Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Sync preloaded HSTS with chromium | Josh Rickmar | 2012-10-28 | 1 | -3/+10 |
| | |||||
* | Add regex support to whitelists | Josh Rickmar | 2012-09-18 | 1 | -61/+20 |
| | | | | | | | | | | | | | | This modifies the whitelist and https forcing code to internally use unix extended regular expressions to match domains. The old config syntax converted to an appropiate regular expression. Inputing of raw regular expressions is possible by prepending the string "re:" in front of a regular expression, for example: js_wl = re:^(.*\.)*cyphertite\.com$ would be the same as js_wl = .cyphertite.com | ||||
* | Sync preloaded hsts with chromium | Josh Rickmar | 2012-09-15 | 1 | -0/+5 |
| | |||||
* | Sync preloaded HSTS with Chromium | Josh Rickmar | 2012-08-28 | 1 | -1/+3 |
| | |||||
* | Sync preloaded HSTS with chromium | Josh Rickmar | 2012-08-25 | 1 | -0/+2 |
| | |||||
* | Also add www.bitrig.org to preloaded hsts | Josh Rickmar | 2012-08-15 | 1 | -0/+1 |
| | |||||
* | Bitrig mirrors aren't https, don't include subdomains in hsts | Josh Rickmar | 2012-08-15 | 1 | -1/+1 |
| | |||||
* | Sync preloaded HSTS with Chromium | Josh Rickmar | 2012-08-14 | 1 | -0/+1 |
| | |||||
* | Sync preloaded HSTS list with Chromium | Josh Rickmar | 2012-08-06 | 1 | -0/+5 |
| | |||||
* | Re-add more google domains to the preloaded HSTS list. Accidently | Josh Rickmar | 2012-07-31 | 1 | -0/+16 |
| | | | | | removed these earlier as we had .google.com, which was later removed as .google.com was only there for cert pinning. | ||||
* | Add a force_https setting (using the same domain syntax as the | Josh Rickmar | 2012-07-31 | 1 | -0/+108 |
whitelist settings) to make all requests to that domain use the HTTPS scheme, similar to HSTS. Install a new file, hsts-preload, into the resource dir. This is a regular config file with a bunch of force_https = ... lines, which is used to implement a preloaded HSTS list. Right now all the domains in this file, except for conformal.com and cyphertite.com, are taken directly from chromium's preloaded HSTS list (and should be synced with this file every so often). Also implement a new setting, preload_strict_transport (enabled by default), to enable or disable the loading of this preloaded HSTS list. Document force_https and preload_strict_transport in the manpage. |