
5682<!-- i.newsvine.com lacks ssl. -->
5683<ruleset name="newsvine.com">
5684        <target host="newsvine.com" />
5685        <rule from="^http://newsvine\.com/" to="https://www.newsvine.com/"/>
5686        <rule from="^http://www\.newsvine\.com/" to="https://www.newsvine.com/"/>
5687</ruleset>
5688
5689<ruleset name="Next">
5690  <target host="next.co.uk" />
5691  <target host="www.next.co.uk" />
5692
5693  <securecookie host="^(.+\.)?next\.co\.uk$" name=".*"/>
5694
5695  <rule from="^http://(www\.)?next\.co\.uk/" to="https://www.next.co.uk/"/>
5696</ruleset>
5697<ruleset name="NextBus">
5698        <target host="nextbus.com" />
5699        <target host="www.nextbus.com" />
5700        <rule from="^http://(www\.)?nextbus\.com/"
5701                to="https://www.nextbus.com/" />
5702</ruleset>
5703<ruleset name="Nicotine Anonymous">
5704        <target host="nicotine-anonymous.org" />
5705        <target host="www.nicotine-anonymous.org" />
5706
5707        <rule from="^http://(www\.)?nicotine-anonymous\.org/" to="https://nicotine-anonymous.org/" />
5708
5709        <!-- Invoking https://www.nicotine-anonymous.org/ produces a
5710        certificate error, so redirect https://www.nicotine-anonymous.org/
5711        to https://nicotine-anonymous.org/ -->
5712        <rule from="^https://www\.nicotine-anonymous\.org/" to="https://nicotine-anonymous.org/" />
5713</ruleset><ruleset name="Ninite">
5714  <target host="ninite.com" />
5715  <target host="www.ninite.com" />
5716
5717  <securecookie host="^(.+\.)?ninite\.com$" name=".*"/>
5718
5719  <rule from="^http://(www\.)?ninite\.com/" to="https://ninite.com/"/>
5720</ruleset><ruleset name="Nintendo.com">
5721        <target host="nintendo.com" />
5722        <target host="www.nintendo.com" />
5723        <rule from="^http://nintendo\.com/" to="https://nintendo.com/"/>
5724        <rule from="^http://www\.nintendo\.com/" to="https://www.nintendo.com/"/>
5725</ruleset>
5726
5727<ruleset name="Noisebridge">
5728  <target host="www.noisebridge.net" />
5729  <target host="noisebridge.net" />
5730
5731  <rule from="^http://(www\.)?noisebridge\.net/" to="https://www.noisebridge.net/"/>
5732</ruleset>
5733<ruleset name="Nokia">
5734  <target host="nokia.com" />
5735  <target host="www.nokia.com" />
5736  <target host="nokiausa.com" />
5737  <target host="www.nokiausa.com" />
5738  <target host="nokia.co.uk" />
5739  <target host="www.nokia.co.uk" />
5740  <target host="nokia.ca" />
5741  <target host="www.nokia.ca" />
5742  <target host="nokia.fr" />
5743  <target host="www.nokia.fr" />
5744  <target host="nokia.de" />
5745  <target host="www.nokia.de" />
5746  <target host="qt.nokia.com" />
5747
5748  <rule from="^http://(www\.)?nokia\.com/" to="https://www.nokia.com/"/>
5749  <rule from="^http://(www\.)?nokiausa\.com/" to="https://www.nokiausa.com/"/>
5750  <rule from="^http://(www\.)?nokia\.co\.uk/" to="https://www.nokia.co.uk/"/>
5751  <rule from="^http://(www\.)?nokia\.ca/" to="https://www.nokia.ca/"/>
5752  <rule from="^http://(www\.)?nokia\.fr/" to="https://www.nokia.fr/"/>
5753  <rule from="^http://(www\.)?nokia\.de/" to="https://www.nokia.de/"/>
5754  <rule from="^http://qt\.nokia\.com/" to="https://qt.nokia.com/"/>
5755</ruleset>
5756<ruleset name="Nordea">
5757  <target host="www.nordea.*" />
5758  <target host="nordea.*" />
5759
5760  <!-- .lt: bad cert, .lu: no SSL -->
5761  <rule from="^http://(www\.)?nordea\.(com|dk|ee|fi|lv|no|se)/"
5762          to="https://www.nordea.$2/"/>
5763</ruleset>
5764<!-- already enforces SSL. adding to prevent ssl strip attacks -->
5765<ruleset name="Nordnet.se">
5766  <target host="www.nordnet.se" />
5767  <target host="nordnet.se" />
5768  <rule from="^http://www\.nordnet\.se/" to="https://www.nordnet.se/"/>
5769  <rule from="^http://nordnet\.se/" to="https://www.nordnet.se/"/>
5770</ruleset>
5771
5772<ruleset name="Nordu.net">
5773        <target host="nordu.net" />
5774        <target host="www.nordu.net" />
5775        <rule from="^http://www\.nordu\.net/" to="https://www.nordu.net/"/>
5776        <rule from="^http://nordu\.net/" to="https://www.nordu.net/"/>
5777</ruleset>
5778
5779<ruleset name="Norman.com">
5780        <target host="norman.com" />
5781        <target host="www.norman.com" />
5782        <rule from="^http://www\.norman\.com/" to="https://www.norman.com/"/>
5783        <rule from="^http://norman\.com/" to="https://norman.com/"/>
5784</ruleset>
5785
5786<ruleset name="Norwegian.com">
5787  <target host="www.norwegian.com" />
5788  <target host="norwegian.com" />
5789  <rule from="^http://www\.norwegian\.com/" to="https://www.norwegian.com/"/>
5790  <rule from="^http://norwegian\.com/" to="https://www.norwegian.com/"/>
5791</ruleset>
5792
5793<ruleset name="NottinghamAC">
5794  <target host="nottingham.ac.uk" />
5795  <target host="www.nottingham.ac.uk" />
5796  <target host="jobs.nottingham.ac.uk" />
5797  <target host="email.nottingham.ac.uk" />
5798  <target host="owa.nottingham.ac.uk" />
5799
5800  <rule from="^http://((www|jobs|email|owa|jobs)\.)?nottingham\.ac\.uk/" to="https://$1nottingham.ac.uk/"/>
5801</ruleset>
5802<ruleset name="NutriCentre">
5803  <target host="nutricentre.com" />
5804  <target host="www.nutricentre.com" />
5805
5806  <securecookie host="^(.*\.)?nutricentre\.com$" name=".*" />
5807
5808  <rule from="^http://(www\.)?nutricentre\.com/" to="https://www.nutricentre.com/"/>
5809</ruleset><ruleset name="O2online.de">
5810  <target host="o2online.de"/>
5811  <target host="*.o2online.de"/>
5812
5813  <securecookie host="^(.*\.)?o2online\.de$" name=".*" />
5814
5815  <rule from="^http://(www\.)?o2online\.de/" to="https://www.o2online.de/"/>
5816  <rule from="^http://o2online\.de/" to="https://www.o2online.de/"/>
5817</ruleset>
5818<ruleset name="OKCupid.com" default_off="Broken">
5819  <target host="okcupid.com" />
5820  <target host="www.okcupid.com" />
5821
5822  <rule from="^http://(www\.)?okcupid\.com/" to="https://www.okcupid.com/" />
5823</ruleset>
5824<ruleset name="US OSHA.gov">
5825        <target host="osha.gov" />
5826        <target host="www.osha.gov" />
5827
5828        <rule from="^http://(www\.)?osha\.gov/" to="https://www.osha.gov/" />
5829
5830        <!-- Invoking https://osha.gov/ produces a certificate error, so
5831        redirect https://osha.gov/ to https://www.osha.gov/ -->
5832        <rule from="^https://osha\.gov/" to="https://www.osha.gov/" />
5833</ruleset><!-- officersforbundet is a swedish labour union -->
5834<ruleset name="Officersforbundet.se">
5835        <target host="officersforbundet.se" />
5836        <target host="www.officersforbundet.se" />
5837        <rule from="^http://officersforbundet\.se/" to="https://www.officersforbundet.se/"/>
5838        <rule from="^http://www\.officersforbundet\.se/" to="https://www.officersforbundet.se/"/>
5839</ruleset>
5840
5841<ruleset name="Olark">
5842  <target host="olark.com" />
5843  <target host="*.olark.com" />
5844
5845  <securecookie host="^(.+\.)?olark\.com$" name=".*"/>
5846
5847  <rule from="^http://(www\.)?olark\.com/" to="https://www.olark.com/" />
5848  <rule from="^http://(assets|static|[0-9]+-async|)\.olark\.com/" to="https://$1.olark.com/" />
5849</ruleset>
5850<ruleset name="OmniGroup.com">
5851        <target host="omnigroup.com" />
5852        <target host="www.omnigroup.com" />
5853        <rule from="^http://omnigroup\.com/" to="https://www.omnigroup.com/"/>
5854        <rule from="^http://www\.omnigroup\.com/" to="https://www.omnigroup.com/"/>
5855</ruleset>
5856
5857<ruleset name="Omron.com">
5858  <target host="www.omron.com" />
5859  <target host="omron.com" />
5860
5861  <rule from="^http://(www\.)?omron\.com/" to="https://www.omron.com/"/>
5862</ruleset>
5863<ruleset name="one.com">
5864  <target host="one.com" />
5865  <rule from="^http://one\.com/" to="https://www.one.com/"/>
5866  <rule from="^http://www\.one\.com/" to="https://www.one.com/"/>
5867</ruleset>
5868
5869<ruleset name="Onehub.com">
5870  <target host="onehub.com" />
5871  <target host="www.onehub.com" />
5872
5873  <rule from="^http://(www\.)?onehub\.com/" to="https://onehub.com/"/>
5874</ruleset>
5875<ruleset name="Online.nl">
5876  <target host="*.online.nl" />
5877
5878  <rule from="^http://(www\.)?online\.nl/" to="https://www.online.nl/"/>
5879  <rule from="^http://registratie\.online\.nl/" to="https://registratie.online.nl/"/>
5880</ruleset>
5881<ruleset name="Ontario Lung Association">
5882        <target host="on.lung.ca" />
5883        <target host="www.on.lung.ca" />
5884
5885        <rule from="^http://(www\.)?on\.lung\.ca/" to="https://www.on.lung.ca/" />
5886
5887        <!-- Invoking https://on.lung.ca/ produces a certificate error, so
5888        redirect https://on.lung.ca/ to https://www.on.lung.ca/ -->
5889        <rule from="^https://on\.lung\.ca/" to="https://www.on.lung.ca/" />
5890</ruleset><ruleset name="OomphMe" default_off="Cert warning">
5891  <target host="www.oomphme.com" />
5892  <target host="oomphme.com" />
5893
5894  <rule from="^http://(www\.)?oomphme\.com/" to="https://www.oomphme.com/"/>
5895</ruleset>
5896<ruleset name="Open-Mesh">
5897  <target host="open-mesh.com" />
5898  <target host="www.open-mesh.com" />
5899  <target host="dashboard.open-mesh.com" />
5900
5901  <rule from="^http://(www\.)?open-mesh\.com/" to="https://www.open-mesh.com/"/>
5902  <rule from="^http://dashboard\.open-mesh\.com/" to="https://dashboard.open-mesh.com/"/>
5903</ruleset>
5904<ruleset name="OpenDNS">
5905  <target host="opendns.com" />
5906  <target host="*.opendns.com" />
5907
5908  <!-- https://trac.torproject.org/projects/tor/ticket/3734 -->
5909  <exclusion pattern="^http://screenshots\.opendns\.com/" />
5910<!-- more breakage reported by OpenDNS users -->
5911  <exclusion pattern="^http://phish\.opendns\.com/" />
5912  <exclusion pattern="^http://block\.opendns\.com/" />
5913  <exclusion pattern="^http://guide\.opendns\.com/" />
5914         
5915
5916  <rule from="^http://(www\.)?opendns\.com/" to="https://www.opendns.com/"/>
5917  <rule from="^http://([^/:@]*)\.opendns\.com/" to="https://$1.opendns.com/"/>
5918</ruleset>
5919<ruleset name="OpenID">
5920  <target host="openid.net" />
5921  <target host="www.openid.net" />
5922
5923  <rule from="^http://(www\.)?openid\.net/" to="https://openid.net/"/>
5924</ruleset>
5925<ruleset name="OpenLeaks">
5926  <target host="openleaks.org" />
5927  <target host="www.openleaks.org" />
5928
5929  <rule from="^http://(www\.)?openleaks\.org/" to="https://$1openleaks.org/"/>
5930</ruleset>
5931<ruleset name="OpenSSL" default_off="different content between HTTP and HTTPS">
5932  <target host="openssl.org" />
5933  <target host="www.openssl.org" />
5934
5935  <rule from="^http://(www\.)?openssl\.org/" to="https://www.openssl.org/"/>
5936</ruleset>
5937
5938<ruleset name="OpenStreetMap Wiki">
5939  <target host="wiki.openstreetmap.org" />
5940
5941        <rule from="^http://wiki\.openstreetmap\.org/" to="https://wiki.openstreetmap.org/"/>
5942</ruleset>
5943<ruleset name="The Open University (buggy)" default_off="https://eff.org/r.5E5">
5944<!--
5945        The OU has myriads of domains, most of which do not support https.
5946        Specifically, it appears that all department and faculty websites
5947        do not support it.
5948
5949        However this ruleset does cover the general website, the prospectuses
5950        (undergraduate, graduate and research), StudentHome, TutorHome,
5951        OpenLearn/LearningSpace, LabSpace, and the OU Alumni website.
5952
5953        Notable exceptions: www2.open.ac.uk, www8.open.ac.uk, library.open.ac.uk,
5954                            voyager.open.ac.uk, discuss2.open.ac.uk, www.open2.net
5955
5956        Unknown: intranet.open.ac.uk, intranet-gw.open.ac.uk
5957
5958        This ruleset does not include mail.google.com as that is already covered
5959        by the GoogleServices ruleset.
5960-->
5961  <target host="css2.open.ac.uk" />
5962  <target host="labspace.open.ac.uk" />
5963  <target host="learn.open.ac.uk" />
5964  <target host="msds.open.ac.uk" />
5965  <target host="openlearn.open.ac.uk" />
5966  <target host="www.open.ac.uk" />
5967  <target host="www3.open.ac.uk" />
5968
5969<!--    The OU forwards www.openuniversity.ac.uk to www.open.ac.uk,
5970        but www.openuniversity.ac.uk does not support https. So we rewrite
5971        http://www.openuniversity.ac.uk directly to https://www.open.ac.uk
5972-->
5973  <target host="www.openuniversity.ac.uk" />
5974
5975<!--
5976        The OU Worldwide offers lots of OU module materials
5977-->
5978  <target host="www.ouw.co.uk" />
5979
5980<!--
5981        The OU Students Association, and their webshop
5982-->
5983  <target host="www.ousa.org.uk" />
5984  <target host="rsm2.rsmsecure.com" />
5985
5986  <rule from="^http://([^@:/]+)\.open\.ac\.uk/" to="https://$1.open.ac.uk/"/>
5987  <rule from="^http://www\.openuniversity\.ac\.uk/" to="https://www.open.ac.uk/"/>
5988  <rule from="^http://www\.ouw\.co\.uk/" to="https://www.ouw.co.uk/"/>
5989  <rule from="^http://rsm2\.rsmsecure\.com/ousacart/webstore/" to="https://rsm2.rsmsecure.com/ousacart/webstore/"/>
5990  <rule from="^http://www\.ousa\.org\.uk/" to="https://www.ousa.org.uk/"/>
5991</ruleset>
5992<ruleset name="OpenVPN">
5993  <target host="openvpn.net" />
5994  <target host="www.openvpn.net" />
5995
5996  <securecookie host="^(www\.)?openvpn\.net$" name=".*"/>
5997
5998  <rule from="^http://(www\.)?openvpn\.net/" to="https://www.openvpn.net/"/>
5999</ruleset>
6000<ruleset name="Opera" default_off="very buggy">
6001  <target host="opera.com" />
6002  <target host="*.opera.com" />
6003  <target host="myopera.com" />
6004  <target host="*.myopera.com" />
6005
6006  <rule from="^http://opera\.com/" to="https://opera.com/" />
6007  <rule from="^http://([^/:@]*)\.opera\.com/" to="https://$1.opera.com/" />
6008  <rule from="^http://myopera\.com/" to="https://myopera.com/" />
6009  <rule from="^http://([^/:@]*)\.myopera\.com/" to="https://$1.myopera.com/" />
6010</ruleset><!-- Although shop.orange.co.uk supports ssl but on some page it keeps
6011falling back to http -->
6012
6013<ruleset name="Orange">
6014  <target host="orange.co.uk" />
6015  <target host="www.orange.co.uk" />
6016  <target host="www.orange.co.il" />
6017  <target host="orange.co.il" />
6018
6019  <rule from="^http://(www\.)?orange\.co\.uk/" to="https://www.orange.co.uk/"/>
6020  <rule from="^http://(www\.)?orange\.co\.il/" to="https://www.orange.co.il/"/>
6021</ruleset>
6022<ruleset name="OverClockers">
6023  <target host="overclockers.co.uk" />
6024  <target host="www.overclockers.co.uk" />
6025
6026  <rule from="^http://(www\.)?overclockers\.co\.uk/" to="https://www.overclockers.co.uk/"/>
6027</ruleset>
6028<ruleset name="OVH">
6029  <target host="ovh.com"/>
6030  <target host="www.ovh.com"/>
6031  <target host="ovh.co.uk"/>
6032  <target host="www.ovh.co.uk"/>
6033  <target host="ovh.de"/>
6034  <target host="www.ovh.de"/>
6035
6036  <securecookie host="^(.*\.)?ovh.com$" name=".*" />
6037  <securecookie host="^(.*\.)?ovh.co.uk$" name=".*" />
6038  <securecookie host="^(.*\.)?ovh.de$" name=".*" />
6039
6040  <rule from="^http://(www\.)?ovh\.com/" to="https://www.ovh.com/"/>
6041  <rule from="^http://(www\.)?ovh\.co\.uk/" to="https://www.ovh.co.uk/"/>
6042  <rule from="^http://(www\.)?ovh\.de/" to="https://www.ovh.de/"/>
6043</ruleset>
6044<ruleset name="Oxfam Unwrapped">
6045  <target host="oxfamirelandunwrapped.com" />
6046  <target host="www.oxfamirelandunwrapped.com" />
6047  <target host="netbel.oxfamireland.org" />
6048
6049  <!-- Republic Of Ireland -->
6050  <rule from="^http://(www\.)?oxfamirelandunwrapped\.com/" to="https://www.oxfamirelandunwrapped.com/"/>
6051  <!-- Northern Ireland -->
6052  <rule from="^http://netbel\.oxfamireland\.org/" to="https://netbel.oxfamireland.org/"/>
6053</ruleset>
6054<ruleset name="OzBargain">
6055  <target host="ozbargain.com.au" />
6056  <target host="www.ozbargain.com.au" />
6057
6058  <rule from="^(http|https)://(www\.)?ozbargain\.com\.au/" to="https://www.ozbargain.com.au/"/>
6059</ruleset>
6060<ruleset name="PBA Galleries">
6061  <target host="pbagalleries.com" />
6062  <target host="www.pbagalleries.com" />
6063
6064  <rule from="^http://(www\.)?pbagalleries\.com/" to="https://www.pbagalleries.com/" />
6065</ruleset><ruleset name="PCCaseGear">
6066  <target host="pccasegear.com" />
6067  <target host="www.pccasegear.com" />
6068  <target host="pccasegear.com.au" />
6069  <target host="www.pccasegear.com.au" />
6070
6071  <rule from="^(http|https)://(www\.)?pccasegear\.(com|com\.au)/" to="https://www.pccasegear.com/"/>
6072</ruleset>
6073<ruleset name="PC World">
6074  <target host="www.pcworld.com" />
6075
6076  <rule from="^http://www\.pcworld\.com/" to="https://www.pcworld.com/"/>
6077
6078</ruleset>
6079<ruleset name="PGP">
6080  <target host="pgp.com" />
6081  <target host="www.pgp.com" />
6082  <target host="sstats.pgp.com" />
6083  <target host="*.store.pgp.com" />
6084
6085  <rule from="^http://(www\.)?pgp\.com/" to="https://www.pgp.com/"/>
6086  <rule from="^http://(sstats)\.pgp\.com/" to="https://$1.pgp.com/"/>
6087  <rule from="^http://([^/:@]+)\.store\.pgp\.com/" to="https://$1.store.pgp.com/"/>
6088</ruleset>
6089<ruleset name="prq.se">
6090        <target host="webmail.prq.se" />
6091        <target host="kundcenter.prq.se" />
6092        <rule from="^http://webmail\.prq\.se/" to="https://webmail.prq.se/"/>
6093        <rule from="^http://kundcenter\.prq\.se/" to="https://kundcenter.prq.se/"/>
6094</ruleset>
6095
6096<ruleset name="PRV.se">
6097        <target host="prv.se" />
6098        <target host="www.prv.se" />
6099        <rule from="^http://www\.prv\.se/" to="https://www.prv.se/"/>
6100        <rule from="^http://prv\.se/" to="https://www.prv.se/"/>
6101</ruleset>
6102
6103<ruleset name="PageKite">
6104  <target host="www.pagekite.net" />
6105  <target host="pagekite.net" />
6106
6107  <rule from="^http://(www\.)?pagekite\.net/" to="https://pagekite.net/"/>
6108</ruleset>
6109
6110<ruleset name="Panasonic.com">
6111  <target host="www.panasonic.com" />
6112  <target host="www2.panasonic.com" />
6113  <target host="panasonic.com" />
6114
6115  <rule from="^http://(www\.)?panasonic\.com/" to="https://www.panasonic.com/"/>
6116  <rule from="^http://www2\.panasonic\.com/" to="https://www2.panasonic.com/"/>
6117</ruleset>
6118<ruleset name="Pandora">
6119  <target host="pandora.com" />
6120  <target host="www.pandora.com" />
6121
6122  <rule from="^http://(www\.)?pandora\.com/" to="https://www.pandora.com/"/>
6123</ruleset>
6124<ruleset name="partypoker">
6125        <target host="partypoker.com" />
6126        <target host="*.partypoker.com" />
6127        <target host="p.iivt.com" />
6128        <rule from="^http://partypoker\.com/" to="https://www.partypoker.com/"/>
6129        <rule from="^http://www\.partypoker\.com/" to="https://www.partypoker.com/"/>
6130        <rule from="^http://p\.iivt\.com/" to="https://p.iivt.com/"/>
6131</ruleset>
6132
6133<ruleset name="PassThePopcorn">
6134  <target host="passthepopcorn.me" />
6135
6136  <rule from="^http://passthepopcorn\.me/" to="https://passthepopcorn.me/"/>
6137</ruleset>
6138<ruleset name="PasswordCard">
6139  <target host="passwordcard.org" />
6140  <target host="www.passwordcard.org" />
6141
6142  <rule from="^http://(www\.)?passwordcard\.org/" to="https://www.passwordcard.org/"/>
6143</ruleset>
6144<!-- Site may be down entirely now. -->
6145<ruleset name="Pastebin.ca">
6146  <target host="pastebin.ca" />
6147  <target host="www.pastebin.ca" />
6148
6149  <rule from="^http://(www\.)?pastebin\.ca/" to="https://pastebin.ca/"/>
6150</ruleset>
6151
6152<ruleset name="Pastebin.com" default_off="No public HTTPS support">
6153  <target host="pastebin.com" />
6154  <target host="www.pastebin.com" />
6155
6156  <rule from="^http://(www\.)?pastebin\.com/" to="https://pastebin.com/"/>
6157</ruleset>
6158
6159<ruleset name="Pastee.org">
6160  <target host="pastee.org" />
6161  <target host="www.pastee.org" />
6162
6163  <rule from="^http://(www\.)?pastee\.org/" to="https://pastee.org/" />
6164</ruleset>
6165<ruleset name="PayPal">
6166  <target host="www.paypal.com" />
6167  <target host="paypal.com" />
6168
6169  <rule from="^http://(www\.)?paypal\.com/" to="https://www.paypal.com/"/>
6170</ruleset>
6171<!-- Should this really always go to www8?  Some other numbers work too. -->
6172
6173<ruleset name="PearsonVue">
6174  <target host="vue.com" />
6175  <target host="www.vue.com" />
6176  <target host="pearsonvue.com" />
6177  <target host="www.pearsonvue.com" />
6178
6179  <rule from="^http://(www\.)?vue\.com/" to="https://www8.pearsonvue.com/"/>
6180  <rule from="^http://(www\.)?pearsonvue\.com/" to="https://www8.pearsonvue.com/"/>
6181</ruleset>
6182<ruleset name="Regional Municipality of Peel, Canada">
6183        <target host="peelregion.ca" />
6184        <target host="www.peelregion.ca" />
6185
6186        <rule from="^http://(www\.)?peelregion\.ca/" to="https://www.peelregion.ca/" />
6187
6188        <!-- Invoking https://peelregion.ca/ produces a certificate error, so redirect
6189        https://peelregion.ca/ to https://www.peelregion.ca/ -->
6190        <rule from="^https://peelregion\.ca/" to="https://www.peelregion.ca/" />
6191</ruleset><ruleset name="PensionsMyndigheten.se">
6192        <target host="pensionsmyndigheten.se" />
6193        <target host="www.pensionsmyndigheten.se" />
6194        <rule from="^http://www\.pensionsmyndigheten\.se/" to="https://secure.pensionsmyndigheten.se/"/>
6195        <rule from="^http://pensionsmyndigheten\.se/" to="https://secure.pensionsmyndigheten.se/"/>
6196</ruleset>
6197
6198<ruleset name="PhishTank">
6199
6200<target host="phishtank.com" />
6201<target host="www.phishtank.com" />
6202<target host="data.phishtank.com" />
6203   
6204<rule from="^http://(www\.)?phishtank\.com/" to="https://www.phishtank.com/"/>
6205<rule from="^http://(www\.)?data\.phishtank\.com/" to="https://data.phishtank.com/"/>
6206</ruleset><!-- This should probably be merged into the general Google Services rule. -->
6207
6208<ruleset name="Picasa Web Albums">
6209  <target host="picasaweb.google.com"/>
6210  <rule from="^http://picasaweb\.google\.com/"
6211        to="https://picasaweb.google.com/"/>
6212</ruleset>
6213<ruleset name="Picplz">
6214        <target host="picplz.com" />
6215        <target host="www.picplz.com" />
6216       
6217        <securecookie host="^(.+\.)?picplz\.com$" name=".*"/>
6218       
6219        <rule from="^http://(www\.)?picplz\.com/" to="https://picplz.com/"/>
6220</ruleset>
6221<ruleset name="Ping.fm">
6222  <target host="ping.fm" />
6223  <target host="www.ping.fm" />
6224
6225    <rule from="^http://(www\.)?ping\.fm/" to="https://ping.fm/"/>
6226</ruleset>
6227
6228<ruleset name="Pipex">
6229  <target host="pipex.co.uk" />
6230  <target host="www.pipex.co.uk" />
6231
6232  <rule from="^http://(www\.)?pipex\.co\.uk/" to="https://www.pipex.co.uk/"/>
6233</ruleset>
6234<ruleset name="ThePirateBay">
6235  <target host="thepiratebay.org" />
