[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] extension for Firefox to force HTTPS always?
- To: Valdis.Kletnieks@xxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] extension for Firefox to force HTTPS always?
- From: "Kristian Erik Hermansen" <kristian.hermansen@xxxxxxxxx>
- Date: Sat, 13 Oct 2007 02:30:59 -0400
So one example is that you are in a wifi cafe and you want to browse
sites which may be available on both http and https. One example is
when you browse google calendar. By default you will get http even
after logging in over https. It doesn't really matter anyways and I
should just code this up for myself. I was just wondering if
something already existed...that whole code reuse concept...you know
:-/
On 10/12/07, Valdis.Kletnieks@xxxxxx <Valdis.Kletnieks@xxxxxx> wrote:
> On Fri, 12 Oct 2007 15:06:14 PDT, Kristian Erik Hermansen said:
> > I just wanted to clarify that I am looking for an extension that will
> > rewrite all encountered HTTP references in Firefox to HTTPS. I would
> > already have a firewall or some other layer7 filtering device blocking
> > unencrypted traffic. The addon "Better Gmail" does something similar
> > to this, with the "force HTTPS" option, but not exactly...
>
> What should this hypothetical extension do if it automagically redirects
> http: to https:, but the target server is something that is only listening
> on port 80 because it doesn't have https: enabled?
>
> https://www.cnn.com just sorta sits there for me.
>
>
--
Kristian Erik Hermansen
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/