[Pkg-mozext-maintainers] Bug#638775: enable rules disabled due to CACert and Debian certificates; Debian includes those
Vagrant Cascadian
vagrant at debian.org
Mon Aug 22 19:51:52 UTC 2011
Package: xul-ext-https-everywhere
Followup-For: Bug #638775
this patch appears to work, although users may have settings cached in
prefs.js that override the new defaults:
Description: Enable CACert and Debian signed certificates.
Author: Vagrant Cascadian <vagrant at debian.org>
Bug-Debian: http://bugs.debian.org/638775
--- https-everywhere-1.0.1.orig/chrome/content/rules/default.rulesets
+++ https-everywhere-1.0.1/chrome/content/rules/default.rulesets
@@ -1197,7 +1197,7 @@ http://mags.acm.org/
<rule from="^http://budgetgolf\.se/" to="https://www.budgetgolf.se/"/>
</ruleset>
-<ruleset name="BufferedIO" default_off="Cacert signed">
+<ruleset name="BufferedIO" >
<target host="buffered.io" />
<target host="www.buffered.io" />
@@ -1259,7 +1259,7 @@ http://mags.acm.org/
<rule from="^http://(www\.)?ca-pca\.fr/" to="https://www.ca-pca.fr/"/>
</ruleset>
-<ruleset name="CACert.org" default_off="signed by CACert itself">
+<ruleset name="CACert.org" >
<target host="*.cacert.org" />
<!-- this currently errs on the side of not breaking things over security -->
@@ -1270,7 +1270,7 @@ http://mags.acm.org/
<rule from="^http://([^/:@]*)\.cacert\.org/" to="https://$1.cacert.org/"/>
</ruleset>
-<ruleset name="ccc.de" default_off="CACert">
+<ruleset name="ccc.de" >
<target host="www.ccc.de" />
<target host="*.ccc.de" />
@@ -1792,7 +1792,7 @@ http://mags.acm.org/
<rule from="^http://(www\.)?dealextreme\.com/" to="https://www.dealextreme.com/"/>
</ruleset>
-<ruleset name="DebianLists" default_off="self-signed">
+<ruleset name="DebianLists" >
<target host="lists.debian.org" />
<rule from="^http://lists\.debian\.org/" to="https://lists.debian.org/"/>
@@ -2687,7 +2687,7 @@ other users' journals! -->
<rule from="^http://bugs\.freenetproject\.org/" to="https://bugs.freenetproject.org/"/>
<rule from="^http://checksums\.freenetproject\.org/" to="https://checksums.freenetproject.org/"/>
</ruleset>
-<ruleset name="Freenode.net" default_off="CACert">
+<ruleset name="Freenode.net" >
<target host="freenode.net" />
<target host="*.freenode.net" />
@@ -4545,7 +4545,7 @@ https differs http: mob.northern-indymed
<rule from="^http://www\.lavasoft\.com/" to="https://secure.lavasoft.com/"/>
</ruleset>
-<ruleset name="Lawblog.de" default_off="CACert">
+<ruleset name="Lawblog.de" >
<target host="www.lawblog.de" />
<target host="lawblog.de" />
@@ -4651,7 +4651,7 @@ https differs http: mob.northern-indymed
<rule from="^http://liftshare\.com/" to="https://liftshare.com/"/>
<rule from="^http://(images|www|scripts)\.liftshare\.com/" to="https://$1.liftshare.com/"/>
</ruleset>
-<ruleset name="Lighttpd.net" default_off="CACert">
+<ruleset name="Lighttpd.net" >
<target host="lighttpd.net" />
<target host="www.lighttpd.net" />
<target host="blog.lighttpd.net" />
@@ -8502,7 +8502,7 @@ which does not support SSL (301 redirect
<rule from="^http://www22\.verizon\.com/" to="https://www22.verizon.com/"/>
<rule from="^http://(www\.)?verizonwireless\.com/" to="https://www.verizonwireless.com/"/>
</ruleset>
-<ruleset name="VideoLAN" default_off="CAcert">
+<ruleset name="VideoLAN" >
<target host="videolan.org" />
<target host="www.videolan.org" />
live well,
vagrant
-- System Information:
Debian Release: wheezy/sid
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'testing'), (500, 'stable'), (120, 'unstable'), (110, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 3.0.0-1-686-pae (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
xul-ext-https-everywhere depends on no packages.
Versions of packages xul-ext-https-everywhere recommends:
ii iceweasel 6.0-2 Web browser based on Firefox
xul-ext-https-everywhere suggests no packages.
-- no debconf information
More information about the Pkg-mozext-maintainers
mailing list