6236  <target host="www.thepiratebay.org" />
6237  <target host="rss.thepiratebay.org" />
6238  <target host="static.thepiratebay.org" />
6239  <target host="torrents.thepiratebay.org" />
6240
6241  <rule from="^http://(rss|static|torrents)\.thepiratebay\.org/" to="https://$1.thepiratebay.org/"/>
6242  <rule from="^(http|https)://(www\.)?thepiratebay\.org/" to="https://thepiratebay.org/"/>
6243</ruleset>
6244<ruleset name="PirateParty">
6245  <target host="partidopirata.es" />
6246  <target host="www.partidopirata.es" />
6247  <target host="pirateparty.ca" />
6248  <target host="www.pirateparty.ca" />
6249  <target host="pirateparty.org.au" />
6250  <target host="www.pirateparty.org.au" />
6251  <target host="pirateparty.org.uk" />
6252  <target host="www.pirateparty.org.uk" />
6253  <target host="piraattipuolue.fi" />
6254  <target host="www.piraattipuolue.fi" />
6255  <target host="piratenpartei.de"/>
6256  <target host="www.piratenpartei.de"/>
6257  <target host="wiki.piratenpartei.de"/>
6258
6259  <rule from="^http://(www\.)?partidopirata\.es/" to="https://www.partidopirata.es/"/>
6260  <rule from="^http://(www\.)?pirateparty\.(ca|org\.(au|uk))/" to="https://www.pirateparty.$2/"/>
6261  <rule from="^http://(www\.)?piraattipuolue\.fi/" to="https://www.piraattipuolue.fi/"/>
6262  <rule from="^http://(www\.)?piratenpartei\.de/" to="https://www.piratenpartei.de/"/>
6263  <rule from="^http://wiki\.piratenpartei\.de/" to="https://wiki.piratenpartei.de/"/>
6264</ruleset>
6265<ruleset name="Piscatus.se">
6266        <target host="piscatus.se" />
6267        <target host="www.piscatus.se" />
6268        <rule from="^http://www\.piscatus\.se/" to="https://www.piscatus.se/"/>
6269        <rule from="^http://piscatus\.se/" to="https://piscatus.se/"/>
6270</ruleset>
6271
6272<ruleset name="Pivotal Tracker">
6273  <target host="pivotaltracker.com" />
6274  <target host="www.pivotaltracker.com" />
6275
6276  <rule from="^http://(www\.)?pivotaltracker\.com/" to="https://www.pivotaltracker.com/" />
6277</ruleset>
6278<ruleset name="Pizzahut UK">
6279  <target host="pizzahut.co.uk" />
6280  <target host="www.pizzahut.co.uk" />
6281  <target host="delivery.pizzahut.co.uk" />
6282
6283  <rule from="^http://(www\.)?pizzahut\.co\.uk/" to="https://www.pizzahut.co.uk/"/>
6284  <rule from="^http://(delivery)\.pizzahut\.co\.uk/" to="https://$1.pizzahut.co.uk/"/>
6285</ruleset>
6286<ruleset name="PlanetRomeo">
6287  <target host="www.planetromeo.com" />
6288  <target host="planetromeo.com" />
6289  <target host="www.gayromeo.com" />
6290  <target host="gayromeo.com" />
6291
6292  <rule from="^http://(www\.)?planetromeo\.com/" to="https://www.planetromeo.com/"/>
6293  <rule from="^http://(www\.)?gayromeo\.com/" to="https://www.gayromeo.com/"/>
6294</ruleset>
6295<ruleset name="Playboy">
6296  <target host="playboy.com" />
6297  <target host="www.playboy.com" />
6298
6299  <rule from="^http://(www\.)?playboy\.com/" to="https://www.playboy.com/"/>
6300</ruleset>
6301<ruleset name="Pledgie">
6302  <target host="pledgie.com" />
6303  <target host="www.pledgie.com" />
6304
6305  <rule from="^http://(www\.)?pledgie\.com/"
6306          to="https://pledgie.com/"/>
6307</ruleset><ruleset name="PlentyOfFish">
6308  <target host="plentyoffish.com" />
6309  <target host="www.plentyoffish.com" />
6310
6311  <rule from="^https?://(www\.)?plentyoffish\.com/" to="https://www.plentyoffish.com/"/>
6312</ruleset>
6313<ruleset name="Pliktverket.se">
6314        <target host="pliktverket.se" />
6315        <target host="www.pliktverket.se" />
6316        <rule from="^http://www\.pliktverket\.se/" to="https://www.pliktverket.se/"/>
6317        <rule from="^http://pliktverket\.se/" to="https://pliktverket.se/"/>
6318</ruleset>
6319
6320<ruleset name="Plone.org">
6321        <target host="plone.org" />
6322        <target host="www.plone.org" />
6323        <!-- products does not display over https. returns error 500. -->
6324        <exclusion pattern="^http://(www\.)?plone\.org/products"/>
6325        <rule from="^http://www\.plone\.org/" to="https://www.plone.org/"/>
6326        <rule from="^http://plone\.org/" to="https://plone.org/"/>
6327</ruleset>
6328
6329<ruleset name="Plus.net">
6330  <target host="plus.net" />
6331  <target host="www.plus.net" />
6332  <target host="portal.plus.net" />
6333  <target host="webmail.plus.net" />
6334  <target host="community.plus.net" />
6335
6336  <securecookie host="^(.+\.)?plus\.net$" name=".*"/>
6337
6338  <rule from="^http://(www\.)?plus\.net/" to="https://www.plus.net/"/>
6339  <rule from="^http://(portal|webmail|community)\.plus\.net/" to="https://$1.plus.net/"/>
6340</ruleset>
6341
6342<ruleset name="Plusgirot.se">
6343        <target host="plusgirot.se" />
6344        <target host="www.plusgirot.se" />
6345        <rule from="^http://www\.plusgirot\.se/" to="https://www.plusgirot.se/"/>
6346        <rule from="^http://plusgirot\.se/" to="https://www.plusgirot.se/"/>
6347</ruleset>
6348
6349<!-- only enterprice.podomatic.com seems to have ssl :( -->
6350<ruleset name="PodOmatic.com">
6351        <target host="enterprise.podomatic.com" />
6352        <rule from="^http://enterprise\.podomatic\.com/" to="https://enterprise.podomatic.com/"/>
6353</ruleset>
6354
6355<ruleset name="Pogo">
6356  <target host="pogo.com" />
6357  <target host="www.pogo.com" />
6358  <target host="help.pogo.com" />
6359
6360  <rule from="^http://(www\.)?pogo\.com/" to="https://www.pogo.com/"/>
6361  <rule from="^http://help\.pogo\.com/" to="https://help.pogo.com/"/>
6362</ruleset>
6363<!-- polarnopyret.se sells clothes for small children. -->
6364<ruleset name="PolarnoPyret.se">
6365        <target host="polarnopyret.se" />
6366        <target host="www.polarnopyret.se" />
6367        <rule from="^http://www\.polarnopyret\.se/" to="https://www.polarnopyret.se/"/>
6368        <rule from="^http://polarnopyret\.se/" to="https://www.polarnopyret.se/"/>
6369</ruleset>
6370
6371<ruleset name="Policia.es" default_off="Cert warning">
6372  <target host="policia.es" />
6373  <target host="www.policia.es" />
6374
6375  <rule from="^http://(www\.)?policia\.es/" to="https://www.policia.es/" />
6376</ruleset>
6377<!-- polisforbundet is a swedish labour union -->
6378<ruleset name="Polisforbundet.se">
6379        <target host="polisforbundet.se" />
6380        <target host="www.polisforbundet.se" />
6381        <rule from="^http://polisforbundet\.se/" to="https://www.polisforbundet.se/"/>
6382        <rule from="^http://www\.polisforbundet\.se/" to="https://www.polisforbundet.se/"/>
6383</ruleset>
6384
6385<ruleset name="politisktinkorrekt.info">
6386  <target host="politisktinkorrekt.info" />
6387  <rule from="^http://politisktinkorrekt\.info/" to="https://politisktinkorrekt.info/"/>
6388  <rule from="^http://www\.politisktinkorrekt\.info/" to="https://politisktinkorrekt.info/"/>
6389</ruleset>
6390
6391<ruleset name="Polldaddy">
6392  <target host="polldaddy.com" />
6393  <target host="www.polldaddy.com" />
6394  <target host="i0.poll.fm" />
6395
6396  <exclusion pattern="^http://i\.polldaddy\.com/"/>
6397  <rule from="^http://(?:www\.)?polldaddy\.com/"
6398          to="https://polldaddy.com/"/>
6399  <rule from="^http://i0\.poll\.fm/"
6400          to="https://polldaddy.com/"/>
6401</ruleset>
6402<ruleset name="Post.ch">
6403        <target host="post.ch" />
6404        <target host="www.post.ch" />
6405        <target host="posta.ch" />
6406        <target host="www.posta.ch" />
6407        <target host="poste.ch" />
6408        <target host="www.poste.ch" />
6409        <target host="swisspost.com" />
6410        <target host="www.swisspost.com" />
6411        <target host="tntswisspost.com" />
6412        <target host="www.tntswisspost.com" />
6413        <target host="swisspost.ch" />
6414        <target host="www.swisspost.ch" />
6415        <target host="swisspost-gls.ch" />
6416        <target host="www.swisspost-gls.ch" />
6417        <target host="swisspostbox.com" />
6418        <target host="www.swisspostbox.com" />
6419        <target host="secure.swisspostbox.com" />
6420        <target host="incamail.ch" />
6421        <target host="www.incamail.ch" />
6422        <target host="im.post.ch" />
6423        <target host="postauto.ch" />
6424        <target host="www.postauto.ch" />
6425        <target host="postbus.ch" />
6426        <target host="mypostbusiness.ch" />
6427        <target host="www.mypostbusiness.ch" />
6428        <target host="postfinance.ch"/>
6429        <target host="www.postfinance.ch"/>
6430        <target host="postsuisseid.ch" />
6431        <target host="www.postsuisseid.ch" />
6432        <target host="swisssign.com" />
6433        <target host="www.swisssign.com" />
6434        <target host="press-shop.ch" />
6435        <target host="www.press-shop.ch" />
6436        <target host="press-shop-deutschland.de" />
6437        <target host="www.press-shop-deutschland.de" />
6438        <target host="press-shop-france.fr" />
6439        <target host="www.press-shop-france.fr" />
6440        <target host="press-shop-oesterreich.at" />
6441        <target host="www.press-shop-oesterreich.at" />
6442        <target host="press-shop-international.com" />
6443        <target host="www.press-shop-international.com" />
6444        <target host="mds-media.ch" />
6445        <target host="www.mds-media.ch" />
6446        <target host="admin.omgpm.com" />
6447
6448       <rule from="^http://(www\.)?post\.ch/" to="https://www.post.ch/"/>
6449       <rule from="^http://(www\.)?posta\.ch/" to="https://www.posta.ch/"/>
6450       <rule from="^http://(www\.)?poste\.ch/" to="https://www.poste.ch/"/>
6451       <rule from="^http://(www\.)?swisspost\.com/" to="https://www.swisspost.com/"/>
6452       <rule from="^http://(www\.)?tntswisspost\.com/" to="https://www.tntswisspost.com/"/>
6453       <rule from="^http://(www\.)?swisspost\.ch/" to="https://www.swisspost.ch/"/>
6454       <rule from="^http://(www\.)?swisspost-gls\.ch/" to="https://www.swisspost-gls.ch/"/>
6455       <rule from="^http://(www\.)?swisspostbox\.com/" to="https://swisspostbox.com/"/>
6456       <rule from="^http://(secure\.)?swisspostbox\.com/" to="https://secure.swisspostbox.com/"/>
6457       <rule from="^http://(www\.)?incamail\.ch/" to="https://www.incamail.ch/"/>
6458       <rule from="^http://(im\.)?post\.ch/" to="https://im.post.ch/"/>
6459       <rule from="^http://(www\.)?postauto\.ch/" to="https://www.postauto.ch/"/>
6460       <rule from="^http://(www\.)?postbus\.ch/" to="https://www.postbus.ch/"/>
6461       <rule from="^http://(www\.)?mypostbusiness\.ch/" to="https://www.mypostbusiness.ch/"/>
6462       <rule from="^http://(www\.)?postfinance\.ch/" to="https://www.postfinance.ch/"/>
6463       <rule from="^http://(www\.)?postsuisseid\.ch/" to="https://postsuisseid.ch/"/>
6464       <rule from="^http://(www\.)?swisssign\.com/" to="https://swisssign.com/"/>
6465       <rule from="^http://(www\.)?press-shop\.ch/" to="https://www.press-shop.ch/"/>
6466       <rule from="^http://(www\.)?press-shop-deutschland\.de/" to="https://www.press-shop-deutschland.de/"/>
6467       <rule from="^http://(www\.)?press-shop-france\.fr/" to="https://www.press-shop-france.fr/"/>
6468       <rule from="^http://(www\.)?press-shop-oesterreich\.at/" to="https://www.press-shop-oesterreich.at/"/>
6469       <rule from="^http://(www\.)?press-shop-international\.com/" to="https://www.press-shop-international.com/"/>
6470       <rule from="^http://(www\.)?mds-media\.ch/" to="https://www.mds-media.ch/"/>
6471       <rule from="^http://(admin\.)?omgpm\.com/" to="https://admin.omgpm.com/"/>
6472</ruleset>
6473<ruleset name="Postbank">
6474  <target host="postbank.de"/>
6475  <target host="www.postbank.de"/>
6476
6477  <securecookie host="^(.*\.)?postbank\.de$" name=".*" />
6478
6479  <rule from="^http://(www\.)?postbank\.de/" to="https://www.postbank.de/"/>
6480</ruleset>
6481<ruleset name="Poste.it">
6482  <target host="poste.it" />
6483  <target host="www.poste.it" />
6484
6485  <rule from="^http://(www\.)?poste\.it/" to="https://www.poste.it/" />
6486</ruleset>
6487<ruleset name="Posten.se">
6488  <target host="posten.se" />
6489  <rule from="^http://posten\.se/" to="https://www.posten.se/"/>
6490  <rule from="^http://www\.posten\.se/" to="https://www.posten.se/"/>
6491</ruleset>
6492
6493<ruleset name="Powells.com">
6494  <target host="powells.com" />
6495  <target host="www.powells.com" />
6496
6497  <rule from="^http://(www\.)?powells\.com/" to="https://www.powells.com/" />
6498  <rule from="^http://content-[0-9]\.powells\.com/" to="https://www.powells.com/" />
6499</ruleset>
6500<ruleset name="PreyProject">
6501  <target host="control.preyproject.com" />
6502
6503  <securecookie host="^control\.preyproject\.com$" name=".*"/>
6504
6505  <rule from="^http://control\.preyproject\.com/" to="https://control.preyproject.com/"/>
6506</ruleset>
6507<ruleset name="Princeton.edu">
6508        <target host="princeton.edu" />
6509        <target host="www.princeton.edu" />
6510        <rule from="^http://www\.princeton\.edu/" to="https://www.princeton.edu/"/>
6511        <rule from="^http://princeton\.edu/" to="https://www.princeton.edu/"/>
6512</ruleset>
6513
6514<ruleset name="Privacy International">
6515        <target host="privacyinternational.org" />
6516        <target host="www.privacyinternational.org" />
6517
6518        <rule from="^http://(www\.)?privacyinternational\.org/" to="https://www.privacyinternational.org/" />
6519</ruleset><ruleset name="PrivacyBox">
6520  <target host="privacybox.de" />
6521  <target host="www.privacybox.de" />
6522
6523  <rule from="^http://(www\.)?privacybox\.de/" to="https://privacybox.de/"/>
6524</ruleset>
6525<ruleset name="Privacy Rights Clearinghouse">
6526  <target host="privacyrights.org" />
6527  <target host="www.privacyrights.org" />
6528
6529  <rule from="^http://(www\.)?privacyrights\.org/" to="https://www.privacyrights.org/" />
6530</ruleset>
6531<ruleset name="PrivatePaste">
6532  <target host="privatepaste.com" />
6533  <target host="www.privatepaste.com" />
6534
6535  <rule from="^http://privatepaste\.com/" to="https://privatepaste.com/"/>
6536  <rule from="^http://www\.privatepaste\.com/" to="https://www.privatepaste.com/"/>
6537</ruleset>
6538<ruleset name="ProPublica.org">
6539        <target host="propublica.org" />
6540        <target host="www.propublica.org" />
6541        <rule from="^http://propublica\.org/" to="https://www.propublica.org/"/>
6542        <rule from="^http://www\.propublica\.org/" to="https://www.propublica.org/"/>
6543</ruleset>
6544
6545<ruleset name="ProjectHoneypot">
6546  <target host="projecthoneypot.org" />
6547  <target host="www.projecthoneypot.org" />
6548
6549  <securecookie host="^(www\.)?projecthoneypot\.org$" name=".*"/>
6550
6551  <rule from="^http://(www\.)?projecthoneypot\.org/" to="https://www.projecthoneypot.org/" />
6552</ruleset>
6553<ruleset name="Prometric">
6554  <target host="prometric.com" />
6555  <target host="www.prometric.com" />
6556
6557  <securecookie host="^(.*\.)?prometric.com$" name=".*" />
6558
6559  <rule from="^http://(www\.)?prometric\.com/" to="https://www.prometric.com/"/>
6560
6561</ruleset>
6562<ruleset name="Proxify">
6563  <target host="proxify.com" />
6564  <target host="www.proxify.com" />
6565
6566  <rule from="^https?://(www\.)?proxify\.com/" to="https://proxify.com/"/>
6567</ruleset>
6568<ruleset name="Proxy.org">
6569  <target host="www.proxy.org" />
6570  <target host="proxy.org" />
6571
6572  <rule from="^http://(www\.)?proxy\.org/" to="https://proxy.org/"/>
6573</ruleset>
6574<ruleset name="Public Citizen">
6575        <target host="citizen.org" />
6576        <target host="www.citizen.org" />
6577        <target host="action.citizen.org" />
6578
6579        <rule from="^http://(www\.)?citizen\.org/" to="https://www.citizen.org/" />
6580        <rule from="^http://action\.citizen\.org/" to="https://action.citizen.org/" />
6581</ruleset><ruleset name="Puma.com">
6582  <target host="www.puma.com" />
6583  <target host="assets.puma.com" />
6584  <target host="is.puma.com" />
6585  <target host="puma.com" />
6586  <rule from="^http://www\.puma\.com/" to="https://www.puma.com/"/>
6587  <rule from="^http://puma\.com/" to="https://www.puma.com/"/>
6588  <rule from="^http://assets\.puma\.com/" to="https://assets.puma.com/"/>
6589  <rule from="^http://is\.puma\.com/" to="https://is.puma.com/"/>
6590</ruleset>
6591
6592<ruleset name="QIP">
6593  <target host="qip.ru" />
6594  <target host="www.qip.ru" />
6595
6596  <rule from="^http://(www\.)?qip\.ru/" to="https://qip.ru/"/>
6597</ruleset>
6598<ruleset name="Qualys">
6599  <target host="qualys.com" />
6600  <target host="www.qualys.com" />
6601  <target host="community.qualys.com" />
6602
6603  <rule from="^http://(www\.)?qualys\.com/" to="https://www.qualys.com/"/>
6604  <rule from="^http://community\.qualys\.com/" to="https://community.qualys.com/"/>
6605</ruleset>
6606<ruleset name="quantserve.com">
6607        <target host="quantserve.com" />
6608        <target host="*.quantserve.com" />
6609        <rule from="^http://quantserve\.com/" to="https://quantserve.com/"/>
6610        <rule from="^http://www\.quantserve\.com/" to="https://quantserve.com/"/>
6611   <rule from="^http://([^/:@]*)\.quantserve\.com/" to="https://$1.quantserve.com/"/>
6612</ruleset>
6613
6614<ruleset name="Quora" default_off="https:quora only supports chunked encoding??????">
6615  <target host="quora.com" />
6616  <target host="www.quora.com" />
6617
6618  <rule from="^http://(www\.)?quora\.com/" to="https://www.quora.com/"/>
6619</ruleset>
6620<ruleset name="Quorks" default_off="Cert warning">
6621  <target host="quorks.ath.cx" />
6622
6623  <rule from="^http://quorks\.ath\.cx/login\.php$"
6624          to="https://quorks.ath.cx/login.php"/>
6625</ruleset>
6626<ruleset name="Qxl">
6627  <target host="qxl.no" />
6628  <target host="www.qxl.no" />
6629  <target host="qxl.dk" />
6630  <target host="www.qxl.dk" />
6631
6632  <rule from="^http://(www\.)?qxl\.no/" to="https://www.qxl.no/"/>
6633  <rule from="^http://(www\.)?qxl\.dk/" to="https://www.qxl.dk/"/>
6634</ruleset>
6635
6636<ruleset name="RAC">
6637  <target host="rac.co.uk" />
6638  <target host="www.rac.co.uk" />
6639
6640  <securecookie host="^(.+\.)?rac\.co\.uk$" name=".*"/>
6641
6642  <rule from="^http://(www\.)?rac\.co\.uk/" to="https://www.rac.co.uk/"/>
6643</ruleset>
6644<ruleset name="Reformed Church">
6645  <target host="rca.org" />
6646  <target host="www.rca.org" />
6647
6648  <rule from="^http://(www\.)?rca\.org/" to="https://www.rca.org/" />
6649</ruleset>
6650<ruleset name="RFC-Editor">
6651  <target host="rfc-editor.org" />
6652  <target host="www.rfc-editor.org" />
6653
6654  <rule from="^http://(www\.)?rfc-editor\.org/" to="https://www.rfc-editor.org/"/>
6655</ruleset>
6656<ruleset name="ROBOXchange">
6657  <target host="roboxchange.com" />
6658  <target host="www.roboxchange.com" />
6659
6660  <rule from="^http://(www\.)?roboxchange\.com/" to="https://roboxchange.com/"/>
6661</ruleset>
6662<ruleset name="RSA">
6663  <target host="rsa.com" />
6664  <target host="www.rsa.com" />
6665
6666  <rule from="^http://(www\.)?rsa\.com/" to="https://www.rsa.com/" />
6667</ruleset>
6668<ruleset name="RT.ru">
6669        <target host="rt.ru" />
6670        <target host="www.rt.ru" />
6671        <rule from="^http://rt\.ru/" to="https://rt.ru/"/>
6672        <rule from="^http://www\.rt\.ru/" to="https://www.rt.ru/"/>
6673</ruleset>
6674
6675<ruleset name="Rabobank">
6676  <!-- Rule created by Jeroen van der Gun -->
6677
6678  <target host="www.rabobank.nl" />
6679  <target host="rabobank.nl" />
6680  <target host="bankieren.rabobank.nl" />
6681
6682  <rule from="^http://(www\.)?rabobank\.nl/" to="https://www.rabobank.nl/"/>
6683  <rule from="^http://bankieren\.rabobank\.nl/" to="https://bankieren.rabobank.nl/"/>
6684</ruleset>
6685<!-- Most requests sent back to HTTP. -->
6686<ruleset name="RadioShack">
6687  <target host="radioshack.com" />
6688  <target host="www.radioshack.com" />
6689
6690  <rule from="^http://(www\.)?radioshack\.com/" to="https://www.radioshack.com/"/>
6691</ruleset>
6692<ruleset name="Raiffeisen.ch">
6693        <target host="raiffeisen.ch" />
6694        <target host="www.raiffeisen.ch" />
6695        <target host="tb.raiffeisendirect.ch" />
6696        <securecookie host="^(.*\.)?raiffeisen\.ch$" name=".*" />
6697        <securecookie host="^(.*\.)?raiffeisendirect\.ch$" name=".*" />
6698
6699        <rule from="^http://(www\.)?raiffeisen\.ch/" to="https://www.raiffeisen.ch/"/>
6700        <rule from="^http://(tb\.)?raiffeisendirect\.ch/" to="https://tb.raiffeisendirect.ch/"/>
6701</ruleset>
6702<ruleset name="Random.org (broken)" default_off="Breaks random number generator">
6703  <target host="www.random.org" />
6704  <target host="random.org" />
6705
6706  <rule from="^http://(www\.)?random\.org/" to="https://www.random.org/"/>
6707</ruleset>
6708<ruleset name="RapidSSL">
6709  <target host="rapidssl.com" />
6710  <target host="www.rapidssl.com" />
6711
6712  <rule from="^http://(www\.)?rapidssl\.com/" to="https://www.rapidssl.com/"/>
6713</ruleset>
6714<ruleset name="ReadSpeaker">
6715        <target host="readspeaker.com" />
6716        <target host="www.readspeaker.com" />
6717        <target host="app.readspeaker.com" />
6718        <target host="media.readspeaker.com" />
6719        <target host="vttts.readspeaker.com" />
6720        <target host="lqttswr.readspeaker.com" />
6721        <target host="docreader.readspeaker.com" />
6722        <target host="asp.readspeaker.net" />
6723
6724        <rule from="^http://(www\.)readspeaker\.com/" to="https://www.readspeaker.com/" />
6725        <rule from="^http://(app|media|vttts|lqttswr|docreader)\.readspeaker\.com/" to="https://$1.readspeaker.com/" />
6726
6727        <rule from="^http://asp\.readspeaker\.net/" to="https://asp.readspeaker.net/" />
6728</ruleset><ruleset name="ReadWriteWeb">
6729  <target host="readwriteweb.com" />
6730  <target host="www.readwriteweb.com" />
6731
6732  <rule from="^http://(www\.)?readwriteweb\.com/" to="https://www.readwriteweb.com/"/>
6733</ruleset>
6734<ruleset name="Reco.se">
6735        <target host="reco.se" />
6736        <target host="www.reco.se" />
6737        <rule from="^http://www\.reco\.se/" to="https://www.reco.se/"/>
6738        <rule from="^http://reco\.se/" to="https://www.reco.se/"/>
6739</ruleset>
6740
6741<ruleset name="RedHat">
6742  <target host="redhat.com" />
6743  <target host="www.redhat.com" />
6744  <securecookie host="^(.*\.)?redhat\.com$" name=".*" />
6745
6746  <rule from="^http://(www\.)?redhat\.com/" to="https://www.redhat.com/"/>
6747</ruleset>
6748<ruleset name="Redbox.com">
6749  <target host="redbox.com" />
6750  <target host="www.redbox.com" />
6751  <target host="images.redbox.com" />
6752
6753  <rule from="^http://(www\.)?redbox\.com/" to="https://www.redbox.com/" />
6754  <rule from="^http://images\.redbox\.com/" to="https://images.redbox.com/" />
6755</ruleset>
6756<!-- I modified the normal Reddit ruleset to work for redditmedia.
