|
1 | | -<!-- |
2 | | - Phillips Academy Andover |
3 | | -
|
4 | | -
|
5 | | - Problematic hosts in *andover.edu: |
6 | | -
|
7 | | - - mail * |
8 | | -
|
9 | | - * Expired |
10 | | -
|
11 | | ---> |
12 | 1 | <ruleset name="Phillips Academy"> |
13 | 2 |
|
14 | 3 | <target host="www.andover.edu" /> |
|
17 | 6 | <target host="colwizlive.andover.edu" /> |
18 | 7 | <target host="sso.andover.edu" /> |
19 | 8 | <target host="studentreports.andover.edu" /> |
20 | | - <!--target host="mail.andover.edu" /--> |
21 | 9 | <target host="mypassword.andover.edu" /> |
22 | 10 | <target host="student.andover.edu" /> |
23 | 11 | <target host="patechmasters.com" /> |
24 | 12 | <target host="*.patechmasters.com" /> |
25 | 13 |
|
| 14 | + |
| 15 | + <!-- andover.edu does not respond, but should be redirected to https://www.andover.edu to prevent MitM. --> |
| 16 | + <target host="andover.edu" /> |
| 17 | + |
| 18 | + <!-- mail.andover.edu returns an error, but should be included to protect mail.andover.edu/owa --> |
| 19 | + <!-- commented out until 'no-test' attribute is available |
| 20 | + <target host="mail.andover.edu" /> |
| 21 | + --> |
| 22 | + |
| 23 | + <test url="http://andover.edu/" /> |
| 24 | + |
26 | 25 | <securecookie host=".+" name=".+" /> |
| 26 | + |
| 27 | + <!-- redirects andover.edu to https://www.andover.edu --> |
| 28 | + <rule from="^http://andover\.edu/" |
| 29 | + to="https://www.andover.edu/" /> |
| 30 | + |
| 31 | + |
| 32 | + <!-- redirects http://mail.andover.edu/ (with or without "/") to https://mail.andover.edu/owa --> |
| 33 | + <!-- commented out until 'no-test' attribute is available |
| 34 | + <rule from="^http://mail\.andover\.edu/*$" |
| 35 | + to="https://mail.andover.edu/owa" /> |
| 36 | + |
| 37 | + <test url="http://mail.andover.edu" /> |
| 38 | + <test url="http://mail.andover.edu/" /> |
| 39 | + --> |
27 | 40 |
|
28 | 41 | <rule from="^http:" |
29 | 42 | to="https:" /> |
|
0 commit comments