Skip to content
This repository was archived by the owner on Nov 6, 2023. It is now read-only.

Commit 6e15eac

Browse files
author
MB
committed
Verizon: Add/update comments/coverage, enumerate, sort, invert, squish, add exclusion,* split, cosmetics
* Probably fixes #4382
1 parent de9620c commit 6e15eac

File tree

4 files changed

+244
-65
lines changed

4 files changed

+244
-65
lines changed

src/chrome/content/rules/Verizon.xml

Lines changed: 148 additions & 65 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,13 @@
11
<!--
2+
Note: https?://collaborateext(stg)?.../$ redirects to a
3+
port on which nothing appears to listen/reply
4+
?=> fetch test failures
5+
26
Other Verizon rulesets:
37
48
- Share_the_Network.xml
9+
- verizon.net.xml
10+
- verizonbusiness.com.xml
511
- Verizon_Enterprise.xml
612
- Verizon_Wireless.xml
713
@@ -10,13 +16,8 @@
1016
1117
- ak1s.abmr.net/is/www22.verizon.com
1218
- vznews.convio.net
13-
14-
- wildcard.verizon.net.edgekey.net
15-
- static-business.verizon.net
16-
1719
- ehg-verizon.hitbox.com
1820
- vzw.jiwire.com
19-
2021
- vrzn.i.lithium.com
2122
2223
- vrzn.lithium.com
@@ -29,111 +30,193 @@
2930
- (www.)thinkfinity.org
3031
- (www.)community.thinkfinity.org
3132
- developer.verizon.com *
33+
- fiostrending.verizon.com ʰ
3234
- foundation.verizon.com (shows RHEL test page; self-signed, CN: ph1025101.bwi40g.vzbi.caas)
33-
- mail.verizon.com *
3435
- newscenter2.verizon.com (no https)
3536
- publicpolicy.verizon.com (redirects to forums; mismatched, CN: responsibility.verizon.com)
36-
- webmail.verizon.com *
3737
3838
* Times out.
39+
ʰ Redirects to http
3940
4041
4142
Problematic domains:
4243
44+
- verizon.com ᵐ
4345
- about.verizon.com (works; self-signed, CN: vz-about-dev.com)
4446
- entertainment.verizon.com (some pages work, at least games/index.php 404s)
47+
- responsibility.verison.com ʳ
4548
- searchresults.verizon.com (works; mismatched, CN: entertainmentlogin.verizon.com)
46-
- verizon.net *
47-
- businessforums.verizon.net **
48-
- verizonbusiness.com *
4949
50-
* Cert only matches www
51-
** CN: secure02.lithium.com, works. Handled mostly in Lithium-clients.xml.
50+
ᵐ Mismatched
51+
ʳ Refused; preemptable redirect
5252
5353
54-
Partially covered domains:
54+
Partially covered hosts in *verizon.com:
5555
56-
- collaborateext.verizon.com ¹
57-
- collaborateextstg.verizon.com ¹
58-
- www22.verizon.com *
59-
- www98.verizon.com ***
60-
- business.verizon.net **
61-
- (www.)verizonbusiness.com ***
56+
- (www.)? **
57+
- collaborateext ¹
58+
- collaborateextstg ¹
59+
- www22 *
60+
- www98
6261
62+
** ?lid=//global//residential redirects
6363
¹ $ redirects to ...:449
6464
6565
* See:
66-
- https://mail1.eff.org/pipermail/https-everywhere/2011-November/001237.html
67-
- https://mail1.eff.org/pipermail/https-everywhere-rules/2012-February/001003.html
66+
- https://lists.eff.org/pipermail/https-everywhere/2011-November/001237.html
67+
- https://lists.eff.org/pipermail/https-everywhere-rules/2012-February/001003.html
6868
6969
NB: Has this been fixed? It doesn't seem to loop...
7070
71-
* The login page, and only the login page(!), redirects to http.
72-
*** Some (most?) pages redirect to http.
7371
72+
Insecure cookies are set for these domains and hosts:
7473
75-
Fully covered domains:
74+
- .verizon.com
75+
- auth.verizon.com
76+
- enterprisecenter.verizon.com
77+
- espanol.verizon.com
78+
- forums.verizon.com
79+
- signin.verizon.com
80+
- smallbizrewards.verizon.com