6757        While no confidential data is passed on this domain (that I
6758        know of) I just wanted to have as much of Reddit.com encrypted
6759        as possible, also my work place doesn't filter https sites.
6760 -->
6761<ruleset name="Reddit+" default_off="cert mismatch">
6762  <target host="redditmedia.com"/>
6763  <target host="www.redditmedia.com"/>
6764
6765  <rule from="^http://(www\.)?redditmedia\.com/" to="https://www.redditmedia.com/"/>
6766</ruleset>
6767<!-- This ruleset (a) caused a lot of confusion because of the redirect to
6768the "pay" subdomain, and (b) sometimes caused cert warnings because of
6769server-side CDN issues, so it's off for the time being -->
6770<ruleset name="Reddit (hackish)" default_off="via pay.reddit.com">
6771  <target host="reddit.com" />
6772  <target host="*.reddit.com" />
6773  <target host="redd.it" />
6774
6775  <rule from="^http://(www\.)?reddit\.com/"
6776    to="https://pay.reddit.com/"/>
6777  <rule from="^http://(sp|static|thumbs)\.reddit\.com/"
6778    to="https://s3.amazonaws.com/$1.reddit.com/"/>
6779  <rule from="^http://redd\.it/$"
6780    to="https://pay.reddit.com/"/>
6781  <rule from="^http://redd\.it/"
6782    to="https://pay.reddit.com/tb/"/>
6783</ruleset>
6784
6785<ruleset name="RememberTheMilk">
6786  <target host="rememberthemilk.com" />
6787  <target host="www.rememberthemilk.com" />
6788
6789  <rule from="^http://(www\.)?rememberthemilk\.com/" to="https://www.rememberthemilk.com/"/>
6790</ruleset>
6791
6792<ruleset name="Revsci.net">
6793        <target host="ads.revsci.net" />
6794
6795        <rule from="^http://ads\.revsci\.net/" to="https://ads.revsci.net/" />
6796</ruleset><ruleset name="Ricardo.ch">
6797        <target host="ricardo.ch" />
6798        <target host="www.ricardo.ch" />
6799        <securecookie host="^(.*\.)?ricardo\.ch$" name=".*" />
6800
6801        <rule from="^http://(www\.)?ricardo\.ch/" to="https://www.ricardo.ch/"/>
6802</ruleset>
6803
6804<ruleset name="Riga">
6805  <target host="riga.lv" />
6806  <target host="*.riga.lv" />
6807  <target host="eriga.lv" />
6808  <target host="www.eriga.lv" />
6809
6810  <rule from="^http://riga\.lv/" to="https://riga.lv/"/>
6811  <rule from="^http://([^/:@]*)\.riga\.lv/" to="https://$1.riga.lv/"/>
6812  <rule from="^http://eriga\.lv/" to="https://eriga.lv/"/>
6813  <rule from="^http://www\.eriga\.lv/" to="https://www.eriga.lv/"/>
6814</ruleset>
6815<!-- already enforces https. adding to prevent sslstrips on port 80 -->
6816<ruleset name="Riksgalden.se">
6817        <target host="riksgalden.se" />
6818        <target host="www.riksgalden.se" />
6819        <rule from="^http://riksgalden\.se/" to="https://www.riksgalden.se/"/>
6820        <rule from="^http://www\.riksgalden\.se/" to="https://www.riksgalden.se/"/>
6821</ruleset>
6822
6823<ruleset name="ripe.net">
6824        <target host="ripe.net" />
6825        <target host="www.ripe.net" />
6826
6827        <rule from="^http://ripe\.net/" to="https://ripe.net/"/>
6828        <rule from="^http://www\.ripe\.net/" to="https://www.ripe.net/"/>
6829</ruleset>
6830
6831<ruleset name="Riseup">
6832  <target host="riseup.net" />
6833  <target host="*.riseup.net" />
6834
6835  <rule from="^http://riseup\.net/" to="https://riseup.net/"/>
6836  <rule from="^http://([^/:@]*)\.riseup\.net/" to="https://$1.riseup.net/"/>
6837</ruleset>
6838<ruleset name="RoadRunner">
6839  <target host="rr.com" />
6840  <target host="www.rr.com" />
6841  <target host="hercules.rr.com" />
6842
6843  <rule from="^http://(www\.)?rr\.com/" to="https://www.rr.com/"/>
6844  <rule from="^http://hercules\.rr\.com/" to="https://hercules.rr.com/"/>
6845</ruleset>
6846<ruleset name="Robeco">
6847  <!-- Rule created by Jeroen van der Gun -->
6848
6849  <target host="www.robeco.nl" />
6850  <target host="robeco.nl" />
6851
6852  <rule from="^http://(www\.)?robeco\.nl/" to="https://www.robeco.nl/"/>
6853</ruleset>
6854<ruleset name="Roiservice.com">
6855        <target host="track.roiservice.com" />
6856
6857        <rule from="^http://track\.roiservice\.com/" to="https://track.roiservice.com/" />
6858</ruleset><!-- romab.com is the developers of the ironsuite mac applications -->
6859<ruleset name="romab.com">
6860        <target host="romab.com" />
6861        <target host="romab.se" />
6862        <target host="www.romab.com" />
6863        <target host="www.romab.se" />
6864        <rule from="^http://www\.romab\.com/" to="https://www.romab.com/"/>
6865        <rule from="^http://www\.romab\.se/" to="https://www.romab.com/"/>
6866        <rule from="^http://romab\.se/" to="https://romab.com/"/>
6867        <rule from="^http://romab\.com/" to="https://romab.com/"/>
6868</ruleset>
6869
6870<ruleset name="RoyalGovUK">
6871  <target host="royal.gov.uk"/>
6872  <target host="www.royal.gov.uk"/>
6873
6874  <securecookie host="^(.+\.)?royal\.gov\.uk$" name=".*"/>
6875
6876  <rule from="^http://(www\.)?royal\.gov\.uk/" to="https://www.royal.gov.uk/"/>
6877</ruleset>
6878<ruleset name="RubyGems.org">
6879        <target host="rubygems.org" />
6880        <rule
6881                from="^http://(www\.)?rubygems\.org/"
6882                to="https://rubygems.org/"
6883        />
6884        <securecookie host="^(www\.)?rubygems.org" name=".*" />
6885</ruleset>
6886<ruleset name="redmine.ruby-lang.org">
6887  <target host="redmine.ruby-lang.org" />
6888
6889  <rule from="^http://redmine\.ruby-lang\.org/"
6890        to="https://redmine.ruby-lang.org/" />
6891</ruleset>
6892<ruleset name="Rutgers">
6893        <target host="rutgers.edu" />
6894        <target host="*.rutgers.edu" />
6895        <target host="www.*.rutgers.edu" />
6896
6897        <rule from="^http://(www\.)?rutgers\.edu/"
6898                to="https://www.rutgers.edu/" />
6899        <rule from="^http://(www\.)?(acs|cs|eden|nbcs|physics|rci)\.rutgers\.edu/"
6900                to="https://www.$2.rutgers.edu/" />
6901        <rule from="^http://(www\.)?(comminfo|food|gobble|math|njaes|rhshope|ruinfo|ruoffcampus|search|studentabc|uhr|ur)\.rutgers\.edu/"
6902                to="https://$2.rutgers.edu/" />
6903        <rule from="^http://(parktran|rudots)\.rutgers\.edu/"
6904                to="https://gobble.rutgers.edu/" />
6905
6906        <!-- Not working: studentaid.rutgers.edu: broken left menu -->
6907</ruleset>
6908<ruleset name="Ryanair.com">
6909  <target host="www.ryanair.com" />
6910  <target host="ryanair.com" />
6911  <rule from="^http://www\.ryanair\.com/" to="https://www.ryanair.com/"/>
6912  <rule from="^http://ryanair\.com/" to="https://www.ryanair.com/"/>
6913</ruleset>
6914
6915<ruleset name="SANS">
6916        <target host="isc.sans.edu" />
6917        <target host="isc.sans.org" />
6918        <target host="sans.org" />
6919        <target host="www.sans.org" />
6920        <rule from="^http://isc\.sans\.org/" to="https://isc.sans.org/"/>
6921        <rule from="^http://isc\.sans\.edu/" to="https://isc.sans.edu/"/>
6922        <rule from="^http://www\.sans\.org/" to="https://www.sans.org/"/>
6923        <rule from="^http://sans\.org/" to="https://sans.org/"/>
6924</ruleset>
6925
6926<ruleset name="SBB.ch">
6927  <target host="sbb.ch"/>
6928  <target host="*.sbb.ch"/>
6929
6930  <rule from="^http://(?:www\.)?sbb\.ch/" to="https://www.sbb.ch/"/>
6931  <rule from="^http://mct\.sbb\.ch/" to="https://mct.sbb.ch/"/>
6932  <rule from="^http://mcts\.sbb\.ch/" to="https://mcts.sbb.ch/"/>
6933  <rule from="^http://smsalarm\.sbb\.ch/" to="https://smsalarm.sbb.ch/"/>
6934</ruleset>
6935<ruleset name="StateBankOfIndia">
6936  <target host="sbi.co.in" />
6937  <target host="www.sbi.co.in" />
6938
6939  <securecookie host="^(.+\.)?sbi\.co\.in$" name=".*"/>
6940
6941  <rule from="^http://(www\.)?sbi\.co\.in/" to="https://www.sbi.co.in/"/>
6942</ruleset>
6943<!-- SF have biosnack.sfbio.se which have a cert from bioklubben.sfbio.se, not the same site -->
6944<ruleset name="SF.se">
6945  <target host="sf.se" />
6946  <target host="www.sf.se" />
6947  <rule from="^http://sf\.se/" to="https://www.sf.se/"/>
6948  <rule from="^http://www\.sf\.se/" to="https://www.sf.se/"/>
6949</ruleset>
6950
6951<ruleset name="SH.se">
6952        <target host="webappl.web.sh.se" />
6953        <target host="bibl.sh.se" />
6954        <rule from="^http://bibl\.sh\.se/" to="https://bibl.sh.se/"/>
6955        <rule from="^http://webappl\.web\.sh\.se/" to="https://webappl.web.sh.se/"/>
6956</ruleset>
6957
6958<ruleset name="SI.se">
6959        <target host="si.se" />
6960        <target host="www.si.se" />
6961        <rule from="^http://www\.si\.se/" to="https://www.si.se/"/>
6962        <rule from="^http://si\.se/" to="https://www.si.se/"/>
6963</ruleset>
6964
6965<!-- sics is the swedish institute of Computer Science. -->
6966<ruleset name="SICS.se">
6967  <target host="sics.se" />
6968  <target host="www.sics.se" />
6969  <rule from="^http://sics\.se/" to="https://www.sics.se/"/>
6970  <rule from="^http://www\.sics\.se/" to="https://www.sics.se/"/>
6971</ruleset>
6972<!-- SJ is a government operated railway company in sweden. -->
6973<ruleset name="SJ.se">
6974  <target host="sj.se" />
6975  <target host="*.sj.se" />
6976  <rule from="^http://sj\.se/" to="https://www.sj.se/"/>
6977  <rule from="^http://www\.sj\.se/" to="https://www.sj.se/"/>
6978</ruleset>
6979
6980<ruleset name="SL.se">
6981        <target host="sl.se" />
6982        <rule from="^http://sl\.se/" to="https://sl.se/"/>
6983        <rule from="^http://www\.sl\.se/" to="https://sl.se/"/>
6984</ruleset>
6985
6986<!-- slf is a swedish labour union -->
6987<ruleset name="SLF.se">
6988        <target host="slf.se" />
6989        <target host="www.slf.se" />
6990        <rule from="^http://slf\.se/" to="https://www.slf.se/"/>
6991        <rule from="^http://www\.slf\.se/" to="https://www.slf.se/"/>
6992</ruleset>
6993
6994<ruleset name="SLU.se">
6995        <target host="www.slu.se" />
6996        <target host="slu.se" />
6997        <target host="internt.slu.se" />
6998        <rule from="^http://slu\.se/" to="https://www.slu.se/"/>
6999        <rule from="^http://www\.slu\.se/" to="https://www.slu.se/"/>
7000        <rule from="^http://internt\.slu\.se/" to="https://internet.slu.se/"/>
7001</ruleset>
7002
7003<ruleset name="SNS Bank">
7004  <!-- Rule created by Jeroen van der Gun -->
7005
7006  <target host="www.snsbank.nl" />
7007  <target host="snsbank.nl" />
7008
7009  <rule from="^http://(www\.)?snsbank\.nl/" to="https://www.snsbank.nl/"/>
7010</ruleset>
7011<ruleset name="SPCA Los Angeles">
7012        <target host="spcala.com" />
7013        <target host="www.spcala.com" />
7014
7015        <rule from="^http://(www\.)?spcala\.com/" to="https://spcala.com/" />
7016
7017        <!-- Invoking https://www.spcala.com/ produces a certificate error,
7018        so redirect https://www.spcala.com/ to https://spcala.com/ -->
7019        <rule from="^https://www\.spcala\.com/" to="https://spcala.com/" />
7020</ruleset><ruleset name="SSLlabs.com">
7021  <target host="ssllabs.com" />
7022  <target host="www.ssllabs.com" />
7023
7024  <rule from="^http://(www\.)?ssllabs\.com/" to="https://www.ssllabs.com/" />
7025</ruleset>
7026<ruleset name="SSLshopper">
7027<target host="www.sslshopper.com" />
7028<target host="sslshopper.com" />
7029<rule from="^http://(www\.)?sslshopper\.com/" to="https://www.sslshopper.com/"/>
7030</ruleset>
7031<!-- slf is a swedish labour union -->
7032<ruleset name="ST.org">
7033        <target host="st.org" />
7034        <target host="www.st.org" />
7035        <rule from="^http://st\.org/" to="https://www.st.org/"/>
7036        <rule from="^http://www\.st\.org/" to="https://www.st.org/"/>
7037</ruleset>
7038
7039<ruleset name="SVT.se">
7040        <target host="svt.se" />
7041        <rule from="^http://svt\.se/" to="https://svt.se/"/>
7042        <rule from="^http://www\.svt\.se/" to="https://svt.se/"/>
7043</ruleset>
7044
7045<ruleset name="Safari Books Online">
7046  <target host="my.safaribooksonline.com" />
7047  <target host="www.safaribooksonline.com" />
7048
7049    <rule from="^http://my\.safaribooksonline\.com/login$"
7050        to="https://ssl.safaribooksonline.com/securelogin"/>
7051    <rule from="^http://www\.safaribooksonline\.com/Corporate/Index/logIn\.php$"
7052        to="https://ssl.safaribooksonline.com/securelogin"/>
7053</ruleset>
7054<ruleset name="Safe-mail.net">
7055        <target host="safe-mail.net" />
7056        <target host="*.safe-mail.net" />
7057
7058        <rule from="^http://safe-mail\.net/" to="https://www.safe-mail.net/" />
7059        <rule from="^http://([a-zA-Z0-9\-]+)\.safe-mail\.net/" to="https://$1.safe-mail.net/" />
7060</ruleset>
7061<ruleset name="Sanitarium.se">
7062        <target host="sanitarium.se" />
7063        <target host="www.sanitarium.se" />
7064        <rule from="^http://sanitarium\.se/" to="https://sanitarium.se/"/>
7065        <rule from="^http://www\.sanitarium\.se/" to="https://sanitarium.se/"/>
7066</ruleset>
7067
7068<ruleset name="Savannah">
7069  <target host="savannah.nongnu.org" />
7070  <target host="savannah.gnu.org" />
7071
7072  <rule from="^http://savannah\.(non)?gnu\.org/" to="https://savannah.$1gnu.org/"/>
7073</ruleset>
7074<!-- media.scmagazineus.com lacks SSL -->
7075<ruleset name="ScMagazineUS.com">
7076        <target host="scmagazineus.com" />
7077        <target host="www.scmagazineus.com" />
7078        <rule from="^http://www\.scmagazineus\.com/" to="https://www.scmagazineus.com/"/>
7079        <rule from="^http://scmagazineus\.com/" to="https://www.scmagazineus.com/"/>
7080</ruleset>
7081
7082<ruleset name="Schneier on Security">
7083  <target host="schneier.com" />
7084  <target host="www.schneier.com" />
7085
7086        <rule from="^http://(www\.)?schneier\.com/" to="https://www.schneier.com/"/>
7087</ruleset>
7088<ruleset name="SchuelerVZ" default_off="Certificate mismatch">
7089  <target host="www.schuelervz.net" />
7090
7091  <rule from="^http://www\.schuelervz\.net/" to="https://www.schuelervz.net/"/>
7092</ruleset>
7093<ruleset name="Sciencemag.org">
7094  <target host="www.sciencemag.org" />
7095  <target host="sciencemag.org" />
7096  <rule from="^http://www\.sciencemag\.org/" to="https://www.sciencemag.org/"/>
7097  <rule from="^http://sciencemag\.org/" to="https://www.sciencemag.org/"/>
7098</ruleset>
7099
7100<!-- This is another of those 1-pixel tracking providers. -->
7101<ruleset name="scounter.rambler.ru">
7102        <target host="counter.rambler.ru" />
7103        <rule from="^http://counter\.rambler\.ru/" to="https://scounter.rambler.ru/"/>
7104</ruleset>
7105
7106<ruleset name="Screen It! Movie Reviews">
7107        <target host="screenit.com"/>
7108        <target host="www.screenit.com"/>
7109
7110        <rule from="^http://(www\.)?screenit\.com/" to="https://www.screenit.com/" />
7111</ruleset><ruleset name="Scroogle">
7112  <target host="www.scroogle.org" />
7113  <target host="scroogle.org" />
7114
7115  <rule from="^http://(www\.)?scroogle\.org/cgi-bin/nbbw\.cgi$" to="https://ssl.scroogle.org/cgi-bin/nbbwssl.cgi"/>
7116  <rule from="^http://(www\.)?scroogle\.org/$" to="https://ssl.scroogle.org/" />
7117  <rule from="^http://(www\.)?scroogle\.org/cgi-bin/nbbw\.cgi\?Gw=(.*)$" to="https://ssl.scroogle.org/cgi-bin/nbbwssl.cgi?Gw=$2"/>
7118</ruleset>
7119<ruleset name="Seagate.com (broken)" default_off="Broken (requires login)">
7120  <target host="www.seagate.com" />
7121  <target host="seagate.com" />
7122
7123  <rule from="^http://(www\.)?seagate\.com/" to="https://www.seagate.com/"/>
7124</ruleset>
7125<ruleset name="Secunia">
7126  <target host="secunia.com" />
7127  <target host="www.secunia.com" />
7128
7129  <rule from="^http://(www\.)?secunia\.com/" to="https://secunia.com/"/>
7130</ruleset>
7131
7132<ruleset name="Security.NL">
7133  <target host="security.nl" />
7134  <target host="www.security.nl" />
7135
7136  <rule from="^http://(?:www\.)?security\.nl/" to="https://secure.security.nl/"/>
7137</ruleset>
7138<ruleset name="SecurityWeek.com">
7139        <target host="securityweek.com" />
7140        <target host="www.securityweek.com" />
7141        <rule from="^http://www\.securityweek\.com/" to="https://www.securityweek.com/"/>
7142        <rule from="^http://securityweek\.com/" to="https://www.securityweek.com/"/>
7143</ruleset>
7144
7145<ruleset name="Securosis">
7146        <target host="securosis.com" />
7147        <target host="www.securosis.com" />
7148        <rule from="^http://www\.securosis\.com/" to="https://securosis.com/"/>
7149        <rule from="^http://securosis\.com/" to="https://securosis.com/"/>
7150</ruleset>
7151
7152<ruleset name="Senate.gov">
7153  <target host="www.senate.gov" />
7154  <target host="senate.gov" />
7155  <rule from="^http://www\.senate\.gov/" to="https://www.senate.gov/"/>
7156  <rule from="^http://senate\.gov/" to="https://senate.gov/"/>
7157</ruleset>
7158
7159<ruleset name="Sendmail">
7160  <target host="sendmail.com" />
7161  <target host="www.sendmail.com" />
7162
7163  <rule from="^http://(www\.)?sendmail\.com/" to="https://www.sendmail.com/"/>
