Opened 9 years ago

Closed 9 years ago

#1725 closed enhancement (duplicate)

kernel.org ruleset

Reported by: rransom Owned by: pde
Priority: Medium Milestone:
Component: HTTPS Everywhere/EFF-HTTPS Everywhere Version:
Severity: Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

As of 2010-03-18, kernel.org supports HTTPS for all subdomains except mirrors.kernel.org. See the attached ruleset.

Child Tickets

Attachments (2)

kernel.org.xml (625 bytes) - added by rransom 9 years ago.
kernel.org ruleset
kernel.org.2.xml (688 bytes) - added by rransom 9 years ago.
kernel.org ruleset

Download all attachments as: .zip

Change History (10)

Changed 9 years ago by rransom

Attachment: kernel.org.xml added

kernel.org ruleset

comment:1 Changed 9 years ago by bee

Hi!!!!!!!!!!!!!!
Thank you for this rule set!!!!!!! However it doesn't work very well!!!
This is a working example of non-working domains!!!!!! haha!!!!!!!!!
http://mirrors2.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm
http://mirrors3.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm
http://mirrors4.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm
I don't know if there are others non working domains!!!!! but no mirrors work!!!!!! this is not expected!!!!

~bee!!!!!!!!

Changed 9 years ago by rransom

Attachment: kernel.org.2.xml added

kernel.org ruleset

comment:2 in reply to:  1 Changed 9 years ago by rransom

Replying to bee:

Hi!!!!!!!!!!!!!!
Thank you for this rule set!!!!!!! However it doesn't work very well!!!
This is a working example of non-working domains!!!!!! haha!!!!!!!!!
http://mirrors2.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm
http://mirrors3.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm
http://mirrors4.kernel.org/fedora/updates/testing/13/i386/beesu-2.6-1.fc13.i686.rpm

Thanks -- I didn't know the mirrors# subdomains were still available. The new ruleset adds an exception for ‘mirrors#.kernel.org’.

I ran DNS lookups for mirrors[12].(us|eu).kernel.org and got NXDOMAIN errors for all of them, so I didn't add an exception for mirrors subdomains with numbers and country codes. I think another ‘doesn't work’ bug report is less dangerous than silently allowing non-SSL access to a site that shouldn't exist.

I don't know if there are others non working domains!!!!! but no mirrors work!!!!!! this is not expected!!!!

As I wrote in the ticket, kernel.org is now advertising HTTPS support on all subdomains except mirrors.kernel.org. The lack of HTTPS support for mirrors# isn't unexpected, but a ruleset that tries to use HTTPS for those domains is still buggy.

comment:3 in reply to:  1 Changed 9 years ago by rransom

Replying to bee:

but no mirrors work!!!!!!

Also, mirrors.kernel.org (no number) worked with my original ruleset, and that is a better domain name to use in general (and especially through Tor), since they now use GeoDNS to automatically map that name to a nearby IP address.

comment:4 Changed 9 years ago by bee

Hi rransom!!!!!!!!! You're welcome!!!!!!!!
Yeah!!!!! It's mirrors.kernel.org moving me on a numeric mirror!!!! but i ain't using TOR!!!!!!
I looked into the mirrors with country codes, but they neither work!!!!! Yeah!! all country mirrors are blocked too!!!!!
http://www.ar.kernel.org
http://www.be.kernel.org
http://www.ca.kernel.org
http://www.jp.kernel.org
http://www.no.kernel.org
This is the full list https://www.kernel.org/mirrors/ !!!!!!!

Also, this is not the same thing!!!!!
http://www.uk.kernel.org/pub/
https://www.uk.kernel.org/ (what is this page!!!!!!!?)

No mirrors with country codes are working!!!!!!!!!!!! I think the exclusion/exception you need to add is: http://www\.[a-z][a-z]\.kernel\.org or something of similar!!!!!!

Well, everything is fine!!!! yeah don't worry, not even the Tor Project managed to write good filters for their own website!!!!!!!!! lolol!!! this is funny!!!! https://trac.torproject.org/projects/tor/ticket/1694 !!!!! At least you care to fix and update your filter!!! you listen to my suggestions and improve your useful filter!!! mike perry is not even doing this!!!!!!!!!!!!!!!!!!

bye!!!!!!!!!
~bee!!!!

comment:5 in reply to:  4 Changed 9 years ago by phobos

Replying to bee:

Well, everything is fine!!!! yeah don't worry, not even the Tor Project managed to write good filters for their own website!!!!!!!!! lolol!!! this is funny!!!! https://trac.torproject.org/projects/tor/ticket/1694 !!!!! At least you care to fix and update your filter!!! you listen to my suggestions and improve your useful filter!!! mike perry is not even doing this!!!!!!!!!!!!!!!!!!

bee, please keep the comments relevant to the ticket. attacking us and/or individual developers is off-topic and unappreciated. thanks.

comment:6 Changed 9 years ago by bee

HI phobos!!!!!
Yeah!! You're right!! Mike perry is thankless!!!!! I don't know why you or erinn don't tell anything to him!!!!! I sent him useful ideas, bug reports and working patches to improve https-everywhere and tor-button!!!!!! But he doesn't listen to me and discarding my help he's actually missing huge opportunities to improve the software!!!!!!!! Plenty of times i even wrote the code for him!!!!! A lot of code!!!! I don't know why he's so unable to copy and paste it!!!!!!!!
Indeed, his attacks and discrimination against me, end up reflected against the whole project!!!!! He doesn't understand!! He isn't ignoring me, but enhancements for the Tor Project!!!!!!!!!!!!! Yeah!!!! it's his fault!!!!! He's utterly jealous!!!!!!!!!!!!
I know he dislikes honey bees too!!!! He cannot be any good!!!!!!! He's ungrateful, unpleasant, old and very lazy!!!!!!!!!!!!!!!!!!!! I don't!! i don't like him!!!!!!!! at all!!!

bye!!!!!!!
~bee!!!

comment:7 Changed 9 years ago by mikeperry

Has anyone tested the new proposed rules in a complete ruleset? I notice the attachment hasn't been updated.

comment:8 Changed 9 years ago by mikeperry

Resolution: duplicate
Status: newclosed

We have an alternate kernel.org ruleset in git already. If anything needs to be changed after some actual testing, please update that rule. See https://www.eff.org/https-everywhere/development#git-howto

Note: See TracTickets for help on using tickets.