81+
- webmail.verizon.com
82+
- .webmail.verizon.com
83+
- www.verizon.com
84+
- www36.verizon.com
85+
- www98.verizon.com
7686
77-
- verizon.com subdomains:
7887
79-
- (www.)
80-
- auth
81-
- enterprisecenter
82-
- entertainmentlogin
83-
- espanol
84-
- forums
85-
- responsibility
86-
- signin
87-
- smallbusiness
88-
- webmail
88+
Mixed content:
8989
90-
- (www.)verizon.net
91-
- static-business.verizon.net
90+
- Images on forums, www from $self
9291
93-
-->
94-
<ruleset name="Verizon (partial)">
92+
- Ads / bugs, on:
9593
94+
- www from fls.doubleclick.net
95+
- www from \d+.fls.doubleclick.net
96+
97+
-->
98+
<ruleset name="Verizon.com (partial)">
99+
100+
<!-- Direct rewrites:
101+
-->
102+
<target host="auth.verizon.com" />
103+
<!--target host="business.verizon.com" /-->
104+
<target host="collaborateext.verizon.com" />
105+
<target host="collaborateextstg.verizon.com" />
106+
<target host="enterprisecenter.verizon.com" />
107+
<target host="entertainmentlogin.verizon.com" />
108+
<target host="espanol.verizon.com" />
109+
<target host="forums.verizon.com" />
110+
<!--target host="mail.verizon.com" /-->
111+
<!--target host="mblogin.verizon.com" /-->
112+
<!--target host="myverizonenterprise.verizon.com" /-->
113+
<!--target host="respframework.verizon.com" /-->
114+
<target host="signin.verizon.com" />
115+
<!--target host="smallbizrewards.verizon.com" /-->
116+
<target host="smallbusiness.verizon.com" />
117+
<target host="webmail.verizon.com" />
118+
<target host="www.verizon.com" />
119+
<target host="www22.verizon.com" />
120+
<target host="www98.verizon.com" />
121+
122+
<!-- Complications:
123+
-->
96124
<target host="verizon.com" />
97-
<target host="*.verizon.com" />
98-
<exclusion pattern="^http://collaborateext(?:stg)?\.verizon\.com/(?:$|\?|aims/main/ext_index\.jsp)" />
125+
<target host="responsibility.verizon.com" />
126+
<target host="www36.verizon.com" />
127+
128+
<!-- Redirect differs:
129+
-->
130+
<!--exclusion pattern="^http://www\.verizon\.com/\?lid=//global//residential" /-->
99131
<!--
100-
investor/DocServlet 404s
132+
More conservatively:
133+
-->
134+
<exclusion pattern="^http://(?:www\.)?verizon\.com/+\?(?:.*&amp;)?lid=" />
135+
136+
<!-- +ve:
137+
-->
138+
<test url="http://verizon.com/?lid=" />
139+
<test url="http://verizon.com/?lid=//global" />
140+
<test url="http://verizon.com/?lid=//global//residential" />
141+
<test url="http://www.verizon.com/?lid=" />
142+
<test url="http://www.verizon.com/?lid=//global" />
143+
<test url="http://www.verizon.com/?lid=//global//residential" />
144+
145+
<!-- -ve:
146+
-->
147+
<test url="http://www.verizon.com/home/ak-cached/2h/styles/common.css" />
148+
149+
<!-- investor/DocServlet 404s
101150
-->
102151
<exclusion pattern="^http://www22\.verizon\.com/(?:Foryourhome/MyAccount/Unprotected|investor/DocServlet|secure/pages/viewbill)/" />
152+
153+
<!-- +ve:
154+
-->
155+
<test url="http://www22.verizon.com/Foryourhome/MyAccount/Unprotected/" />
156+
<test url="http://www22.verizon.com/investor/DocServlet/" />
157+
<test url="http://www22.verizon.com/secure/pages/viewbill/" />
158+
159+
<!-- Redirects to http:
160+
-->
103161
<exclusion pattern="^http://www98\.verizon\.com/(?:$|\?)" />
104-
<target host="verizon.net" />
105-
<target host="*.verizon.net" />
106-
<exclusion pattern="^http://business\.verizon\.net/.*SMBPortalWeb/login$" />
107-
<target host="verizonbusiness.com" />
108-
<target host="www.verizonbusiness.com" />
109162