7164</ruleset>
7165<ruleset name="Siemens.com">
7166        <target host="siemens.com" />
7167        <target host="www.siemens.com" />
7168        <rule from="^http://siemens\.com/" to="https://www.siemens.com/"/>
7169        <rule from="^http://www\.siemens\.com/" to="https://www.siemens.com/"/>
7170</ruleset>
7171
7172<ruleset name="SigmaBeauty">
7173  <target host="www.sigmabeauty.com" />
7174  <target host="sigmabeauty.com" />
7175
7176  <rule from="^http://(www\.)?sigmabeauty\.com/" to="https://www.sigmabeauty.com/"/>
7177</ruleset>
7178<ruleset name="Silicon.com">
7179        <target host="silicon.com" />
7180        <target host="www.silicon.com" />
7181        <rule from="^http://silicon\.com/" to="https://www.silicon.com/"/>
7182        <rule from="^http://www\.silicon\.com/" to="https://www.silicon.com/"/>
7183</ruleset>
7184
7185<ruleset name="Sinn Fein">
7186  <target host="sinnfein.ie" />
7187  <target host="www.sinnfein.ie" />
7188
7189  <rule from="^http://(www\.)?sinnfein\.ie/" to="https://www.sinnfein.ie/"/>
7190</ruleset>
7191<ruleset name="Sipgate">
7192  <target host="sipgate.at" />
7193  <target host="www.sipgate.at" />
7194  <target host="secure.sipgate.at" />
7195  <target host="sipgate.co.uk" />
7196  <target host="www.sipgate.co.uk" />
7197  <target host="secure.sipgate.co.uk" />
7198
7199  <rule from="^http://(?:(?:www|secure)\.)?sipgate\.(at|co\.uk)/" to="https://secure.sipgate.$1/"/>
7200</ruleset>
7201<ruleset name="SixApart">
7202  <target host="sixapart.com" />
7203  <target host="help.sixapart.com" />
7204  <target host="www.sixapart.com" />
7205  <target host="sixapart.jp" />
7206  <target host="www.sixapart.jp" />
7207
7208  <rule from="^http://sixapart\.com/" to="https://sixapart.com/"/>
7209  <rule from="^http://(help|www)\.sixapart\.com/" to="https://$1.sixapart.com/"/>
7210  <rule from="^http://(www\.)?sixapart\.jp/" to="https://www.sixapart.jp/"/>
7211</ruleset>
7212<ruleset name="Sixxs.net">
7213  <target host="sixxs.net" />
7214  <target host="www.sixxs.net" />
7215
7216  <rule from="^http://(www\.)?sixxs\.net/" to="https://www.sixxs.net/" />
7217</ruleset>
7218<!-- This is a swedish insurance company -->
7219<ruleset name="Skandia">
7220        <target host="skandia.se" />
7221        <target host="www.skandia.se" />
7222        <rule from="^http://www\.skandia\.se/" to="https://www.skandia.se/"/>
7223        <rule from="^http://skandia\.se/" to="https://www.skandia.se/"/>
7224</ruleset>
7225
7226<ruleset name="Skandiabanken">
7227  <target host="skandiabanken.no" />
7228  <target host="www.skandiabanken.no" />
7229  <target host="secure.skandiabanken.no" />
7230  <target host="trader.skandiabanken.no" />
7231
7232        <rule from="^http://(www\.)?skandiabanken\.no/" to="https://www.skandiabanken.no/"/>
7233        <rule from="^http://secure\.skandiabanken\.no/" to="https://secure.skandiabanken.no/"/>
7234        <rule from="^http://trader\.skandiabanken\.no/" to="https://trader.skandiabanken.no/"/>
7235</ruleset>
7236<ruleset name="Slo-Tech">
7237  <target host="slo-tech.com" />
7238  <target host="www.slo-tech.com" />
7239  <target host="static.slo-tech.com" />
7240
7241  <rule from="^http://(www\.)?slo-tech\.com/"
7242          to="https://slo-tech.com/"/>
7243  <rule from="^http://static\.slo-tech\.com/"
7244          to="https://static.slo-tech.com/"/>
7245</ruleset>
7246<ruleset name="SlySoft" default_off="Cert warning">
7247  <target host="slysoft.com" />
7248  <target host="forum.slysoft.com" />
7249  <target host="www.slysoft.com" />
7250
7251  <rule from="^http://forum\.slysoft\.com/" to="https://forum.slysoft.com/"/>
7252  <rule from="^https?://(www\.)?slysoft\.com/" to="https://www.slysoft.com/"/>
7253</ruleset>
7254<ruleset name="snagajob">
7255  <target host="snagajob.com"/>
7256  <target host="www.snagajob.com"/>
7257  <target host="*.snagajob.com"/>
7258
7259  <securecookie host="^(.*\.)?snagajob.com$" name=".*" />
7260
7261  <rule from="^http://(www\.)?snagajob\.com/" to="https://www.snagajob.com/"/>
7262  <rule from="^http://media\.snagajob\.com/" to="https://media.snagajob.com/"/>
7263
7264  <!-- A 404 error is occured when answers and blog are forced to https -->
7265  <!-- Hence a exclusion is added to both of them -->
7266  <exclusion pattern="^http://www\.snagajob\.com/answers/" />
7267  <exclusion pattern="^http://www\.snagajob\.com/blog/" />
7268</ruleset>
7269<ruleset name="US SocialSecAdmin">
7270        <target host="socialsecurity.gov" />
7271        <target host="www.socialsecurity.gov" />
7272        <target host="secure.ssa.gov" />
7273        <target host="stats.ssa.gov" />
7274
7275        <rule from="^http://(www\.)?socialsecurity\.gov/" to="https://www.socialsecurity.gov/" />
7276        <rule from="^http://(secure|stats)\.ssa\.gov/" to="https://$1.ssa.gov/" />
7277</ruleset><ruleset name="SocietyForScience.org">
7278  <target host="www.societyforscience.org" />
7279  <target host="societyforscience.org" />
7280  <rule from="^http://www\.societyforscience\.org/" to="https://www.societyforscience.org/"/>
7281  <rule from="^http://societyforscience\.org/" to="https://societyforscience.org/"/>
7282</ruleset>
7283
7284<ruleset name="Sony-Europe.com">
7285        <target host="sp.sony-europe.com" />
7286        <target host="sony-europe.com" />
7287        <target host="www.sony-europe.com" />
7288        <rule from="^http://sp\.sony-europe\.com/" to="https://sp.sony-europe.com/"/>
7289        <rule from="^http://sony-europe\.com/" to="https://sony-europe.com/"/>
7290        <rule from="^http://www\.sony-europe\.com/" to="https://www.sony-europe.com/"/>
7291</ruleset>
7292
7293<ruleset name="Sony.se">
7294        <target host="sony.se" />
7295        <target host="www.sony.se" />
7296        <rule from="^http://www\.sony\.se/" to="https://www.sony.se/"/>
7297        <rule from="^http://sony\.se/" to="https://sony.se/"/>
7298</ruleset>
7299
7300<ruleset name="SouthernElectric">
7301  <target host="southern-electric.co.uk" />
7302  <target host="www.southern-electric.co.uk" />
7303
7304  <rule from="^http://(www\.)?southern-electric\.co\.uk/" to="https://www.southern-electric.co.uk/"/>
7305</ruleset>
7306<ruleset name="SpamGourmet">
7307  <target host="spamgourmet.com" />
7308  <target host="www.spamgourmet.com" />
7309
7310  <rule from="^http://spamgourmet\.com/" to="https://spamgourmet.com/"/>
7311  <rule from="^http://www\.spamgourmet\.com/" to="https://www.spamgourmet.com/"/>
7312</ruleset>
7313<ruleset name="Sparkfun">
7314  <target host="sparkfun.com" />
7315  <target host="www.sparkfun.com" />
7316  <target host="static.sparkfun.com" />
7317
7318  <rule from="^http://(www\.)?sparkfun\.com/" to="https://www.sparkfun.com/"/>
7319  <rule from="^http://static\.sparkfun\.com/" to="https://static.sparkfun.com/"/>
7320</ruleset>
7321<ruleset name="Sparkstudios.com">
7322  <target host="www.sparkstudios.com" />
7323  <target host="sparkstudios.com" />
7324  <rule from="^http://www\.sparkstudios\.com/" to="https://www.sparkstudios.com/"/>
7325  <rule from="^http://sparkstudios\.com/" to="https://www.sparkstudios.com/"/>
7326</ruleset>
7327
7328<ruleset name="Spin.de">
7329  <target host="spin.de" />
7330  <target host="www.spin.de" />
7331
7332  <rule from="^http://(www\.)?spin\.de/" to="https://www.spin.de/"/>
7333</ruleset>
7334<ruleset name="Springpad">
7335  <target host="springpadit.com" />
7336  <target host="www.springpadit.com" />
7337
7338  <rule from="^http://(www\.)?springpadit\.com/" to="https://springpadit.com/"/>
7339</ruleset>
7340<ruleset name="Spyderco">
7341  <target host="spyderco.com" />
7342  <target host="www.spyderco.com" />
7343
7344  <rule from="^http://(www\.)?spyderco\.com/" to="https://$1spyderco.com/"/>
7345</ruleset>
7346<ruleset name="Srware">
7347  <target host="srware.net"/>
7348  <target host="www.srware.net"/>
7349
7350  <securecookie host="^(.*\.)?srware.net$" name=".*" />
7351
7352  <rule from="^http://(www\.)?srware\.net/" to="https://www.srware.net/"/>
7353</ruleset>
7354<ruleset name="Stan Deyo" default_off="Certificate mismatch">
7355  <target host="www.standeyo.com" />
7356  <target host="standeyo.com" />
7357
7358  <rule from="^http://(www\.)?standeyo\.com/" to="https://standeyo.com/"/>
7359</ruleset>
7360<ruleset name="StartCom">
7361  <target host="startssl.com" />
7362  <target host="*.startssl.com" />
7363  <target host="startssl.net" />
7364  <target host="*.startssl.net" />
7365  <target host="startssl.org" />
7366  <target host="*.startssl.org" />
7367  <target host="startssl.eu" />
7368  <target host="*.startssl.eu" />
7369  <target host="startssl.us" />
7370  <target host="*.startssl.us" />
7371  <target host="startcom.org" />
7372  <target host="*.startcom.org" />
7373
7374  <!-- since these resources are required for establishing HTTPS connections,
7375       they need to be available over HTTP
7376  <Piet> OCSP: URI: http://ocsp.startssl.com/sub/class4/server/ca
7377  <Piet> CA Issuers: URI: http://www.startssl.com/certs/sub.class4.server.ca.crt
7378  <Piet> URI: http://www.startssl.com/crt4-crl.crl
7379  <Piet> URI: http://crl.startssl.com/crt4-crl.crl
7380  (and from the SSL observatory):
7381  http://cert.startcom.org/sfsca-crl.crl
7382  http://crl.startcom.org/sfsca-crl.crl
7383  http://crl.startssl.com/sfsca.crl
7384  http://cert.startcom.org/ca-crl.crl
7385  http://crl.startcom.org/crl/ca-crl.crl
7386  (and from Eddy Nigg):
7387  http://ocsp.startssl.com/*
7388  http://www.startssl.com/certs/*.crt
7389  http://www.startssl.com/*.crl
7390  http://crl.startssl.com/*.crl
7391  http://cert.startcom.org/*.crl
7392  http://cert.startcom.org/*.crt
7393  -->
7394  <exclusion pattern="ocsp\.startcom" />
7395  <exclusion pattern="ocsp\.startssl" />
7396  <exclusion pattern="\.crl$" />
7397  <exclusion pattern="\.crt$" />
7398
7399  <!-- should mitigate against exploitation of the above exclusions -->
7400  <securecookie host=".*" name=".*" />
7401
7402  <rule from="^http://(.*\.)?startssl\.(com|net|org|eu|us)/" to="https://$1startssl.$2/"/>
7403  <rule from="^http://(.*\.)?startcom\.org/" to="https://$1startcom.org/"/>
7404</ruleset>
7405<ruleset name="Statcounter">
7406  <target host="statcounter.com" />
7407  <target host="*.statcounter.com" />
7408  <exclusion pattern="^http://gs\.statcounter\.com/" />
7409<!-- cert warning -->
7410<!--  <target host="www.statcounter.com" /> -->
7411
7412  <rule from="^http://(www\.)?statcounter\.com/" to="https://statcounter.com/"/>
7413  <rule from="^http://([^/:@]+)\.statcounter\.com/" to="https://$1.statcounter.com/"/>
7414</ruleset>
7415
7416<ruleset name="StayFriends">
7417  <target host="stayfriends.de" />
7418  <target host="www.stayfriends.de" />
7419  <target host="stayfriends.at" />
7420  <target host="www.stayfriends.at" />
7421  <target host="stayfriends.ch" />
7422  <target host="www.stayfriends.ch" /> 
7423 
7424  <rule from="^http://(www\.)?stayfriends\.de/" to="https://www.stayfriends.de/"/>
7425  <rule from="^http://(www\.)?stayfriends\.at/" to="https://www.stayfriends.at/"/>
7426  <rule from="^http://(www\.)?stayfriends\.ch/" to="https://www.stayfriends.ch/"/>
7427</ruleset>
7428<ruleset name="Stevens" match_rule="http:.*\.stevens\.">
7429        <target host="*.stevens.edu" />
7430        <exclusion pattern="^http://(personal|www.math|www.cs|www.acc|guinness.cs|tarantula.phy|www.phy|tarantula.srcit|www.srcit|debian.srcit|ubuntu.srcit)\.stevens\.edu/.*" />
7431                <rule from="^http://([^/:@]*)\.stevens\.edu/"
7432                                  to="https://$1.stevens.edu/" />
7433</ruleset>
7434<ruleset name="Storebrand">
7435  <target host="storebrand.no" />
7436  <target host="www.storebrand.no" />
7437
7438  <rule from="^http://storebrand\.no/" to="https://www.storebrand.no/"/>
7439  <rule from="^http://www\.storebrand\.no/" to="https://www.storebrand.no/"/>
7440</ruleset>
7441
7442<ruleset name="StudiVZ (disabled)" default_off="Certificate mismatch">
7443  <target host="www.studivz.net" />
7444
7445  <rule from="^http://www\.studivz\.net/" to="https://www.studivz.net/"/>
7446</ruleset>
7447<ruleset name="StumbleUpon (breaks plugin)" default_off="Breaks the SU extension">
7448  <target host="stumbleupon.com" />
7449  <target host="www.stumbleupon.com" />
7450
7451  <rule from="^http://(www\.)?stumbleupon\.com/" to="https://www.stumbleupon.com/"/>
7452</ruleset>
7453<ruleset name="Sunbeltsoftware.com">
7454        <target host="sunbeltsoftware.com" />
7455        <target host="www.sunbeltsoftware.com" />
7456        <rule from="^http://www\.sunbeltsoftware\.com/" to="https://www.sunbeltsoftware.com/"/>
7457        <rule from="^http://sunbeltsoftware\.com/" to="https://www.sunbeltsoftware.com/"/>
7458</ruleset>
7459
7460<ruleset name="SuperAntiSpyware">
7461  <target host="www.superantispyware.com" />
7462  <target host="superantispyware.com" />
7463
7464  <rule from="^http://(www\.)?superantispyware\.com/" to="https://www.superantispyware.com/"/>
7465</ruleset>
7466<ruleset name="Superstart.se">
7467        <target host="superstart.se" />
7468        <target host="www.superstart.se" />
7469        <target host="static.superstart.se" />
7470        <rule from="^http://www\.superstart\.se/" to="https://www.superstart.se/"/>
7471        <rule from="^http://static\.superstart\.se/" to="https://static.superstart.se/"/>
7472        <rule from="^http://superstart\.se/" to="https://www.superstart.se/"/>
7473</ruleset>
7474
7475<ruleset name="SurveyMonkey (buggy)" default_off="breaks surveys!!!">
7476  <target host="surveymonkey.com" />
7477  <target host="www.surveymonkey.com" />
7478  <target host="secure.surveymonkey.com" />
7479
7480  <securecookie host="^(.+\.)?surveymonkey\.com$" name=".*"/>
7481
7482  <rule from="^http://surveymonkey\.com/" to="https://www.surveymonkey.com/"/>
7483  <rule from="^http://(www|secure)\.surveymonkey\.com/" to="https://$1.surveymonkey.com/"/>
7484</ruleset>
7485<ruleset name="Svenskakyrkan">
7486        <target host="svenskakyrkan.se" />
7487        <target host="www.svenskakyrkan.se" />
7488        <rule from="^http://svenskakyrkan\.se/" to="https://www.svenskakyrkan.se/"/>
7489        <rule from="^http://www\.svenskakyrkan\.se/" to="https://www.svenskakyrkan.se/"/>
7490</ruleset>
7491
7492<ruleset name="Svenskaspel.se">
7493  <target host="svenskaspel.se" />
7494  <rule from="^http://svenskaspel\.se/" to="https://svenskaspel.se/"/>
7495  <rule from="^http://www\.svenskaspel\.se/" to="https://svenskaspel.se/"/>
7496</ruleset>
7497
7498<!-- The swedish national radio -->
7499<ruleset name="SverigesRadio">
7500        <target host="sverigesradio.se" />
7501        <target host="www.sverigesradio.se" />
7502        <target host="sr.se" />
7503        <target host="www.sr.se" />
7504        <rule from="^http://www\.sverigesradio\.se/" to="https://sverigesradio.se/"/>
7505        <rule from="^http://sverigesradio\.se/" to="https://sverigesradio.se/"/>
7506        <rule from="^http://sr\.se/" to="https://sverigesradio.se/"/>
7507        <rule from="^http://www\.sr\.se/" to="https://sverigesradio.se/"/>
7508</ruleset>
7509
7510<ruleset name="Swiss.com">
7511  <target host="swiss.com"/>
7512  <target host="www.swiss.com"/>
7513  <target host="lsy-www.swiss.com"/>
7514  <target host="booking.swiss.com"/>
7515
7516  <rule from="^http://(www\.)?swiss\.com/" to="https://www.swiss.com/"/>
7517  <rule from="^http://lsy-www\.swiss\.com/" to="https://lsy-www.swiss.com/"/>
7518  <rule from="^http://booking\.swiss\.com/" to="https://booking.swiss.com/"/>
7519</ruleset>
7520<ruleset name="switch.ch">
7521  <target host="switch.ch"/>
7522  <target host="www.switch.ch"/>
7523
7524  <rule from="^http://(www\.)?switch\.ch/" to="https://www.switch.ch/"/>
7525</ruleset>
7526<ruleset name="Sydostran.se">
7527<target host="sydostran.se" />
7528<target host="www.sydostran.se" />
7529<rule from="^http://sydostran\.se/" to="https://www.sydostran.se/"/>
7530<rule from="^http://www\.sydostran\.se/" to="https://www.sydostran.se/"/>
7531</ruleset>
7532
7533<ruleset name="Symbian Foundation">
7534  <target host="developer.symbian.org" />
7535
7536  <rule from="^http://developer\.symbian\.org/" to="https://developer.symbian.org/" />
7537</ruleset>
7538
7539<ruleset name="System76.com">
7540  <target host="www.system76.com" />
7541  <target host="system76.com" />
7542  <rule from="^http://www\.system76\.com/" to="https://www.system76.com/"/>
7543  <rule from="^http://system76\.com/" to="https://www.system76.com/"/>
7544</ruleset>
7545
7546<ruleset name="Systembolaget.se">
7547        <target host="systembolaget.se" />
7548        <target host="www.systembolaget.se" />
7549        <exclusion pattern="^http://www\.systembolaget\.se/Butik\-\-Ombud/"/>
7550        <rule from="^http://systembolaget\.se/" to="https://www.systembolaget.se/"/>
7551        <rule from="^http://www\.systembolaget\.se/" to="https://www.systembolaget.se/"/>
7552</ruleset>
7553
7554<!-- Note that some services linked from the home page will be HTTP.
7555     Trying to force these to HTTPS currently (2010-05) seems to produce
7556     certificate errors. -->
7557
7558<ruleset name="Tmobile">
7559  <target host="t-mobile.com" />
7560  <target host="www.t-mobile.com" />
7561  <target host="my.t-mobile.com" />
7562  <target host="tmobile.com" />
7563  <target host="www.tmobile.com" />
7564  <target host="my.tmobile.com" />
7565  <target host="t-mobile.co.uk" />
7566  <target host="www.t-mobile.co.uk" />
7567  <target host="instantemail.t-mobile.co.uk"/>
7568  <target host="www.instantemail.t-mobile.co.uk"/>
7569  <target host="tmobileuk.blackberry.com"/>
7570  <target host="www.tmobileuk.blackberry.com"/>
7571  <target host="t-mobile.nl" />
7572  <target host="www.t-mobile.nl" />
7573  <target host="www.tmobile.nl" />
7574  <target host="tmobile.nl" />
7575  <target host="gsm.t-mobile.nl" />
7576
7577  <rule from="^http://(www\.)?t-mobile\.(com|nl)/" to="https://www.t-mobile.$2/"/>
7578  <rule from="^http://(www\.)?tmobile\.(com|nl)/" to="https://www.tmobile.$2/"/>
7579  <rule from="^http://my\.t-?mobile\.com/" to="https://my.t-mobile.com/"/>
7580  <rule from="^http://(www\.)?t-mobile\.co\.uk/" to="https://www.t-mobile.co.uk/" />
7581  <rule from="^http://(www\.)?tmobileuk\.blackberry\.com/" to="https://tmobileuk.blackberry.com/"/>
7582  <rule from="^http://(www\.)?instantemail\.t-mobile\.co\.uk/" to="https://tmobileuk.blackberry.com/"/>
7583  <rule from="^http://gsm\.t-mobile\.nl/" to="https://gsm.t-mobile.nl/"/>
7584</ruleset>
7585<ruleset name="TAZ">
7586  <target host="taz.de" />
7587  <target host="blogs.taz.de" />
7588  <target host="dl.taz.de" />
7589  <target host="www.taz.de" />
7590
7591  <rule from="^http://(www\.)?taz\.de/" to="https://www.taz.de/"/>
7592  <rule from="^http://blogs\.taz\.de/" to="https://blogs.taz.de/"/>
7593  <rule from="^http://dl\.taz\.de/" to="https://dl.taz.de/"/>
7594</ruleset>
7595<ruleset name="TD Canada Trust">
7596  <target host="tdcanadatrust.com" />
7597  <target host="www.tdcanadatrust.com" />
7598
7599  <rule from="^http://(www\.)?tdcanadatrust\.com/" to="https://www.tdcanadatrust.com/" />
7600</ruleset>
7601<ruleset name="TT.se">
7602<target host="tt.se" />
7603<target host="www.tt.se" />
7604<rule from="^http://tt\.se/" to="https://www.tt.se/"/>
7605<rule from="^http://www\.tt\.se/" to="https://www.tt.se/"/>
7606</ruleset>
7607
7608<!-- tv.com includes stuff from .com.com. which do NOT allow https :( -->
7609<ruleset name="TV.com (broken)" default_off="JS redirects back to HTTP">
7610        <target host="tv.com" />
7611        <target host="www.tv.com" />
7612
7613        <rule from="^http://tv\.com/" to="https://www.tv.com/"/>
7614        <rule from="^http://www\.tv\.com/" to="https://www.tv.com/"/>
7615</ruleset>
7616
7617<ruleset name="TV4play.se">
7618        <target host="tv4play.se" />
7619        <target host="www.tv4play.se" />
7620        <rule from="^http://www\.tv4play\.se/" to="https://www.tv4play.se/"/>
7621        <rule from="^http://tv4play\.se/" to="https://www.tv4play.se/"/>
7622</ruleset>
7623
7624<!-- tandlakarforbundet is a swedish labour union -->
7625<ruleset name="Tandlakarforbundet.se">
7626        <target host="tandlakarforbundet.se" />
7627        <target host="www.tandlakarforbundet.se" />
7628        <rule from="^http://tandlakarforbundet\.se/" to="https://www.tandlakarforbundet.se/"/>
7629        <rule from="^http://www\.tandlakarforbundet\.se/" to="https://www.tandlakarforbundet.se/"/>
7630</ruleset>
7631
7632<ruleset name="Target (broken)" default_off="Akamai cert problem">
7633  <target host="target.com" />
7634  <target host="www.target.com" />
7635  <target host="sites.target.com" />
7636
7637  <rule from="^http://(www\.)?target\.com/" to="https://www.target.com/"/>
7638  <rule from="^http://sites\.target\.com/" to="https://sites.target.com/"/>
7639</ruleset>
7640<ruleset name="Tchibo.de">
7641  <target host="tchibo.de"/>
7642  <target host="*.tchibo.de"/>
7643  <target host="*.tchibo-content.de"/>
7644
7645  <securecookie host="^(.*\.)?tchibo\.de$" name=".*" />
7646
7647  <rule from="^http://(www\.)?tchibo\.de/" to="https://www.tchibo.de/"/>
7648  <rule from="^http://tchibo\.de/" to="https://www.tchibo.de/"/>
7649  <rule from="^http://media1\.tchibo-content\.de/" to="https://media1.tchibo-content.de/"/>
7650  <rule from="^http://media2\.tchibo-content\.de/" to="https://media2.tchibo-content.de/"/>
7651  <rule from="^http://media3\.tchibo-content\.de/" to="https://media3.tchibo-content.de/"/>
7652  <rule from="^http://media4\.tchibo-content\.de/" to="https://media4.tchibo-content.de/"/>
7653  <rule from="^http://media5\.tchibo-content\.de/" to="https://media5.tchibo-content.de/"/>
7654  <rule from="^http://media6\.tchibo-content\.de/" to="https://media6.tchibo-content.de/"/>
7655  <rule from="^http://media7\.tchibo-content\.de/" to="https://media7.tchibo-content.de/"/>
7656  <rule from="^http://media8\.tchibo-content\.de/" to="https://media8.tchibo-content.de/"/>
7657  <rule from="^http://media9\.tchibo-content\.de/" to="https://media9.tchibo-content.de/"/>
7658</ruleset>
7659<ruleset name="Teamviewer">
7660  <target host="teamviewer.com"/>
7661  <target host="www.teamviewer.com"/>
7662  <target host="*.teamviewer.com"/>
7663
7664  <securecookie host="^(.*\.)?teamviewer.com$" name=".*" />
7665
7666  <rule from="^http://(www\.)?teamviewer\.com/" to="https://www.teamviewer.com/"/>
7667  <rule from="^http://login\.teamviewer\.com/" to="https://login.teamviewer.com/"/>
7668  <rule from="^http://wa103\.teamviewer\.com/" to="https://wa103.teamviewer.com/"/>
7669  <rule from="^http://wa236\.teamviewer\.com/" to="https://wa236.teamviewer.com/"/>
7670</ruleset>
7671<ruleset name="Teamxlink" default_off="Cert warning">
7672  <target host="teamxlink.co.uk" />
7673  <target host="www.teamxlink.co.uk" />
7674
7675  <rule from="^http://(www\.)?teamxlink\.co\.uk/" to="https://www.teamxlink.co.uk/"/>
7676</ruleset>
7677<ruleset name="Techcrunch" default_off="Cert warning">
7678  <target host="techcrunch.com" />
7679  <target host="www.techcrunch.com" />
7680
7681  <rule from="^http://(www\.)?techcrunch\.com/" to="https://techcrunch.com/"/>
7682</ruleset>
7683<!-- Technet.com redirects to technet.microsoft.com
7684which does not support SSL (301 redirect). blogs.technet.com however does.
7685-->
7686<ruleset name="Technet.com">
7687        <target host="blogs.technet.com" />
7688        <rule from="^http://blogs\.technet\.com/" to="https://blogs.technet.com/"/>
7689</ruleset>
7690<ruleset name="Techniker Krankenkasse">
7691<target host="www.tk.de" />
7692<target host="tk.de" />
7693<rule from="^http://(www\.)?tk\.de/" to="https://www.tk.de/"/>
7694</ruleset>
7695<ruleset name="TechnologyReview">
7696  <target host="technologyreview.com" />
7697  <target host="technologyreview.in" />
7698  <target host="www.technologyreview.com" />
7699  <target host="www.technologyreview.in" />
7700  <target host="subscribe.technologyreview.com" />
7701
7702  <securecookie host="^(.+\.)?technologyreview\.com$" name=".*"/>
7703  <securecookie host="^(.*\.)?technologyreview\.in$" name=".*" />
7704
7705  <rule from="^http://(www\.)?technologyreview\.com/" to="https://www.technologyreview.com/"/>
7706  <rule from="^http://(www\.)?technologyreview\.in/" to="https://www.technologyreview.in/"/>
7707  <rule from="^http://(subscribe)\.technologyreview\.com/" to="https://subscribe.technologyreview.com/"/>
7708</ruleset><ruleset name="Techsupportalert">
7709<target host="www.techsupportalert.com" />
7710<target host="techsupportalert.com" />
7711<rule from="^http://(www\.)?techsupportalert\.com/" to="https://www.techsupportalert.com/"/>
7712</ruleset><ruleset name="Tele2.se">
7713  <target host="www.tele2.se" />
7714  <target host="tele2.se" />
7715  <rule from="^http://www\.tele2\.se/" to="https://www.tele2.se/"/>
7716  <rule from="^http://tele2\.se/" to="https://www.tele2.se/"/>
7717</ruleset>
7718
7719<ruleset name="Telia.se">
7720  <target host="telia.se" />
7721  <target host="*.telia.se" />
7722  <rule from="^http://telia\.se/" to="https://www.telia.se/"/>
7723  <rule from="^http://www\.telia\.se/" to="https://www.telia.se/"/>
7724</ruleset>
7725
7726 <!-- Partial -->
7727<ruleset name="Tesco">
7728  <target host="tesco.com" />
7729  <target host="tescocompare.com" />
7730  <target host="tescofinance.com" />
7731  <target host="tescophoto.com" />
7732  <target host="tescodiets.com" />
7733  <target host="clothingattesco.com" />
7734  <target host="tescogetinvolved.com" />
7735  <target host="direct.tesco.com" />
7736  <target host="secure.tesco.com" />
7737  <target host="phone-shop.tesco.com" />
7738  <target host="www.tesco.com" />
7739  <target host="www.clothingattesco.com" />
7740  <target host="www.tescocompare.com" />
7741  <target host="www.tescofinance.com" />
7742  <target host="www.tescophoto.com" />
7743  <target host="www.tescodiets.com" />
7744  <target host="www.tescogetinvolved.com" />
7745
7746  <securecookie host="^(.*\.)?tescofinance\.com$" name=".*" />
7747  <securecookie host="^(.*\.)?tescocompare\.com$" name=".*" />
7748  <securecookie host="^(.*\.)?clothingattesco\.com$" name=".*" />
7749  <securecookie host="^(.*\.)?tescophoto\.com$" name=".*" />
7750  <securecookie host="^(.*\.)?tescodiets\.com$" name=".*" />
7751  <securecookie host="^(.*\.)?tescogetinvolved\.com$" name=".*" />
7752
7753  <rule from="^http://(www\.)?tescocompare\.com/" to="https://www.tescocompare.com/"/>
7754  <rule from="^http://(www\.)?tescofinance\.com/" to="https://www.tescofinance.com/"/>
7755  <rule from="^http://(www\.)?tescophoto\.com/" to="https://www.tescophoto.com/"/>
7756  <rule from="^http://(www\.)?tescodiets\.com/" to="https://www.tescodiets.com/"/>
7757  <rule from="^http://(www\.)?tescogetinvolved\.com/" to="https://www.tescogetinvolved.com/"/>
7758  <rule from="^http://(www\.)?clothingattesco\.com/" to="https://www.clothingattesco.com/"/>
7759
7760  <rule from="^http://(secure|direct|phone-shop)\.tesco\.com/" to="https://$1.tesco.com/"/>
7761
7762        <rule from="^http://(www\.)?tesco\.com/books/"
7763                        to="https://secure.tesco.com/books/"/>
7764        <rule from="^http://(www\.)?tesco\.com/groceries/"
7765                        to="https://secure.tesco.com/groceries/"/>
7766        <rule from="^http://(www\.)?tesco\.com/whatsinstore/"
7767                        to="https://secure.tesco.com/whatsinstore/"/>
7768</ruleset>
7769<ruleset name="TheAA">
7770  <target host="theaa.com" />
7771  <target host="www.theaa.com" />
7772
7773  <rule from="^http://(www\.)?theaa\.com/" to="https://www.theaa.com/"/>
7774</ruleset>
7775<ruleset name="The Book Depository">
7776  <target host="bookdepository.co.uk" />
7777  <target host="www.bookdepository.co.uk" />
7778  <target host="images.bookdepository.co.uk" />
7779  <target host="cache0.bookdepository.co.uk" />
7780  <target host="cache1.bookdepository.co.uk" />
7781  <target host="cache2.bookdepository.co.uk" />
7782  <target host="cache3.bookdepository.co.uk" />
7783
7784  <rule from="^http://bookdepository\.co\.uk/" to="https://bookdepository.co.uk/" />
7785  <rule from="^http://(cache0|cache1|cache2|cache3|images|www)\.bookdepository\.co\.uk/" to="https://$1.bookdepository.co.uk/" />
7786</ruleset><ruleset name="The Book People">
7787  <target host="thebookpeople.co.uk" />
7788  <target host="images.thebookpeople.co.uk" />
7789  <target host="www.thebookpeople.co.uk" />
7790
7791  <rule from="^http://(www\.)?thebookpeople\.co\.uk/" to="https://www.thebookpeople.co.uk/" />
7792  <rule from="^http://images\.thebookpeople\.co\.uk/" to="https://images.thebookpeople.co.uk/" />
7793</ruleset><ruleset name="The Document Foundation">
7794
7795        <target host="www.documentfoundation.org" />
7796        <target host="documentfoundation.org" />
7797
7798        <rule from="^http://(www\.)?documentfoundation\.org/" to="https://www.documentfoundation.org/"/>
7799</ruleset><ruleset name="The Privacy Blog">
7800  <target host="www.theprivacyblog.com" />
7801  <target host="theprivacyblog.com" />
7802
7803  <rule from="^http://(www\.)?theprivacyblog\.com/" to="https://www.theprivacyblog.com/"/>
7804</ruleset>
7805<ruleset name="ThinkGeek">
7806        <target host="thinkgeek.com" />
7807        <target host="www.thinkgeek.com" />
7808
7809        <rule from="^http://(www\.)?thinkgeek\.com/" to="https://www.thinkgeek.com/"/>
7810        <securecookie host="^(.*\.)?thinkgeek\.com$" name=".*" />
7811</ruleset>
7812<ruleset name="ThisIsMyNext">
7813  <target host="thisismynext.com" />
7814  <target host="www.thisismynext.com" />
7815
7816  <securecookie host="^(.+\.)?thisismynext\.com$" name=".*"/>
7817
7818  <rule from="^http://(www\.)?thisismynext\.com/" to="https://thisismynext.com/"/>
7819</ruleset>
7820<ruleset name="ThreatPost">
7821  <target host="threatpost.com" />
7822  <target host="www.threatpost.com" />
7823
7824  <securecookie host="^(.+\.)?threatpost\.com$" name=".*"/>
7825
7826  <rule from="^http://(www\.)?threatpost\.com/" to="https://threatpost.com/"/>
7827</ruleset><ruleset name="Three">
7828  <target host="three.ie" />
7829  <target host="www.three.ie" />
7830  <target host="threestore.three.co.uk" />
7831
7832  <rule from="^http://(www\.)?three\.ie/" to="https://www.three.ie/"/>
7833  <rule from="^http://threestore\.three\.co\.uk/" to="https://threestore.three.co.uk/"/>
7834</ruleset>
7835<ruleset name="Thunder Ranch">
7836  <target host="thunderranchinc.com" />
7837  <target host="www.thunderranchinc.com" />
7838
7839  <rule from="^http://(www\.)?thunderranchinc\.com/" to="https://www.thunderranchinc.com/"/>
7840</ruleset>
7841<ruleset name="Timbro.se">
7842        <target host="timbro.se" />
7843        <target host="www.timbro.se" />
7844        <rule from="^http://www\.timbro\.se/" to="https://www.timbro.se/"/>
7845        <rule from="^http://timbro\.se/" to="https://timbro.se/"/>
7846</ruleset>
7847
7848<ruleset name="TinEye">
7849  <target host="www.tineye.com" />
7850  <target host="tineye.com" />
7851  <target host="pixid.ideeinc.com" />
7852
7853  <rule from="^http://(www\.)?tineye\.com/" to="https://www.tineye.com/"/>
7854  <rule from="^http://(www\.)?pixid\.ideeinc\.com/" to="https://pixid.ideeinc.com/"/>
7855</ruleset>
7856<ruleset name="Tmcnet.com">
7857  <target host="www.tmcnet.com" />
7858  <target host="tmcnet.com" />
7859  <rule from="^http://www\.tmcnet\.com/" to="https://www.tmcnet.com/"/>
7860  <rule from="^http://tmcnet\.com/" to="https://tmcnet.com/"/>
7861</ruleset>
7862
7863<ruleset name="Todoist">
7864  <target host="todoist.com" />
7865
7866  <rule from="^http://(www\.)?todoist\.com/" to="https://todoist.com/"/>
7867</ruleset>
7868<ruleset name="TodoLy">
7869  <target host="todo.ly"/>
7870  <target host="www.todo.ly"/>
7871
7872  <securecookie host="^(.+\.)?todo\.ly$" name=".*"/>
7873
7874  <rule from="^http://(www\.)?todo\.ly/" to="https://todo.ly/"/>
7875</ruleset>
7876<ruleset name="TofinoSecurity">
7877  <target host="www.tofinosecurity.com" />
7878  <target host="tofinosecurity.com" />
7879
7880  <rule from="^http://(www\.)?tofinosecurity\.com/" to="https://www.tofinosecurity.com/"/>
7881</ruleset>
7882<ruleset name="Tor2Web">
7883  <target host="*.tor2web.com" />
7884  <target host="*.tor2web.org" />
7885  <!-- the home page is not yet working
7886  <target host="tor2web.*" />
7887  -->
7888
7889  <rule from="^http://([^/]+)\.tor2web\.(org|com)/" to="https://$1.tor2web.org/"/>
7890  <!-- just in case -->
7891  <rule from="^https://([^/]+)\.tor2web\.com/" to="https://$1.tor2web.org/"/>
7892</ruleset>
7893<ruleset name="Torproject">
7894  <target host="torproject.org" />
7895  <target host="*.torproject.org" />
7896
7897  <exclusion pattern="^http://archive\.torproject\.org/"/>
7898  <exclusion pattern="^http://media\.torproject\.org/"/>
7899  <exclusion pattern="^http://deb\.torproject\.org/"/>
7900  <exclusion pattern="^http://torperf\.torproject\.org/"/>
7901  <rule from="^http://torproject\.org/" to="https://torproject.org/"/>
7902  <rule from="^http://([^/:@]*)\.torproject\.org/" to="https://$1.torproject.org/"/>
7903</ruleset>
7904<ruleset name="TorrentFreak.com">
7905        <target host="torrentfreak.com" />
7906        <target host="www.torrentfreak.com" />
7907        <rule from="^http://www\.torrentfreak\.com/" to="https://www.torrentfreak.com/"/>
7908        <rule from="^http://torrentfreak\.com/" to="https://www.torrentfreak.com/"/>
7909</ruleset>
7910
7911<ruleset name="Torrentz">
7912  <target host="www.torrentz.com" />
7913  <target host="www.torrentz.eu" />
7914  <target host="www.torrentz.me" />
7915  <target host="torrentz.com" />
7916  <target host="torrentz.eu" />
7917  <target host="torrentz.me" />
7918
7919  <rule from="^http(s)?://(www\.)?torrentz\.(com|me)/" to="https://torrentz.eu/"/>
7920  <rule from="^http://(www\.)?torrentz\.eu/" to="https://torrentz.eu/"/>
7921</ruleset><ruleset name="Torservers">
7922<target host="www.torservers.net" />
7923<target host="torservers.net" />
7924<rule from="^http://(www\.)?torservers\.net/" to="https://www.torservers.net/"/>
7925</ruleset>
7926<ruleset name="Tradera">
7927        <target host="tradera.com" />
7928        <target host="*.tradera.com" />
7929        <target host="tradera.se" />
7930        <target host="*.tradera.se" />
7931        <rule from="^http://tradera\.se/" to="https://www.tradera.com/"/>
7932        <rule from="^http://www\.tradera\.se/" to="https://www.tradera.com/"/>
7933        <rule from="^http://tradera\.com/" to="https://www.tradera.com/"/>
7934        <rule from="^http://www\.tradera\.com/" to="https://www.tradera.com/"/>
7935</ruleset>
7936
7937<ruleset name="Trafficfacts.com">
7938        <target host="rt.trafficfacts.com" />
7939
7940        <rule from="^http://rt\.trafficfacts\.com/" to="https://rt.trafficfacts.com/" />
7941</ruleset><ruleset name="Transifex.net">
7942  <target host="transifex.net" />
7943  <target host="www.transifex.net" />
7944
7945  <rule from="^http://(www\.)?transifex\.net/" to="https://www.transifex.net/" />
7946</ruleset>
7947<ruleset name="Translatewiki.net">
7948  <target host="translatewiki.net" />
7949  <target host="www.translatewiki.net" />
7950
7951  <rule from="^http://(www\.)?translatewiki\.net/" to="https://translatewiki.net/" />
7952</ruleset><ruleset name="Transportstyrelsen.se">
7953        <target host="transportstyrelsen.se" />
7954        <target host="www.transportstyrelsen.se" />
7955        <rule from="^http://www\.transportstyrelsen\.se/" to="https://www.transportstyrelsen.se/"/>
7956        <rule from="^http://transportstyrelsen\.se/" to="https://transportstyrelsen.se/"/>
7957</ruleset>
7958
7959<ruleset name="Trashmail">
7960  <target host="trashmail.net" />
7961  <target host="www.trashmail.net" />
7962
7963  <rule from="^http://(www\.)?trashmail\.net/" to="https://ssl.trashmail.net/"/>
7964</ruleset>
7965<ruleset name="Trisquel">
7966  <target host="trisquel.info" />
7967  <target host="www.trisquel.info" />
7968
7969  <rule from="^http://(www\.)?trisquel\.info/" to="https://trisquel.info/" />
7970</ruleset><ruleset name="TunnelBroker" default_off="self-signed">
7971  <target host="tunnelbroker.net" />
7972  <target host="*.tunnelbroker.net" />
7973
7974  <rule from="^http://tunnelbroker\.net/" to="https://tunnelbroker.net/"/>
7975  <rule from="^http://([^/:@]*)\.tunnelbroker\.net/" to="https://$1.tunnelbroker.net/"/>
7976</ruleset>
7977<ruleset name="Turn.com">
7978        <target host="r.turn.com" />
7979
7980        <rule from="^http://r\.turn\.com/" to="https://r.turn.com/" />
7981</ruleset><ruleset name="Tweetdeck">
7982  <target host="tweetdeck.com" />
7983  <target host="www.tweetdeck.com" />
7984
7985  <exclusion pattern="^http://support\.tweetdeck\.com/"/><!-- cert for wrong domain -->
7986  <rule from="^http://(www\.)?tweetdeck\.com/" to="https://www.tweetdeck.com/"/>
7987</ruleset>
7988<!-- Image contents may be protected via S3 rule? -->
7989
7990<ruleset name="TwitPic">
7991  <target host="twitpic.com" />
7992  <target host="www.twitpic.com" />
7993
7994  <rule from="^http://(www\.)?twitpic\.com/" to="https://twitpic.com/"/>
7995</ruleset>
7996<!-- The third rule here rewrites profile picture URLs to follow a
7997     pattern that Twitter currently uses itself, but inconsistently.
7998     Using this pattern now makes most user pages load successfully
7999     in HTTPS instead of giving a mixed content warning. -->
8000
8001<!-- There are still some hosts that things get loaded from that can't
8002     be safely rewritten without triggering a certificate error.