163+
<!-- +ve:
164+
-->
165+
<test url="http://www98.verizon.com/?" />
166+
<test url="http://www98.verizon.com/?utm_source=" />
167+
168+
<!-- -ve:
169+
-->
170+
<test url="http://www98.verizon.com/cs/groups/public/documents/adacct/caret_svg.svg" />
171+
<test url="http://www98.verizon.com/home/ak-cached/2h/styles/common.css" />
172+
<test url="http://www98.verizon.com/resources/verizonglobalhome/i/buttons/pause.png" />
173+
<test url="http://www98.verizon.com/support/residential/billingcenter/homepage.htm" />
174+
175+
<!-- $ redirects to nonfunctional port, so:
176+
-->
177+
<test url="http://collaborateext.verizon.com/aims/encore/recapScreen_new.jsp" />
178+
179+
<!-- Sets cookies without Secure:
180+
-->
181+
<test url="http://www36.verizon.com/fiosvoice/signin.aspx?goto=http://www36.verizon.com:80/fiosvoice/members/default.aspx" />
182+
183+
184+
<!-- Not secured by server:
185+
-->
186+
<!--securecookie host="^\.verizon\.com$" name="^(?:Aka[SU]TrackingID|AMAuthCookie|CHAT_IN_PROGRESS|GlobalSessionID|HBXInitialVisit|INTERACTIVE_CHAT|ReferenceSessionCookie|VA_CHAT_IN_PROGRESS|dotcomsid|hersheys|islogin|lob|vzapps)$" /-->
187+
<!--securecookie host="^auth\.verizon\.com$" name="^JSESSIONID$" /-->
188+
<!--securecookie host="^enterprisecenter\.verizon\.com$" name="^NSC_" /-->
189+
<!--securecookie host="^espanol\.verizon\.com$" name="(?:_JSESSIONID$|NSC_)" /-->
190+
<!--securecookie host="^forums\.verizon\.com$" name="^Lithium(?:UserInfo|UserSecure|Visitor)$" /-->
191+
<!--securecookie host="^signin\.verizon\.com$" name="^VZSSOCOM_SESSIONID$" /-->
192+
<!--securecookie host="^smallbizrewards\.verizon\.com$" name="^CF(?:ID|TOKEN)$" /-->
193+
<!--securecookie host="^webmail\.verizon\.com$" name="^(?:AlteonP|JSESSIONID|webmail_ad)$" /-->
194+
<!--securecookie host="^\.webmail\.verizon\.com$" name="^webmailauthgeo$" /-->
195+
<!--securecookie host="^www\.verizon\.com$" name="^(?:NSC_|SMBWEBLEARNSESSIONID$)" /-->
196+
<!--securecookie host="^www36\.verizon\.com$" name="^(?:ASP\.NET_SessionId|Vzopt)$" /-->
197+
<!--securecookie host="^www98\.verizon\.com$" name="^(?:(?:ESUPPORT_JSESSIONID|omnivendorflag|ppsh_omni_flag|ppshcondcode|ppshcondcodeflag|state_flag|uniqueId)$|NSC_)" /-->
110198

111-
<securecookie host="^(?:enterprisecenter|espanol|forums|responsibility|signin|smallbusiness|webmail)\.verizon\.com$" name=".+" />
112199
<!--securecookie host="^\.verizon\.com$" name=".+" /-->
200+
<securecookie host="^(?:enterprisecenter|espanol|forums|responsibility|signin|smallbusiness|webmail)\.verizon\.com$" name=".+" />
113201
<!--securecookie host="^www22\.verizon\.com$" name=".+" /-->
114-
<securecookie host="^(?:www\.)?verizon\.net$" name=".+" />
115-
<!--securecookie host="^.*\.verizon\.net$" name=".+" /-->
116-
117202

118-
<rule from="^http://(?:www(?:22)?\.)?verizon\.com/(?:$|\?.*)"
119-
to="https://www22.verizon.com/home/verizonglobalhome/ghp_landing.aspx" />
120203

121-
<rule from="^http://(?:www(22|98)?\.)?verizon\.com/"
122-
to="https://www$1.verizon.com/" />
204+
<rule from="^http://verizon\.com/"
205+
to="https://www.verizon.com/" />
123206

124-
<rule from="^http://(auth|collaborateext(?:stg)?|enterprisecenter|entertainmentlogin|espanol|forums|responsibility|smallbusiness|signon|webmail)\.verizon\.com/"
125-
to="https://$1.verizon.com/" />
207+
<!-- Redirect drops forward slash, path, and args:
208+
-->
209+
<rule from="^http://responsibility\.verizon\.com/.*"
210+
to="https://www.verizon.com/about/responsibility/" />
126211

127-
<rule from="^http://(?:www\.)?verizon\.net/"
128-
to="https://www.verizon.net/" />
212+
<test url="http://responsibility.verizon.com/default.aspx" />
129213