8003     E.g. platform.twitter.com has some scripts, but the https version
8004     won't validate. -->
8005
8006<!-- The twimg rule triggers the favicon bug a lot but it's not clear
8007     that it makes the site unusable or particularly broken. -->
8008
8009<ruleset name="Twitter">
8010  <target host="*.twitter.com" />
8011  <target host="twitter.com" />
8012  <target host="*.twimg.com" />
8013
8014  <securecookie host="^(.*\.)?twitter\.com$" name=".*" />
8015
8016  <rule from="^http://(www\.)?twitter\.com/" to="https://twitter.com/"/>
8017  <rule from="^http://(business|dev|mobile|search|static|support)\.twitter\.com/" to="https://$1.twitter.com/"/>
8018  <rule from="^http://[a-z0-9][^@:/]?\.twimg\.com/" to="https://s3.amazonaws.com/twitter_production/"/>
8019</ruleset>
8020<ruleset name="Typepad">
8021  <target host="typepad.com" />
8022  <target host="www.typepad.com" />
8023
8024  <rule from="^http://(www\.)?typepad\.com/" to="https://www.typepad.com/"/>
8025</ruleset>
8026<ruleset name="U-blox.com" default_off="Cert problem">
8027  <target host="www.u-blox.com" />
8028  <target host="u-blox.com" />
8029  <rule from="^http://www\.u-blox\.com/" to="https://www.u-blox.com/"/>
8030  <rule from="^http://u-blox\.com/" to="https://www.u-blox.com/"/>
8031</ruleset>
8032
8033<!-- only cs seems to give back correct content :/ -->
8034<ruleset name="UCSB.edu">
8035        <target host="www.cs.ucsb.edu" />
8036        <rule from="^http://www\.cs\.ucsb\.edu/" to="https://www.cs.ucsb.edu/"/>
8037</ruleset>
8038
8039<!-- only www-cse seems to give back correct content :/ -->
8040<ruleset name="UCSD.edu">
8041        <target host="www-cse.ucsd.edu" />
8042        <rule from="^http://www-cse\.ucsd\.edu/" to="https://www-cse.ucsd.edu/"/>
8043</ruleset>
8044
8045<ruleset name="UK Local Government">
8046  <!--
8047    These are rules for local government in the UK.
8048    Council websites are foo.gov.uk domains.
8049    Often there are additional subdomains, for specific departments / apps
8050      eg: planning.southend.gov.uk, essexlibraries.essexcc.gov.uk
8051    There's no exhaustive list of subdomains, but local councils are listed at:
8052      http://www.direct.gov.uk/en/Dl1/Directories/Localcouncils/DG_4003594
8053  -->
8054
8055  <!-- special and unusual cases go at the top to avoid the catch-all rule below -->
8056
8057  <target host="www.hinckleyandbosworthonline.org.uk"/><target host="hinckleyandbosworthonline.org.uk"/>
8058  <target host="www.hinckley-bosworth.gov.uk"/><target host="hinckley-bosworth.gov.uk"/>
8059  <rule from="^http://(www\.)?(hinckleyandbosworthonline\.org\.uk|hinckley\-bosworth\.gov\.uk)/" to="https://www.hinckley-bosworth.gov.uk/"/>
8060
8061  <target host="apps.southend.gov.uk"/>
8062  <rule from="^http://apps\.southend\.gov\.uk/" to="https://apps.southend.gov.uk/"/>
8063
8064  <!-- a small number require redirect to secure.example.gov.uk -->
8065
8066  <target host="broadland.gov.uk"/><target host="www.broadland.gov.uk"/>
8067  <target host="manchester.gov.uk"/><target host="www.manchester.gov.uk"/>
8068  <target host="monmouthshire.gov.uk"/><target host="www.monmouthshire.gov.uk"/>
8069  <target host="northwarks.gov.uk"/><target host="www.northwarks.gov.uk"/>
8070  <rule
8071    from="^http://(?:www\.)?(broadland\.gov\.uk|kettering\.gov\.uk|manchester\.gov\.uk|monmouthshire\.gov\.uk|northwarks\.gov\.uk)/"
8072    to="https://secure.$1/"/>
8073
8074  <!-- all the remainder use www.example.gov.uk as http and https -->
8075
8076  <target host="aberdeencity.gov.uk"/><target host="www.aberdeencity.gov.uk"/>
8077  <target host="aberdeenshire.gov.uk"/><target host="www.aberdeenshire.gov.uk"/>
8078  <target host="angus.gov.uk"/><target host="www.angus.gov.uk"/>
8079  <target host="bassetlaw.gov.uk"/><target host="www.bassetlaw.gov.uk"/>
8080  <target host="bathnes.gov.uk"/><target host="www.bathnes.gov.uk"/>
8081  <target host="blackpool.gov.uk"/><target host="www.blackpool.gov.uk"/>
8082  <target host="bournemouth.gov.uk"/><target host="www.bournemouth.gov.uk"/>
8083  <target host="bradford.gov.uk"/><target host="www.bradford.gov.uk"/>
8084  <target host="braintree.gov.uk"/><target host="www.braintree.gov.uk"/>
8085  <target host="brent.gov.uk"/><target host="www.brent.gov.uk"/>
8086  <target host="burnley.gov.uk"/><target host="www.burnley.gov.uk"/>
8087  <target host="calderdale.gov.uk"/><target host="www.calderdale.gov.uk"/>
8088  <target host="camden.gov.uk"/><target host="www.camden.gov.uk"/>
8089  <target host="canterbury.gov.uk"/><target host="www.canterbury.gov.uk"/>
8090  <target host="ceredigion.gov.uk"/><target host="www.ceredigion.gov.uk"/>
8091  <target host="charnwood.gov.uk"/><target host="www.charnwood.gov.uk"/>
8092  <target host="cherwell.gov.uk"/><target host="www.cherwell.gov.uk"/>
8093  <target host="cheshireeast.gov.uk"/><target host="www.cheshireeast.gov.uk"/>
8094  <target host="cityoflondon.gov.uk"/><target host="www.cityoflondon.gov.uk"/>
8095  <target host="derby.gov.uk"/><target host="www.derby.gov.uk"/>
8096  <target host="devon.gov.uk"/><target host="www.devon.gov.uk"/>
8097  <target host="doncaster.gov.uk"/><target host="www.doncaster.gov.uk"/>
8098  <target host="dover.gov.uk"/><target host="www.dover.gov.uk"/>
8099  <target host="dudley.gov.uk"/><target host="www.dudley.gov.uk"/>
8100  <target host="dundeecity.gov.uk"/><target host="www.dundeecity.gov.uk"/>
8101  <target host="easthants.gov.uk"/><target host="www.easthants.gov.uk"/>
8102  <target host="eastlothian.gov.uk"/><target host="www.eastlothian.gov.uk"/>
8103  <target host="east-northamptonshire.gov.uk"/><target host="www.east-northamptonshire.gov.uk"/>
8104  <target host="eastriding.gov.uk"/><target host="www.eastriding.gov.uk"/>
8105  <target host="edinburgh.gov.uk"/><target host="www.edinburgh.gov.uk"/>
8106  <target host="elmbridge.gov.uk"/><target host="www.elmbridge.gov.uk"/>
8107  <target host="enfield.gov.uk"/><target host="www.enfield.gov.uk"/>
8108  <target host="essex.gov.uk"/><target host="www.essex.gov.uk"/>
8109  <target host="falkirk.gov.uk"/><target host="www.falkirk.gov.uk"/>
8110  <target host="fareham.gov.uk"/><target host="www.fareham.gov.uk"/>
8111  <target host="fenland.gov.uk"/><target host="www.fenland.gov.uk"/>
8112  <target host="fifedirect.org.uk"/><target host="www.fifedirect.org.uk"/>
8113  <target host="fylde.gov.uk"/><target host="www.fylde.gov.uk"/>
8114  <target host="gateshead.gov.uk"/><target host="www.gateshead.gov.uk"/>
8115  <target host="glasgow.gov.uk"/><target host="www.glasgow.gov.uk"/>
8116  <target host="gloucestershire.gov.uk"/><target host="www.gloucestershire.gov.uk"/>
8117  <target host="hackney.gov.uk"/><target host="www.hackney.gov.uk"/>
8118  <target host="hants.gov.uk"/><target host="www.hants.gov.uk"/>
8119  <target host="hastings.gov.uk"/><target host="www.hastings.gov.uk"/>
8120  <target host="herefordshire.gov.uk"/><target host="www.herefordshire.gov.uk"/>
8121  <target host="hertsdirect.org"/><target host="www.hertsdirect.org"/>
8122  <target host="hillingdon.gov.uk"/><target host="www.hillingdon.gov.uk"/>
8123  <target host="ipswich.gov.uk"/><target host="www.ipswich.gov.uk"/>
8124  <target host="islington.gov.uk"/><target host="www.islington.gov.uk"/>
8125  <target host="iwight.com"/><target host="www.iwight.com"/>
8126  <target host="kent.gov.uk"/><target host="www.kent.gov.uk"/>
8127  <target host="kettering.gov.uk"/><target host="www.kettering.gov.uk"/>
8128  <target host="kirklees.gov.uk"/><target host="www.kirklees.gov.uk"/>
8129  <target host="lbhf.gov.uk"/><target host="www.lbhf.gov.uk"/>
8130  <target host="leicestershire.gov.uk"/><target host="www.leicestershire.gov.uk"/>
8131  <target host="lincolnshire.gov.uk"/><target host="www.lincolnshire.gov.uk"/>
8132  <target host="london.gov.uk"/><target host="www.london.gov.uk"/>
8133  <target host="maidstone.gov.uk"/><target host="www.maidstone.gov.uk"/>
8134  <target host="merton.gov.uk"/><target host="www.merton.gov.uk"/>
8135  <target host="midlothian.gov.uk"/><target host="www.midlothian.gov.uk"/>
8136  <target host="miltonkeynes.gov.uk"/><target host="www.miltonkeynes.gov.uk"/>
8137  <target host="newcastle.gov.uk"/><target host="www.newcastle.gov.uk"/>
8138  <target host="n-kesteven.gov.uk"/><target host="www.n-kesteven.gov.uk"/>
8139  <target host="northdown.gov.uk"/><target host="www.northdown.gov.uk"/>
8140  <target host="north-herts.gov.uk"/><target host="www.north-herts.gov.uk"/>
8141  <target host="northnorfolk.org"/><target host="www.northnorfolk.org"/>
8142  <target host="nottinghamshire.gov.uk"/><target host="www.nottinghamshire.gov.uk"/>
8143  <target host="n-somerset.gov.uk"/><target host="www.n-somerset.gov.uk"/>
8144  <target host="pendle.gov.uk"/><target host="www.pendle.gov.uk"/>
8145  <target host="peterborough.gov.uk"/><target host="www.peterborough.gov.uk"/>
8146  <target host="reading.gov.uk"/><target host="www.reading.gov.uk"/>
8147  <target host="redbridge.gov.uk"/><target host="www.redbridge.gov.uk"/>
8148  <target host="ribblevalley.gov.uk"/><target host="www.ribblevalley.gov.uk"/>
8149  <target host="richmondshire.gov.uk"/><target host="www.richmondshire.gov.uk"/>
8150  <target host="rochford.gov.uk"/><target host="www.rochford.gov.uk"/>
8151  <target host="rossendale.gov.uk"/><target host="www.rossendale.gov.uk"/>
8152  <target host="rother.gov.uk"/><target host="www.rother.gov.uk"/>
8153  <target host="rotherham.gov.uk"/><target host="www.rotherham.gov.uk"/>
8154  <target host="rugby.gov.uk"/><target host="www.rugby.gov.uk"/>
8155  <target host="ryedale.gov.uk"/><target host="www.ryedale.gov.uk"/>
8156  <target host="scotborders.gov.uk"/><target host="www.scotborders.gov.uk"/>
8157  <target host="sevenoaks.gov.uk"/><target host="www.sevenoaks.gov.uk"/>
8158  <target host="sheffield.gov.uk"/><target host="www.sheffield.gov.uk"/>
8159  <target host="slough.gov.uk"/><target host="www.slough.gov.uk"/>
8160  <target host="solihull.gov.uk"/><target host="www.solihull.gov.uk"/>
8161  <target host="somerset.gov.uk"/><target host="www.somerset.gov.uk"/>
8162  <target host="southampton.gov.uk"/><target host="www.southampton.gov.uk"/>
8163  <target host="southend.gov.uk"/><target host="www.southend.gov.uk"/>
8164  <target host="southglos.gov.uk"/><target host="www.southglos.gov.uk"/>
8165  <target host="southlanarkshire.gov.uk"/><target host="www.southlanarkshire.gov.uk"/>
8166  <target host="southwark.gov.uk"/><target host="www.southwark.gov.uk"/>
8167  <target host="staffordshire.gov.uk"/><target host="www.staffordshire.gov.uk"/>
8168  <target host="staffsmoorlands.gov.uk"/><target host="www.staffsmoorlands.gov.uk"/>
8169  <target host="stirling.gov.uk"/><target host="www.stirling.gov.uk"/>
8170  <target host="tandridge.gov.uk"/><target host="www.tandridge.gov.uk"/>
8171  <target host="tauntondeane.gov.uk"/><target host="www.tauntondeane.gov.uk"/>
8172  <target host="threerivers.gov.uk"/><target host="www.threerivers.gov.uk"/>
8173  <target host="tmbc.gov.uk"/><target host="www.tmbc.gov.uk"/>
8174  <target host="torbay.gov.uk"/><target host="www.torbay.gov.uk"/>
8175  <target host="uttlesford.gov.uk"/><target host="www.uttlesford.gov.uk"/>
8176  <target host="valeofglamorgan.gov.uk"/><target host="www.valeofglamorgan.gov.uk"/>
8177  <target host="walthamforest.gov.uk"/><target host="www.walthamforest.gov.uk"/>
8178  <target host="warrington.gov.uk"/><target host="www.warrington.gov.uk"/>
8179  <target host="wellingborough.gov.uk"/><target host="www.wellingborough.gov.uk"/>
8180  <target host="westdevon.gov.uk"/><target host="www.westdevon.gov.uk"/>
8181  <target host="west-lindsey.gov.uk"/><target host="www.west-lindsey.gov.uk"/>
8182  <target host="westminster.gov.uk"/><target host="www.westminster.gov.uk"/>
8183  <target host="westoxon.gov.uk"/><target host="www.westoxon.gov.uk"/>
8184  <target host="westsussex.gov.uk"/><target host="www.westsussex.gov.uk"/>
8185  <target host="wigan.gov.uk"/><target host="www.wigan.gov.uk"/>
8186  <target host="wirral.gov.uk"/><target host="www.wirral.gov.uk"/>
8187  <target host="wolverhampton.gov.uk"/><target host="www.wolverhampton.gov.uk"/>
8188  <!--
8189  These are self-signed, but probably still work:
8190  <target host="coventry.gov.uk"/><target host="www.coventry.gov.uk"/>
8191  <target host="hartlepool.gov.uk"/><target host="www.hartlepool.gov.uk"/>
8192  <target host="lewes.gov.uk"/><target host="www.lewes.gov.uk"/>
8193  <target host="newcastle-staffs.gov.uk"/><target host="www.newcastle-staffs.gov.uk"/>
8194  <target host="telford.gov.uk"/><target host="www.telford.gov.uk"/>
8195  -->
8196
8197  <rule
8198    from="^http://(?:www\.)?([^/]+)/"
8199    to="https://www.$1/"/>
8200
8201  <!-- place additional rules at the top if you wish to avoid the catch-all rule above -->
8202</ruleset>
8203<ruleset name="UN.org">
8204        <target host="www.un.org" />
8205        <target host="un.org" />
8206        <rule from="^http://un\.org/" to="https://un.org/"/>
8207        <rule from="^http://www\.un\.org/" to="https://www.un.org/"/>
8208</ruleset>
8209
8210<ruleset name="UNFPA.org">
8211        <target host="www.unfpa.org" />
8212        <target host="unfpa.org" />
8213        <rule from="^http://www\.unfpa\.org/" to="https://www.unfpa.org/"/>
8214        <rule from="^http://unfpa\.org/" to="https://www.unfpa.org/"/>
8215</ruleset>
8216
8217<ruleset name="UNIDO.org">
8218        <target host="www.unido.org" />
8219        <rule from="^http://www\.unido\.org/" to="https://www.unido.org/"/>
8220</ruleset>
8221
8222<ruleset name="UNM">
8223  <target host="unm.edu" />
8224  <target host="www.unm.edu" />
8225  <target host="ece.unm.edu" />
8226  <target host="www.ece.unm.edu" />
8227
8228  <rule from="^http://(www\.)?unm\.edu/" to="https://www.unm.edu/"/>
8229  <rule from="^http://(www\.)?ece\.unm\.edu/" to="https://www.ece.unm.edu/"/>
8230</ruleset>
8231<ruleset name="UNODC.org">
8232        <target host="www.unodc.org" />
8233        <target host="unodc.org" />
8234        <rule from="^http://www\.unodc\.org/" to="https://www.unodc.org/"/>
8235        <rule from="^http://unodc\.org/" to="https://www.unodc.org/"/>
8236</ruleset>
8237
8238<ruleset name="UOregon (Partial!)">
8239  <target host="*.uoregon.edu" />
8240  <rule from="^http://(oregoncis|blackboard|distanceeducation|counseling|duckweb|hr2|ir|it|pcs|budgetmotel|brp|libweb|lcb|odt|scholarsbank|wiki|systems\.cs|www2\.lcb|www\.(cs|law|lcb))\.uoregon\.edu/"
8241          to="https://$1.uoregon.edu/"/>
8242  <rule from="^http://(ba|safetyweb)\.uoregon\.edu/sites/"
8243          to="https://$1.uoregon.edu/sites/"/>
8244  <rule from="^http://parking\.uoregon\.edu/(sites|misc|_images)/"
8245          to="https://parking.uoregon.edu/$1/"/>
8246         
8247</ruleset>
8248
8249<ruleset name="UPC">
8250  <target host="*.upc.nl" />
8251
8252  <rule from="^http://(www\.)?upc\.nl/" to="https://www.upc.nl/"/>
8253</ruleset><ruleset name="UPU.int">
8254        <target host="www.upu.int" />
8255        <target host="upu.int" />
8256        <rule from="^http://www\.upu\.int/" to="https://www.upu.int/"/>
8257        <rule from="^http://upu\.int/" to="https://www.upu.int/"/>
8258</ruleset>
8259
8260<ruleset name="US Congressional Budget Office">
8261        <target host="cbo.gov" />
8262        <target host="www.cbo.gov" />
8263
8264        <rule from="^http://(www\.)?cbo\.gov/" to="https://www.cbo.gov/" />
8265</ruleset><ruleset name="USBank">
8266<target host="usbank.com" />
8267<target host="www.usbank.com" />
8268
8269<rule from="^http://(www\.)?usbank\.com/" to="https://www.usbank.com/"/>
8270</ruleset>
8271
8272<ruleset name="USDA-ARS">
8273  <target host="ars.usda.gov" />
8274  <target host="www.ars.usda.gov" />
8275  <rule from="^http://(www\.)?ars\.usda\.gov/"
8276          to="https://www.ars.usda.gov/"/>
8277</ruleset>
8278<ruleset name="USENIX">
8279        <target host="usenix.org" />
8280        <target host="db.usenix.org" />
8281        <target host="www.usenix.org" />
8282        <rule from="^http://www\.usenix\.org/" to="https://db.usenix.org/"/>
8283        <rule from="^http://db\.usenix\.org/" to="https://db.usenix.org/"/>
8284        <rule from="^http://usenix\.org/" to="https://db.usenix.org/"/>
8285</ruleset>
8286
8287<ruleset name="USPS">
8288  <target host="usps.com" />
8289  <target host="www.usps.com" />
8290  <target host="shop.usps.com" />
8291
8292  <rule from="^http://(www\.)?usps\.com/" to="https://www.usps.com/"/>
8293  <rule from="^http://shop\.usps\.com/" to="https://shop.usps.com/"/>
8294</ruleset>
8295<!-- Uppsala university -->
8296<!-- Not all subdomains suports ssl, here are those that does -->
8297<ruleset name="UU.se">
8298        <target host="boxer.bmc.uu.se" />
8299        <target host="it.bmc.uu.se" />
8300        <target host="www.uu.se" />
8301        <target host="helpdesk.uu.se" />
8302        <target host="dropbox.uu.se" />
8303        <target host="filer.anst.uu.se" />
8304        <target host="www.anst.uu.se" />
8305        <target host="filer.student.uu.se" />
8306        <target host="home.student.uu.se" />
8307        <target host="mail.teknik.uu.se" />
8308        <target host="tor.uadm.uu.se" />
8309        <target host="uu.se" />
8310        <target host="webmail.uu.se" />
8311        <target host="www-hotel.uu.se" />
8312        <target host="www.it.uu.se" />
8313        <target host="www.listserv.uu.se" />
8314        <target host="www.uaf.uu.se" />
8315        <target host="www.uppmax.uu.se" />
8316        <target host="www.uuinnovation.uu.se" />
8317        <rule from="^http://uu\.se/" to="https://www.uu.se/"/>
8318        <rule from="^http://www\.uu\.se/" to="https://www.uu.se/"/>
8319        <rule from="^http://www-hotel\.uu\.se/" to="https://www-hotel.uu.se/"/>
8320        <rule from="^http://webmail\.uu\.se/" to="https://webmail.uu.se/"/>
8321        <rule from="^http://helpdesk\.uu\.se/" to="https://helpdesk.uu.se/"/>
8322        <rule from="^http://dropbox\.uu\.se/" to="https://dropbox.uu.se/"/>
8323        <rule from="^http://boxer\.bmc\.uu\.se/" to="https://boxer.bmc.uu.se/"/>
8324        <rule from="^http://it\.bmc\.uu\.se/" to="https://it.bmc.uu.se/"/>
8325        <rule from="^http://filer\.anst\.uu\.se/" to="https://filer.anst.uu.se/"/>
8326        <rule from="^http://www\.anst\.uu\.se/" to="https://www.anst.uu.se/"/>
8327        <rule from="^http://www\.it\.uu\.se/" to="https://www.it.uu.se/"/>
8328        <rule from="^http://www\.listserv\.uu\.se/" to="https://www.listserv.uu.se/"/>
8329        <rule from="^http://www\.uaf\.uu\.se/" to="https://www.uaf.uu.se/"/>
8330        <rule from="^http://www\.uppmax\.uu\.se/" to="https://www.uppmax.uu.se/"/>
8331        <rule from="^http://www\.uuinnovation\.uu\.se/" to="https://www.uuinnovation.uu.se/"/>
8332        <rule from="^http://filer\.student\.uu\.se/" to="https://filer.student.uu.se/"/>
8333        <rule from="^http://home\.student\.uu\.se/" to="https://home.student.uu.se/"/>
8334        <rule from="^http://mail\.teknik\.uu\.se/" to="https://mail.teknik.uu.se/"/>
8335        <rule from="^http://tor\.uadm\.uu\.se/" to="https://tor.uadm.uu.se/"/>
8336</ruleset>
8337
8338<ruleset name="Ubuntuone">
8339  <target host="ubuntuone.com" />
8340  <target host="www.ubuntuone.com" />
8341
8342  <rule from="^http://(www\.)?ubuntuone\.com/" to="https://ubuntuone.com/"/>
8343</ruleset>
8344
8345<ruleset name="UiO">
8346  <target host="uio.no" />
8347  <target host="www.uio.no" />
8348  <target host="studweb.uio.no" />
8349  <target host="apollon.uio.no" />
8350  <target host="www.apollon.uio.no" />
8351
8352        <rule from="^http://uio\.no/" to="https://uio.no/"/>
8353        <rule from="^http://www\.uio\.no/" to="https://www.uio.no/"/>
8354
8355        <rule from="^http://studweb\.uio\.no/" to="https://studweb.uio.no/"/>
8356
8357        <rule from="^http://apollon\.uio\.no/" to="https://apollon.uio.no/"/>
8358        <rule from="^http://www\.apollon\.uio\.no/" to="https://www.apollon.uio.no/"/>
8359</ruleset>
8360<ruleset name="Uma.es">
8361  <target host="*.cv.uma.es" />
8362  <target host="www.sci.uma.es" />
8363  <target host="web.satd.uma.es" />
8364
8365  <rule from="^http://(www\.)?(.*)\.cv\.uma\.es/" to="https://$2.cv.uma.es/" />
8366  <rule from="^http://www\.sci\.uma\.es/" to="https://www.sci.uma.es/" />
8367  <rule from="^http://web\.satd\.uma\.es/" to="https://web.satd.uma.es/" />
8368</ruleset>
8369<ruleset name="Unbound">
8370  <target host="unbound.net" />
8371  <target host="www.unbound.net" />
8372
8373  <rule from="^http://(www\.)?unbound\.net/" to="https://unbound.net/"/>
8374</ruleset>
8375<ruleset name="Underskog">
8376  <target host="underskog.no" />
8377  <target host="www.underskog.no" />
8378
8379  <rule from="^http://(www\.)?underskog\.no/" to="https://underskog.no/"/>
8380</ruleset>
8381
8382<ruleset name="United Airlines">
8383  <target host="united.com" />
8384  <target host="www.united.com" />
8385  <target host="travel.united.com" />
8386  <target host="ua2go.com" />
8387  <target host="www.ua2go.com" />
8388
8389  <rule from="^http://(www\.)?united\.com/" to="https://www.united.com/"/>
8390  <rule from="^http://travel\.united\.com/" to="https://travel.united.com/"/>
8391  <rule from="^http://(www\.)?ua2go\.com/"  to="https://www.ua2go.com/"/>
8392</ruleset>
8393<ruleset name="University of Illinois at Chicago (partial)" default_off="Searching by department under Find People [https://www.uic.edu/uic/search/] may not work">
8394        <target host="uic.edu" />
8395        <target host="my.uic.edu" />
8396        <target host="www.uic.edu" />
8397        <target host="www2.uic.edu" />
8398        <target host="ness.uic.edu" />
8399        <target host="uical.uic.edu" />
8400        <target host="media.uic.edu" />
8401        <target host="tigger.uic.edu" />
8402        <target host="webmail.uic.edu" />
8403        <target host="blackboard.uic.edu" />
8404        <target host="www.housing.uic.edu" />
8405        <target host="exedweb.cc.uic.edu" />
8406
8407        <target host="uicbookstore.org" />
8408        <target host="www.uicbookstore.org" />
8409
8410        <exclusion pattern="^http://www\.uic\.edu/htbin/((ulist/az(\?|$))|(az(\?|$))|(ldap_search/))" />
8411        <exclusion pattern="^http://media\.uic\.edu/ensemble/app/(?!(flash/))" />
8412        <exclusion pattern="^http://media\.uic\.edu/ensemble/(?!(app/))" />
8413
8414        <rule from="^http://(www\.)?uic\.edu/" to="https://www.uic.edu/" />
8415        <rule from="^http://(my|www|www2|ness|uical|media|tigger|webmail|blackboard|(www\.housing)|(exedweb\.cc))\.uic\.edu/" to="https://$1.uic.edu/" />
8416        <rule from="^https?://www\.uic\.edu/searchUIC\.html(#|$)" to="https://www.uic.edu/uic/search/$1" />
8417
8418        <rule from="^https://uic\.edu/" to="https://www.uic.edu/" />
8419
8420        <rule from="^http://(www\.)?uicbookstore\.org/" to="https://www.uicbookstore.org/" />
8421        <rule from="^https://uicbookstore\.org/" to="https://www.uicbookstore.org/" />
8422</ruleset><ruleset name="University of Southern Indiana (partial)">
8423        <target host="usi.edu" />
8424        <target host="www.usi.edu" />
8425
8426        <rule from="^http://(www\.)?usi\.edu/" to="https://www.usi.edu/" />
8427
8428        <!-- Invoking https://usi.edu/ produces a certificate error, so
8429        redirect https://usi.edu/ to https://www.usi.edu/ -->
8430        <rule from="^https://usi\.edu/" to="https://www.usi.edu/" />
8431</ruleset><ruleset name="University of Texas at Austin (partial)">
8432        <target host="utexas.edu" />
8433        <target host="www.utexas.edu" />
8434        <target host="ideas.utexas.edu" />
8435        <target host="registrar.utexas.edu" />
8436        <target host="utdirect.utexas.edu" />
8437        <target host="www.lib.utexas.edu" />
8438        <target host="catalog.lib.utexas.edu" />
8439        <target host="metalib.lib.utexas.edu" />
8440        <target host="dev.lib.utexas.edu" />
8441
8442        <rule from="^http://(www\.)?utexas\.edu/" to="https://www.utexas.edu/" />
8443        <rule from="^http://(ideas|registrar|utdirect|((www|catalog|metalib|dev)\.lib))\.utexas\.edu/" to="https://$1.utexas.edu/" />
8444
8445        <!-- It appears that HTTPS connections cannot be established to
8446        https://utexas.edu/ as of June 1, 2011, so redirect
8447        https://utexas.edu/ to https://www.utexas.edu/ -->
8448        <rule from="^https://utexas\.edu/" to="https://www.utexas.edu/" />
8449</ruleset><ruleset name="University of Texas at Dallas">
8450        <target host="utdallas.edu" />
8451        <target host="www.utdallas.edu" />
8452
8453        <rule from="^http://(www\.)?utdallas\.edu/" to="https://www.utdallas.edu/" />
8454</ruleset><ruleset name="Upplandsvasby.se">
8455  <target host="www.upplandsvasby.se" />
8456  <rule from="^http://www\.upplandsvasby\.se/" to="https://www.upplandsvasby.se/"/>
8457</ruleset>
8458
8459<ruleset name="US-Cert.gov">
8460        <target host="www.us-cert.gov" />
8461        <target host="us-cert.gov" />
8462        <rule from="^http://www\.us-cert\.gov/" to="https://www.us-cert.gov/"/>
8463        <rule from="^http://us-cert\.gov/" to="https://us-cert.gov/"/>
8464</ruleset>
8465
8466<ruleset name="UserScripts.org">
8467  <target host="userscripts.org" />
8468  <target host="www.userscripts.org" />
8469
8470  <exclusion pattern="^http://(www\.)?userscripts\.org/scripts/source/" />
8471  <rule from="^http://(?:www\.)?userscripts\.org/"
8472          to="https://www.userscripts.org/"/>
8473</ruleset>
8474<ruleset name="UsrJoy">
8475  <target host="usrjoy.com" />
8476  <target host="www.usrjoy.com" />
8477
8478  <securecookie host="^(.+\.)?usrjoy\.com$" name=".*"/>
8479
8480  <rule from="^http://(www\.)?usrjoy\.com/" to="https://www.usrjoy.com/"/>
8481</ruleset>
8482<ruleset name="VG.no">
8483        <target host="vg.no" />
8484        <target host="www.vg.no" />
8485        <target host="static.vg.no" />
8486        <target host="static01.vg.no" />
8487        <target host="static02.vg.no" />
8488        <target host="static03.vg.no" />
8489        <target host="static04.vg.no" />
8490        <rule from="^http://www\.vg\.no/" to="https://www.vg.no/"/>
8491        <rule from="^http://vg\.no/" to="https://vg.no/"/>
8492        <rule from="^http://static\.vg\.no/" to="https://static.vg.no/"/>
8493        <rule from="^http://static01\.vg\.no/" to="https://static01.vg.no/"/>
8494        <rule from="^http://static02\.vg\.no/" to="https://static02.vg.no/"/>
8495        <rule from="^http://static03\.vg\.no/" to="https://static03.vg.no/"/>
8496        <rule from="^http://static04\.vg\.no/" to="https://static04.vg.no/"/>
8497</ruleset>
8498
8499<ruleset name="VR.se">
8500        <target host="vr.se" />
8501        <target host="www.vr.se" />
8502        <rule from="^http://www\.vr\.se/" to="https://www.vr.se/"/>
8503        <rule from="^http://vr\.se/" to="https://www.vr.se/"/>
8504</ruleset>
8505
8506<ruleset name="VTunnel">
8507  <target host="vtunnel.com" />
8508  <target host="www.vtunnel.com" />
8509
8510  <securecookie host="^(.+\.)?vtunnel\.com$" name=".*"/>
8511
8512  <rule from="^http://(www\.)?vtunnel\.com/" to="https://vtunnel.com/"/>
8513</ruleset>
8514<ruleset name="veracode.com">
8515        <target host="www.veracode.com" />
8516        <target host="veracode.com" />
8517        <rule from="^http://www\.veracode\.com/" to="https://www.veracode.com/"/>
8518        <rule from="^http://veracode\.com/" to="https://www.veracode.com/"/>
8519</ruleset>
8520
8521<ruleset name="Vereinigte IKK">
8522<target host="www.vereinigte-ikk.de" />
8523<target host="vereinigte-ikk.de" />
8524<rule from="^http://(www\.)?vereinigte-ikk\.de/" to="https://www.vereinigte-ikk.de/"/>
8525</ruleset>
8526<ruleset name="Verified Voting">
8527        <target host="verifiedvoting.org" />
8528        <target host="www.verifiedvoting.org" />
8529        <target host="verifiedvotingfoundation.org" />
8530        <target host="www.verifiedvotingfoundation.org" />
8531
8532        <rule from="^http://(www\.)?verifiedvoting\.org/" to="https://www.verifiedvoting.org/" />
8533        <rule from="^http://(www\.)?verifiedvotingfoundation\.org/" to="https://www.verifiedvotingfoundation.org/" />
8534</ruleset><ruleset name="Verizon">
8535  <target host="www.verizon.com" />
8536  <target host="www22.verizon.com" />
8537  <target host="verizon.com" />
8538  <target host="www.verizonwireless.com" />
8539  <target host="verizonwireless.com" />
8540
8541  <rule from="^http://(www\.)?verizon\.com/" to="https://www22.verizon.com/"/>
8542  <rule from="^http://www22\.verizon\.com/" to="https://www22.verizon.com/"/>
8543  <rule from="^http://(www\.)?verizonwireless\.com/" to="https://www.verizonwireless.com/"/>
8544</ruleset>
8545<ruleset name="VideoLAN" default_off="CAcert">
8546  <target host="videolan.org" />
8547  <target host="www.videolan.org" />
8548
8549  <rule from="^http://(www\.)?videolan\.org/" to="https://www.videolan.org/"/>
8550</ruleset>
8551<ruleset name="Vimeo login">
8552  <target host="vimeo.com" />
8553  <target host="www.vimeo.com" />
8554
8555  <!-- secure login form -->
8556  <rule from="^http://(www\.)?vimeo\.com/log_in" to="https://secure.vimeo.com/log_in"/>
8557</ruleset>
8558
8559<ruleset name="Virgin Mobile AU">
8560    <target host="www.virginmobile.com.au" />
8561
8562    <rule from="^http://www\.virginmobile\.com\.au/" to="https://www.virginmobile.com.au/" />
8563</ruleset>
8564
8565<ruleset name="VirusTotal">
8566  <target host="virustotal.com" />
8567  <target host="www.virustotal.com" />
8568
8569  <rule from="^http://(www\.)?virustotal\.com/" to="https://www.virustotal.com/"/>
8570</ruleset>
8571<!-- Av vendor. -->
8572<ruleset name="Virusec.com">
8573        <target host="www.escan.com" />
8574        <target host="escan.com" />
8575        <target host="www.virusec.com" />
8576        <target host="virusec.com" />
8577        <rule from="^http://www\.escan\.com/" to="https://www.virusec.com/"/>
8578        <rule from="^http://escan\.com/" to="https://www.virusec.com/"/>
8579        <rule from="^http://virusec\.com/" to="https://www.virusec.com/"/>
8580        <rule from="^http://www\.virusec\.com/" to="https://www.virusec.com/"/>
8581</ruleset>
8582
8583<ruleset name="Vitelity">
8584  <target host="portal.vitelity.net" />
8585
8586  <rule from="^http://portal\.vitelity\.net/" to="https://portal.vitelity.net/" />
8587</ruleset>
8588<!-- yet another 1px tracking host :-( -->
8589<ruleset name="Vizzit.se">
8590        <target host="www.vizzit.se" />
8591        <rule from="^http://www\.vizzit\.se/" to="https://www.vizzit.se/"/>
8592</ruleset>
8593
8594<ruleset name="Vodafone">
8595  <target host="vodafone.ie" />
8596  <target host="www.vodafone.ie" />
8597  <target host="vodafone.co.uk" />
8598  <target host="www.vodafone.co.uk" />
8599  <target host="online.vodafone.co.uk" />
8600  <target host="shop.vodafone.co.uk" />
8601  <target host="vodafone.de" />
8602  <target host="www.vodafone.de" />
8603  <target host="shop.vodafone.de" />
8604  <target host="vodafone.co.nz" />
8605  <target host="www.vodafone.co.nz" />
8606
8607  <rule from="^http://(?:www\.)?vodafone\.(co\.nz|co\.uk|de|ie)/" to="https://www.vodafone.$1/"/>
8608  <rule from="^http://online\.vodafone\.co\.uk/" to="https://online.vodafone.co.uk/"/>
8609  <rule from="^http://shop\.vodafone\.(co\.uk|de)/" to="https://shop.vodafone.$1/"/>
8610</ruleset>
8611<ruleset name="Volcano eCigs">
8612  <target host="volcanoecigs.com"/>
8613  <target host="www.volcanoecigs.com"/>
8614
8615  <rule from="^http://(www\.)?volcanoecigs\.com/" to="https://www.volcanoecigs.com/"/>
8616</ruleset>
8617<ruleset name="Volkswagen Bank">
8618  <target host="*.volkswagenbank.de" />
8619  <target host="volkswagenbank.de" />
8620
8621  <securecookie host="^(.*\.)?volkswagenbank\.de$" name=".*" />
8622
8623  <rule from="^http://(www\.)?volkswagenbank\.de/" to="https://www.volkswagenbank.de/" />
8624  <rule from="^http://online-banking\.volkswagenbank\.de/" to="https://online-banking.volkswagenbank.de/" />
8625</ruleset>
8626<ruleset name="Vonage">
8627  <target host="vonage.com" />
8628  <target host="www.vonage.com" />
8629  <target host="vonage.co.uk" />
8630  <target host="www.vonage.co.uk" />
8631  <target host="vonage.ca" />
8632  <target host="www.vonage.ca" />
8633
8634  <rule from="^http://(www\.)?vonage\.com/" to="https://www.vonage.com/"/>
8635  <rule from="^http://(www\.)?vonage\.co\.uk/" to="https://www.vonage.co.uk/"/>
8636  <rule from="^http://(www\.)?vonage\.ca/" to="https://www.vonage.ca/"/>
8637</ruleset>
8638<ruleset name="voterVOICE">
8639        <target host="votervoice.net" />
8640        <target host="www.votervoice.net" />
8641
8642        <rule from="^http://(www\.)?votervoice\.net/" to="https://www.votervoice.net/" />
8643</ruleset><ruleset name="Vuze">
8644  <target host="vuze.com" />
8645  <target host="www.vuze.com" />
8646
8647  <rule from="^http://(www\.)?vuze\.com/" to="https://www.vuze.com/"/>
8648</ruleset>
8649<ruleset name="WHO.int">
8650        <target host="www.who.int" />
8651        <target host="who.int" />
8652        <rule from="^http://www\.who\.int/" to="https://www.who.int/"/>
8653        <rule from="^http://who\.int/" to="https://www.who.int/"/>
8654</ruleset>
8655
8656<ruleset name="World Socialist Web Site">
8657  <target host="wsws.org" />
8658  <target host="*.wsws.org" />
8659
8660  <rule from="^http://(www\.)?wsws\.org/" to="https://www.wsws.org/"/>
8661  <rule from="^http://([^/:@]*)\.wsws\.org/" to="https://$1.wsws.org/"/>
8662</ruleset>
8663<ruleset name="WTFuzz.com">
8664        <target host="wtfuzz.com" />
8665        <target host="www.wtfuzz.com" />
8666        <rule from="^http://www\.wtfuzz\.com/" to="https://www.wtfuzz.com/"/>
8667        <rule from="^http://wtfuzz\.com/" to="https://www.wtfuzz.com/"/>
8668</ruleset>
8669
8670<ruleset name="Waffles.fm">
8671        <target host="waffles.fm" />
8672        <target host="www.waffles.fm" />
8673        <rule from="^http://www\.waffles\.fm/" to="https://waffles.fm/"/>
8674</ruleset>
8675<ruleset name="WashingtonPost (broken)" default_off="Moved to akamai and broke :(">
8676  <target host="www.washingtonpost.com" />
8677  <target host="washingtonpost.com" />
8678  <target host="voices.washingtonpost.com" />
8679
8680  <rule from="^http://(www\.)?washingtonpost\.com/"
8681          to="https://www.washingtonpost.com/"/>
8682  <rule from="^http://voices\.washingtonpost\.com/"
8683          to="https://voices.washingtonpost.com/"/>
8684</ruleset>
8685<ruleset name="web.de">
8686  <target host="web.de"/>
8687  <target host="*.web.de"/>
8688  <target host="www.web.de"/>
8689  <target host="logout.webde.uimserv.net"/>
8690
8691  <securecookie host="^(.*\.)?web\.de$" name=".*" />
8692
8693  <rule from="^http://(www\.)?web\.de/" to="https://web.de/"/>
8694  <rule from="^http://web\.de/" to="https://web.de/"/>
8695  <rule from="^http://logout\.webde\.uimserv\.net/" to="https://logout.webde.uimserv.net/"/>
8696</ruleset>
8697<!-- yet another 1px tracking host :-( -->
8698<ruleset name="Webtrekk.net">
8699        <target host="gigaset01.webtrekk.net" />
8700        <rule from="^http://gigaset01\.webtrekk\.net/" to="https://gigaset01.webtrekk.net/"/>
8701</ruleset>
8702
8703<!-- tracking network, included on lots of sites. may carry banners.