130-
<rule from="^http://(static-)?business\.verizon\.net/"
131-
to="https://$1business.verizon.net/" />
214+
<rule from="^http://www36\.verizon\.com:80/"
215+
to="https://www36.verizon.com/" />
132216

133-
<rule from="^http://businessforums\.verizon\.net/html/"
134-
to="https://forums.verizon.com/html/" />
217+
<test url="http://www36.verizon.com:80/fiosvoice/members/default.aspx" />
135218

136-
<rule from="^http://(?:www\.)?verizonbusiness\.com/(gfx|support/myaccount|templates)/"
137-
to="https://www.verizonbusiness.com/$1/" />
219+
<rule from="^http:"
220+
to="https:" />
138221

139222
</ruleset>

src/chrome/content/rules/verizon.net.xml

Lines changed: 70 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,70 @@
1+
<!--
2+
For other Verizon coverage, see Verizon.xml.
3+
4+
5+
CDN buckets:
6+
7+
- wildcard.verizon.net.edgekey.net ← static-business
8+
- vrzn.lithium.com ← forums.verizon.com
9+
10+
11+
Problematic hosts in *verizon.net:
12+
13+
- ^ ᵐ
14+
- businessforums ʳ
15+
16+
ᵐ Mismatched
17+
ʳ Refused; preemptable redirect
18+
19+
20+
Insecure cookies are set for these hosts:
21+
22+
- care.verizon.net
23+
24+
-->
25+
<ruleset name="Verizon.net (partial)">
26+
27+
<!-- Direct rewrites:
28+
-->
29+
<target host="business.verizon.net" />
30+
<!--target host="care.verizon.net" /-->
31+
<target host="static-business.verizon.net" />
32+
<target host="www.verizon.net" />
33+
34+
<!-- Complications:
35+
-->
36+
<target host="verizon.net" />
37+
<target host="businessforums.verizon.net" />
38+
39+
<!-- No longer seems to redirect.
40+
-->
41+
<!--exclusion pattern="^http://business\.verizon\.net/.*SMBPortalWeb/login$" /-->
42+
43+
<test url="http://business.verizon.net/SMBPortalWeb/vanity.url?orig_url=/SMBPortalWeb/login" />
44+
45+
<!-- Sets cookie without Secure:
46+
-->
47+
<!--test url="http://care.verizon.net/iha/IHAPC.aspx" /-->
48+
49+
50+
<!-- Not secured by server:
51+
-->
52+
<!--securecookie host="^care\.verizon\.net$" name="^ASP\.NET_SessionId$" /-->
53+
54+
<securecookie host="^(?:www\.)?verizon\.net$" name=".+" />
55+
56+
57+
<rule from="^http://verizon\.net/"
58+
to="https://www.verizon.net/" />
59+
60+
<!-- Redirect drops all:
61+
-->
62+
<rule from="^http://businessforums\.verizon\.net/.*"
63+
to="https://business.verizon.com/MyBusinessAccount/one.portal?_nfpb=true&amp;_pageLabel=gb_mycommunity" />
64+
65+
<test url="http://businessforums.verizon.net/default.aspx" />
66+
67+
<rule from="^http:"
68+
to="https:" />
69+
70+
</ruleset>

src/chrome/content/rules/verizonbusiness.com.xml

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,25 @@
1+
<!--
2+
For other Verizon coverage, see Verizon.xml.
3+
4+
5+
www.verizonbusiness.com: Mismatched; preemptable redirect
6+
7+
^verizonbusiness.com: Dropped over http & https
8+
9+
-->
10+
<ruleset name="Verizon Business.com">
11+
12+
<!-- Complications:
13+
-->
14+
<target host="www.verizonbusiness.com" />
15+
16+
17+
<!-- Redirect keeps all:
18+
-->
19+
<rule from="^http://www\.verizonbusiness\.com/"
20+
to="https://www.verizonenterprise.com/" />
21+
22+
<test url="http://www.verizonbusiness.com/guide/" />
23+
<test url="http://www.verizonbusiness.com/it/solutions/" />
24+
25+
</ruleset>

utils/duplicate-whitelist.txt

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -280,6 +280,7 @@ unm.edu
280280
upic.me
281281
usatoday.com
282282
usni.org
283+
businessforums.verizon.net
283284
vidup.me
284285
*.vk.com
285286
vk.com

0 commit comments

Comments
 (0)