8704If we are to download their content, atleast do it by https -->
8705<ruleset name="webtrends.com">
8706        <target host="m.webtrends.com" />
8707        <target host="developer.webtrends.com" />
8708        <target host="statse.webtrendslive.com" />
8709        <rule from="^http://m\.webtrends\.com/" to="https://m.webtrends.com/"/>
8710        <rule from="^http://developer\.webtrends\.com/" to="https://developer.webtrends.com/"/>
8711        <rule from="^http://statse\.webtrendslive\.com/" to="https://statse.webtrendslive.com/"/>
8712</ruleset>
8713
8714<ruleset name="Wells Fargo">
8715  <target host="wellsfargo.com" />
8716  <target host="*.wellsfargo.com" />
8717
8718  <rule from="^http://wellsfargo\.com/" to="https://www.wellsfargo.com/" />
8719  <rule from="^http://([^/:@]*)\.wellsfargo\.com/" to="https://$1.wellsfargo.com/" />
8720</ruleset>
8721<ruleset name="Weltbild.ch">
8722        <target host="weltbild.ch" />
8723        <target host="www.weltbild.ch" />
8724        <securecookie host="^(.*\.)?weltbild\.ch$" name=".*" />
8725
8726        <rule from="^http://(www\.)?weltbild\.ch/" to="https://www.weltbild.ch/"/>
8727</ruleset>
8728<ruleset name="WestlandUtrecht Bank">
8729  <!-- Rule created by Jeroen van der Gun -->
8730
8731  <target host="www.westlandutrecht.nl" />
8732  <target host="westlandutrecht.nl" />
8733  <target host="www.westlandutrechtbank.nl" />
8734  <target host="westlandutrechtbank.nl" />
8735  <target host="www.mijnwestlandutrecht.nl" />
8736  <target host="mijnwestlandutrecht.nl" />
8737
8738  <rule from="^http://(www\.)?westlandutrecht(?:bank)?\.nl/" to="https://www.westlandutrechtbank.nl/"/>
8739  <rule from="^http://(www\.)?mijnwestlandutrecht\.nl/" to="https://mijnwestlandutrecht.nl/"/>
8740</ruleset>
8741<ruleset name="WhatCD">
8742  <target host="what.cd" />
8743  <target host="www.what.cd" />
8744
8745  <rule from="^http://(www\.)?what\.cd/$" to="https://ssl.what.cd/"/>
8746
8747</ruleset>
8748<ruleset name="WhatIsMyIP">
8749  <target host="whatismyip.com" />
8750  <target host="www.whatismyip.com" />
8751
8752  <securecookie host="^(.+\.)?whatismyip\.com$" name=".*"/>
8753
8754  <rule from="^http://(www\.)?whatismyip\.com/" to="https://www.whatismyip.com/"/>
8755</ruleset>
8756<ruleset name="Wiggle">
8757  <target host="wiggle.co.uk" />
8758  <target host="*.wiggle.co.uk" />
8759
8760  <securecookie host="^([^@:/]+\.)?wiggle\.co\.uk$" name=".*"/>
8761
8762  <rule from="^http://(www\.)?wiggle\.co\.uk/" to="https://www.wiggle.co.uk/"/>
8763</ruleset>
8764<!-- Wikipedia and other Wikimedia Foundation wikis previously had no real HTTPS support, and
8765     URLs had to be rewritten to https://secure.wikimedia.org/$wikitype/$language/ . This is no
8766     longer the case, see https://blog.wikimedia.org/2011/10/03/native-https-support-enabled-for-all-wikimedia-foundation-wikis/ ,
8767     so this file is a lot simpler these days. -->
8768
8769<ruleset name="Wikipedia">
8770  <target host="*.wikipedia.org" />
8771  <target host="*.wikinews.org" />
8772  <target host="*.wikisource.org" />
8773  <target host="*.wikibooks.org" />
8774  <target host="*.wikiquote.org" />
8775  <target host="*.wikiversity.org" />
8776  <target host="*.wiktionary.org" />
8777  <target host="*.wikimedia.org" />
8778  <target host="wikipedia.org" />
8779  <target host="wikinews.org" />
8780  <target host="wikisource.org" />
8781  <target host="wikibooks.org" />
8782  <target host="wikiquote.org" />
8783  <target host="wikiversity.org" />
8784  <target host="wiktionary.org" />
8785  <target host="wikimedia.org" />
8786  <target host="mediawiki.org" />
8787  <target host="www.mediawiki.org" />
8788  <target host="wikimediafoundation.org" />
8789  <target host="www.wikimediafoundation.org" />
8790  <target host="enwp.org" />
8791  <target host="frwp.org" />
8792
8793<!-- TODO: What exclusions do we need for mobile sites, if any? -->
8794  <exclusion pattern="^http://(dumps|download|svn|noc|prototype|etherpad|stats|ganglia|nagios|status|project2)\.wikimedia\.org/"/>
8795  <exclusion pattern="^http://(static|download|m)\.wikipedia\.org/"/>
8796
8797
8798  <rule from="^http://([^@:/]+\.)?wik(ipedia|inews|isource|ibooks|iquote|iversity|tionary|imedia)\.org/"
8799          to="https://$1wik$2.org/" />
8800
8801  <rule from="^http://(www\.)?mediawiki\.org/"
8802          to="https://$1mediawiki.org/" />
8803  <rule from="^http://(www\.)?wikimediafoundation\.org/"
8804          to="https://$1wikimediafoundation.org/" />
8805
8806  <rule from="^http://enwp\.org/"
8807          to="https://en.wikipedia.org/wiki/" />
8808
8809  <rule from="^http://frwp\.org/"
8810          to="https://fr.wikipedia.org/wiki/" />
8811</ruleset>
8812<ruleset name="WinPcap">
8813  <target host="winpcap.org" />
8814  <target host="www.winpcap.org" />
8815
8816  <rule from="^http://winpcap\.org/" to="https://winpcap.org/"/>
8817  <rule from="^http://www\.winpcap\.org/" to="https://www.winpcap.org/"/>
8818</ruleset>
8819<ruleset name="Wippies Webmail">
8820  <target host="webmail.wippies.com" />
8821
8822  <rule from="^http://webmail\.wippies\.com/" to="https://webmail.wippies.com/" />
8823</ruleset>
8824<ruleset name="Wireshark">
8825  <target host="wireshark.org" />
8826  <target host="anonsvn.wireshark.org" />
8827  <target host="www.wireshark.org" />
8828
8829  <rule from="^http://wireshark\.org/" to="https://wireshark.org/"/>
8830  <rule from="^http://(anonsvn|www)\.wireshark\.org/" to="https://$1.wireshark.org/"/>
8831</ruleset>
8832<ruleset name="Woot (broken)" default_off="completely broken">
8833  <target host="woot.com" />
8834  <target host="www.woot.com" />
8835
8836  <rule from="^http://(www\.)?woot\.com/" to="https://www.woot.com/"/>
8837</ruleset>
8838<ruleset name="WordPress">
8839  <target host="wordpress.com" />
8840  <target host="*.wordpress.com" />
8841  <target host="wordpress.org" />
8842  <target host="*.wordpress.org" />
8843  <target host="*.trac.wordpress.org" />
8844  <target host="*.svn.wordpress.org" />
8845  <target host="*.files.wordpress.com" />
8846  <target host="*.wp.com" />
8847
8848  <exclusion pattern="^http://(([^/:@\.]+)\.)?wordpress\.com/latex\.php(\?.*)?$"/>
8849  <exclusion pattern="^http://([^/:@\.]+)\.blog\.wordpress\.com/"/>
8850  <exclusion pattern="^http://([^/:@\.]+)\.blog\.files\.wordpress\.com/"/>
8851  <exclusion pattern="^http://([^/:@\.]+)\.forums\.wordpress\.com/"/>
8852  <exclusion pattern="^http://([^/:@\.]+)\.support\.wordpress\.com/"/>
8853
8854  <rule from="^http://wordpress\.(com|org)/"
8855          to="https://wordpress.$1/"/>
8856  <rule from="^http://s\.wordpress\.(com|org)/"
8857          to="https://www.wordpress.$1/"/>
8858  <rule from="^http://s[0-9]\.wordpress\.(com|org)/"
8859          to="https://secure.wordpress.$1/"/>
8860  <rule from="^http://([^/:@]+)\.wordpress\.(com|org)/"
8861          to="https://$1.wordpress.$2/"/>
8862  <rule from="^http://([^/:@]+)\.(trac|svn)\.wordpress\.org/"
8863          to="https://$1.$2.wordpress.org/"/>
8864  <rule from="^http://([^/:@]+)\.files\.wordpress\.com/"
8865          to="https://$1.files.wordpress.com/"/>
8866  <rule from="^http://s\d*\.wp\.com/(\?custom-css|i/|wp-content/|wp-includes/)"
8867          to="https://s-ssl.wordpress.com/$1" />
8868</ruleset>
8869<ruleset name="World Community Grid">
8870   <target host="www.worldcommunitygrid.org" />
8871
8872   <rule from="^http://www\.worldcommunitygrid\.org/"
8873        to="https://secure.worldcommunitygrid.org/"/>
8874</ruleset>
8875<ruleset name="WorstPills.org">
8876        <target host="worstpills.org" />
8877        <target host="www.worstpills.org" />
8878
8879        <rule from="^http://(www\.)?worstpills\.org/" to="https://www.worstpills.org/" />
8880</ruleset><ruleset name="wuala">
8881  <target host="wuala.com" />
8882  <target host="*.wuala.com" />
8883
8884  <securecookie host="^((www|forum|stats|thumb\d+)\.)?wuala\.com$" name=".*"/>
8885
8886  <rule from="^http://wuala\.com/" to="https://wuala.com/"/>
8887  <rule from="^http://(www|forum|stats|thumb\d+)\.wuala\.com/" to="https://$1.wuala.com/"/>
8888</ruleset>
8889<ruleset name="XO Skins">
8890  <target host="xoskins.com" />
8891  <target host="www.xoskins.com" />
8892
8893  <rule from="^http://(www\.)?xoskins\.com/" to="https://xoskins.com/"/>
8894</ruleset>
8895
8896<ruleset name="XPD.se">
8897        <target host="xpd.se" />
8898        <target host="www.xpd.se" />
8899        <rule from="^http://www\.xpd\.se/" to="https://www.xpd.se/"/>
8900        <rule from="^http://xpd\.se/" to="https://xpd.se/"/>
8901</ruleset>
8902
8903<ruleset name="XS4ALL (partial)">
8904  <target host="xs4all.nl" />
8905  <target host="www.xs4all.nl" />
8906
8907        <exclusion pattern="^http://(www\.)?xs4all.nl/((%7E)|~)+"/>
8908        <rule from="^http://(www\.)?xs4all\.nl/" to="https://www.xs4all.nl/"/>
8909</ruleset>
8910<ruleset name="Xing">
8911  <target host="xing.com" />
8912  <target host="www.xing.com" />
8913
8914  <rule from="^http://(www\.)?xing\.com/" to="https://www.xing.com/"/>
8915</ruleset>
8916<ruleset name="Xiph.org">
8917        <target host="xiph.org" />
8918        <target host="www.xiph.org" />
8919        <target host="svn.xiph.org" />
8920        <target host="wiki.xiph.org" />
8921        <target host="trac.xiph.org" />
8922
8923        <rule from="^http://(www\.)?xiph\.org/" to="https://www.xiph.org/" />
8924        <rule from="^http://(svn|wiki|trac)\.xiph\.org/" to="https://$1.xiph.org/" />
8925</ruleset><ruleset name="Xmarks">
8926  <target host="xmarks.com"/>
8927  <target host="www.xmarks.com"/>
8928  <target host="*.xmarks.com"/>
8929
8930  <securecookie host="^(.*\.)?xmarks.com$" name=".*" />
8931
8932  <rule from="^http://(www\.)?xmarks\.com/" to="https://www.xmarks.com/"/>
8933  <rule from="^http://static\.xmarks\.com/" to="https://static.xmarks.com/"/>
8934  <rule from="^http://my\.xmarks\.com/" to="https://my.xmarks.com/"/>
8935  <rule from="^http://download\.xmarks\.com/" to="https://download.xmarks.com/"/>
8936  <rule from="^http://login\.xmarks\.com/" to="https://login.xmarks.com/"/>
8937  <rule from="^http://thumbs\.xmarks\.com/" to="https://thumbs.xmarks.com/"/>
8938</ruleset>
8939<ruleset name="YFrog">
8940  <target host="yfrog.com" />
8941  <target host="www.yfrog.com" />
8942
8943  <rule from="^http://(www\.)?yfrog\.com/" to="https://yfrog.com/"/>
8944</ruleset>
8945<ruleset name="Yaha">
8946  <target host="yaha.no" />
8947  <target host="www.yaha.no" />
8948
8949  <rule from="^http://yaha\.no/" to="https://yaha.no/"/>
8950  <rule from="^http://www\.yaha\.no/" to="https://www.yaha.no/"/>
8951</ruleset>
8952<ruleset name="Yahoo! Mail (buggy)" default_off="https://eff.org/r.G7u">
8953  <target host="mail.yahoo.com" />
8954  <target host="login.yahoo.com" />
8955  <!-- This rule really needs a secure cookie.  !! -->
8956  <target host="pn1.bc.yahoo.com" />
8957  <target host="us.bc.yahoo.com" />
8958  <target host="row.bc.yahoo.com" />
8959
8960  <rule from="^http://mail\.yahoo\.com/" to="https://mail.yahoo.com/" />
8961  <rule from="^http://login\.yahoo\.com/" to="https://login.yahoo.com/" />
8962  <rule from="^http://(pn1|us|row)\.bc\.yahoo\.com/" to="https://$1.bc.yahoo.com/" />
8963</ruleset>
8964<ruleset name="Yamli API">
8965  <target host="api.yamli.com" />
8966
8967  <rule from="^http://api\.yamli\.com/" to="https://api.yamli.com/" />
8968</ruleset><!--
8969    For any questions please contact Artyom Gavrichenkov <ximaera@yandex.ru>.
8970
8971    I'm not in any way a Yandex employee, however, this set of rules is
8972    already working for a long time with all Yandex services, being used very
8973    intensively, and thus is being shared with community in order to prevent
8974    scam and stealing from Money.Yandex.ru (and other services as well).
8975
8976    If you want to know about license terms, here they are:
8977
8978    DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
8979    Version 2, December 2004
8980
8981    Copyright (C) 2004 Sam Hocevar <sam@hocevar.net>
8982
8983    Everyone is permitted to copy and distribute verbatim or modified
8984    copies of this license document, and changing it is allowed as long
8985    as the name is changed.
8986
8987    DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE
8988    TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
8989
8990    0. You just DO WHAT THE FUCK YOU WANT TO.
8991-->
8992<ruleset name="Yandex">
8993    <target host="yandex.ru" />
8994    <target host="yandex.net" />
8995    <target host="yandex.st" />
8996    <target host="ya.ru" />
8997    <target host="*.yandex.ru" />
8998    <target host="*.yandex.net" />
8999    <target host="*.yandex.st" />
9000    <target host="*.ya.ru" />
9001    <target host="*.friends.yandex.net" />
9002    <target host="*.maps.yandex.ru" />
9003    <target host="moikrug.ru" />
9004    <target host="*.moikrug.ru" />
9005
9006    <!--
9007        Rather than enumerating domains that support SSL,
9008        we enable SSL for all services and then exclude those
9009        which become broken:
9010    -->
9011
9012    <!-- 1. Public services without HTTPS support (or with broken one) -->
9013    <exclusion pattern="^http://api-maps\.yandex\.ru/" />
9014    <exclusion pattern="^http://bar-widgets\.yandex\.ru/" />
9015    <exclusion pattern="^http://blogs\.yandex\.ru/" />
9016    <exclusion pattern="^http://dict\.yandex\.ru/" />
9017    <exclusion pattern="^http://dzen\.yandex\.ru/" />
9018    <exclusion pattern="^http://encyclopedia\.yandex\.ru/" />
9019    <exclusion pattern="^http://fotki\.yandex\.ru/" />
9020    <exclusion pattern="^http://images\.yandex\.ru/" />
9021    <exclusion pattern="^http://lingvo\.yandex\.ru/" />
9022    <exclusion pattern="^http://maps\.yandex\.ru/" />
9023    <exclusion pattern="^http://metro\.yandex\.ru/" />
9024    <exclusion pattern="^http://music\.yandex\.ru/" />
9025    <exclusion pattern="^http://news\.yandex\.ru/" />
9026    <exclusion pattern="^http://pogoda\.yandex\.ru/" />
9027    <exclusion pattern="^http://presocial\.yandex\.net/" />
9028    <exclusion pattern="^http://sprav\.yandex\.ru/" />
9029    <exclusion pattern="^http://slovari\.yandex\.ru/" />
9030    <exclusion pattern="^http://tv\.yandex\.ru/" />
9031    <exclusion pattern="^http://video\.yandex\.ru/" />
9032    <exclusion pattern="^http://wdgt\.yandex\.ru/" />
9033    <exclusion pattern="^http://weather\.yandex\.ru/" />
9034    <exclusion pattern="^http://www\.yandex\.ru/" />
9035    <!-- Remove this if you do never post entries or comments on my.ya.ru -->
9036    <exclusion pattern="^http://(www\.)?[^.]+\.ya\.ru/" />
9037    <!--  for example: http://mirror.yandex.ru/ubuntu-cdimage/releases/ -->
9038    <exclusion pattern="^http://mirror.yandex.ru/" />
9039
9040
9041    <!-- 2. Simple redirections -->
9042    <exclusion pattern="^http://probki\.yandex\.ru/" />
9043    <exclusion pattern="^http://blogs\.ya\.ru" />
9044    <exclusion pattern="^http://fotki\.ya\.ru" />
9045    <exclusion pattern="^http://images\.ya\.ru" />
9046    <exclusion pattern="^http://music\.ya\.ru" />
9047    <exclusion pattern="^http://probki\.ya\.ru" />
9048    <exclusion pattern="^http://video\.ya\.ru" />
9049    <exclusion pattern="^http://wdgt\.ya\.ru" />
9050    <exclusion pattern="^http://www\.ya\.ru" />
9051
9052    <!--
9053        3. Narod.ru.
9054
9055        Narod.ru doesn't use auth data from Yandex,
9056        so we don't need to encrypt its pages.
9057        The only exception is Narod.Disk, but it doesn't provide HTTPS
9058    -->
9059    <exclusion pattern="^http://narod[0-9]*\.yandex\.ru/" />
9060
9061    <!-- 4. Search suggestions -->
9062    <exclusion pattern="^http://suggest\.yandex\.ru/" />
9063    <exclusion pattern="^http://suggest-[a-z]+\.yandex\.(ru|net)/" />
9064
9065    <!-- 5. Webmaster -->
9066    <exclusion pattern="^http://content\.webmaster\.yandex\.ru/" />
9067
9068    <!-- 6. Mobile services -->
9069    <exclusion pattern="^http://m\.yandex\.ru/" />
9070
9071    <!-- 7. Internet.Yandex.Ru (connection rate detection breaks with HTTPS) -->
9072    <exclusion pattern="^http://internet.yandex.ru/" />
9073
9074    <!-- 8. Various click counters and content storages -->
9075    <exclusion pattern="^http://awaps\.yandex\.ru/" />
9076    <exclusion pattern="^http://clck\.yandex\.ru/" />
9077    <exclusion pattern="^http://copy\.yandex\.net/" />
9078    <exclusion pattern="^http://hghltd\.yandex\.net/" />
9079    <exclusion pattern="^http://kiks\.yandex\.ru/" />
9080    <exclusion pattern="^http://print\.maps\.yandex\.ru/" />
9081    <exclusion pattern="^http://market-click[0-9]+\.yandex\.ru/" />
9082    <exclusion pattern="^http://mc\.yandex\.net/" />
9083    <exclusion pattern="^http://mdata\.yandex\.net/" />
9084    <exclusion pattern="^http://wrz\.yandex\.ru/" />
9085
9086    <!-- 9. Data clusters for Maps and Video -->
9087    <exclusion pattern="^http://vec[0-9]+\.maps\.yandex\.(ru|net)/" />
9088    <exclusion pattern="^http://jgo\.maps\.yandex\.(ru|net)/" />
9089    <exclusion pattern="^http://[^.]+-tub\.yandex\.net/" />
9090    <exclusion pattern="^http://[^.]+-tub\.yandex\.ru/" />
9091    <exclusion pattern="^http://[^.]+-tub-[^.]+\.yandex\.net/" />
9092    <exclusion pattern="^http://[^.]+-tub-[^.]+\.yandex\.ru/" />
9093
9094    <!--
9095        Rewriting rules
9096    -->
9097    <rule from="^http://(www\.)?([^.]+)\.yandex\.(ru|net|st)/" to="https://$2.yandex.$3/" />
9098
9099    <rule from="^http://(www\.)?yandex\.(net|st)/" to="https://yandex.$2/" />
9100
9101    <!--
9102        Here we can enable 4+ level domains with a single regexp,
9103        but I've never seen any domains more that 4 levels deep
9104        in Yandex network, so I wouldn't enable them now -
9105        it may be unconvenient and may broke some services.
9106        Only 4-level domains match.
9107    -->
9108    <rule from="^http://([^.]+)\.([^.]+)\.yandex\.(ru|net)/" to="https://$1.$2.yandex.$3/" />
9109
9110    <rule from="^http://(www\.)?([^.]+)\.ya\.ru/" to="https://$2.ya.ru/" />
9111
9112    <rule from="^http://(www\.)?moikrug\.ru/" to="https://moikrug.ru/" />
9113
9114</ruleset>
9115<ruleset name="Yieldmanager.com">
9116        <target host="ad.yieldmanager.com" />
9117
9118        <rule from="^http://ad\.yieldmanager\.com/" to="https://ad.yieldmanager.com/" />
9119</ruleset><ruleset name="YouTube">
9120  <target host="youtube.com" />
9121  <target host="*.youtube.com" />
9122  <target host="*.ytimg.com" />
9123  <target host="youtu.be" />
9124
9125  <exclusion pattern="^http://(www\.)?youtube\.com/crossdomain\.xml"/>
9126
9127  <rule from="^http://(www\.)?youtube\.com/"
9128          to="https://www.youtube.com/"/>
9129  <rule from="^http://(br|de|es|fr|img|insight|jp|m|nl|uk)\.youtube\.com/"
9130          to="https://$1.youtube.com/"/>
9131  <rule from="^http://([^/@:])+\.ytimg\.com/"
9132          to="https://$1.ytimg.com/" />
9133  <rule from="^http://youtu\.be/(\w{11})"
9134          to="https://www.youtube.com/watch?v=$1&#x26;feature=youtu.be" />
9135</ruleset>
9136<ruleset name="Your Freedom">
9137  <target host="your-freedom.net" />
9138  <target host="www.your-freedom.net" />
9139
9140  <rule from="^http://(www\.)?your-freedom\.net/" to="https://www.your-freedom.net/"/>
9141</ruleset>
9142<ruleset name="Ytimg.com">
9143        <target host="s.ytimg.com" />
9144        <target host="i.ytimg.com" />
9145        <target host="i1.ytimg.com" />
9146        <target host="i2.ytimg.com" />
9147        <target host="i3.ytimg.com" />
9148        <target host="i4.ytimg.com" />
9149
9150        <rule from="^http://(s|i([1-4]){0,1})\.ytimg\.com/" to="https://$1.ytimg.com/" />
9151</ruleset><ruleset name="Yubico">
9152  <target host="yubico.com" />
9153  <target host="www.yubico.com" />
9154  <target host="store.yubico.com" />
9155  <target host="openid.yubico.com" />
9156  <target host="api.yubico.com" />
9157  <target host="upload.yubico.com" />
9158
9159  <securecookie host="^(.+\.)?yubico\.com$" name=".*"/>
9160
9161  <rule from="^http://yubico\.com/" to="https://yubico.com/"/>
9162  <rule from="^http://(www|store|openid|api|upload)\.yubico\.com/" to="https://$1.yubico.com/"/>
9163</ruleset>
9164<ruleset name="ZTunnel">
9165  <target host="ztunnel.com" />
9166  <target host="www.ztunnel.com" />
9167
9168  <securecookie host="^(.+\.)?ztunnel\.com$" name=".*"/>
9169
9170  <rule from="^http://(www\.)?ztunnel\.com/" to="https://ztunnel.com/"/>
9171</ruleset>
9172<ruleset name="Zareason.com">
9173  <target host="www.zareason.com" />
9174  <target host="zareason.com" />
9175  <rule from="^http://www\.zareason\.com/" to="https://www.zareason.com/"/>
9176  <rule from="^http://zareason\.com/" to="https://zareason.com/"/>
9177</ruleset>
9178
9179<ruleset name="Ziggo">
9180  <target host="*.ziggo.nl" />
9181  <target host="*.ziggo.com" />
9182
9183  <rule from="^http://(www\.)?ziggo\.(nl|com)/" to="https://www.ziggo.$2/"/>
9184</ruleset><ruleset name="Zimbra">
9185  <target host="zimbra.com" />
9186  <target host="*.zimbra.com" />
9187
9188  <rule from="^http://zimbra\.com/" to="https://www.zimbra.com/"/>
9189  <rule from="^http://([^/:@]*)\.zimbra\.com/" to="https://$1.zimbra.com/"/>
9190</ruleset>
9191
9192<ruleset name="Ziplist.com">
9193  <target host="ziplist.com" />
9194  <target host="www.ziplist.com" />
9195
9196  <rule from="^http://(www\.)?ziplist\.com/" to="https://www.ziplist.com/" />
9197</ruleset>
9198<ruleset name="Zoho">
9199   <target host="*.zoho.com" />
9200
9201    <rule from="^http://(www|writer|mail|sheet|show|docs|notebook|wiki|share|planner|chat|personal|projects|creator|business|invoice|assist|reports|meeting|recruit|discussions|people|search)\.zoho\.com/" to="https://$1.zoho.com/"/>
9202</ruleset>
9203<ruleset name="btjunkie">
9204  <target host="btjunkie.org" />
9205  <target host="www.btjunkie.org" />
9206  <target host="dl.btjunkie.org" />
9207
9208  <rule from="^http://dl\.btjunkie\.org/" to="https://dl.btjunkie.org/"/>
9209  <rule from="^https?://(www\.)?btjunkie\.org/" to="https://btjunkie.org/"/>
9210</ruleset>
9211<ruleset name="comdirect bank">
9212  <target host="kunde.comdirect.de" />
9213  <target host="www.comdirect.de" />
9214  <target host="comdirect.de" />
9215
9216  <rule from="^http://(www\.)?comdirect\.de/" to="https://www.comdirect.de/" />
9217  <rule from="^http://kunde\.comdirect\.de/" to="https://kunde.comdirect.de/" />
9218</ruleset>
9219<ruleset name="eHow (broken)" default_off="HTTPS disabled">
9220  <target host="ehow.com" />
9221  <target host="www.ehow.com" />
9222
9223  <rule from="^http://(www\.)?ehow\.com/" to="https://www.ehow.com/"/>
9224</ruleset>
9225<ruleset name="hi5">
9226  <target host="hi5.com" />
9227  <target host="www.hi5.com" />
9228
9229  <rule from="^http://(www\.)?hi5\.com/" to="https://www.hi5.com/"/>
9230</ruleset>
9231
9232<ruleset name="netzclub">
9233  <target host="netzclub.net"/>
9234  <target host="www.netzclub.net"/>
9235  <target host="profil.netzclub.net"/>
9236
9237  <rule from="^http://(www\.)?netzclub\.net/" to="https://www.netzclub.net/"/>
9238  <rule from="^http://profil\.netzclub\.net/" to="https://profil.netzclub.net/"/>
9239</ruleset><ruleset name="so36.NET">
9240  <target host="so36.net" />
9241  <target host="*.so36.net" />
9242
9243        <rule from="^http://so36\.net/" to="https://so36.net/"/>
9244        <rule from="^http://([^/:@]*)\.so36\.net/" to="https://$1.so36.net/"/>
9245</ruleset>
9246<ruleset name="uTorrent (broken)" default_off="https is gone!">
9247  <target host="utorrent.com" />
9248  <target host="www.utorrent.com" />
9249  <target host="download.utorrent.com" />
9250  <target host="forum.utorrent.com" />
9251
9252  <rule from="^https?://(www\.)?utorrent\.com/" to="https://www.utorrent.com/"/>
9253  <rule from="^http://(download|forum)\.utorrent\.com/" to="https://$1.utorrent.com/"/>
9254</ruleset>
9255<ruleset name="xkcd">
9256        <target host="xkcd.com" />
9257        <target host="www.xkcd.com" />
9258        <target host="store.xkcd.com" />
9259        <target host="www.store.xkcd.com" />
9260        <target host="xkcd.org" />
9261        <target host="www.xkcd.org" />
9262        <target host="m.xkcd.com" />
9263        <target host="m.xkcd.org" />
9264        <rule from="^http://(www\.)?xkcd\.(com|org)/"
9265                to="https://www.xkcd.com/" />
9266        <rule from="^http://m\.xkcd\.(com|org)/"
9267                to="https://m.xkcd.com/" />
9268        <rule from="^http://(www\.)?store\.xkcd\.com/"
9269                to="https://store.xkcd.com/" />
9270</ruleset>
9271</rulesetlibrary>