|
121 | 121 | - myservices |
122 | 122 |
|
123 | 123 | - communities |
| 124 | + - community |
124 | 125 | - competencycentre |
125 | 126 | - conference |
126 | 127 | - crm-fusioncrm |
|
154 | 155 | - fusionhelp |
155 | 156 | - fusionhelp-stage |
156 | 157 | - gcmprm |
| 158 | + - go |
157 | 159 | - hcm-fusioncrm |
158 | 160 | - hs-ws1 |
159 | 161 | - iacademy |
|
178 | 180 | - plmap |
179 | 181 | - prc-fusioncrm |
180 | 182 | - prj-fusioncrm |
| 183 | + - profile |
181 | 184 | - public-yum |
182 | 185 | - scm-fusioncrm |
183 | 186 | - search |
|
212 | 215 |
|
213 | 216 | Observed cookie subdomains: |
214 | 217 |
|
215 | | - - blogs |
216 | | -
|
217 | 218 | - cloud subdomains: |
218 | 219 |
|
219 | 220 | - ^ |
|
237 | 238 | - competencycenter |
238 | 239 | - crm-fusioncrm |
239 | 240 | - .edelivery |
240 | | - - education |
241 | 241 | - fin-fusioncrm |
242 | 242 | - fusioncrm |
243 | 243 | - hcm-fusioncrm |
244 | 244 | - ic-fusioncrm |
245 | | - - login |
246 | 245 | - medianetwork |
247 | 246 | - scm-fusioncrm |
248 | 247 | - shop |
|
251 | 250 | - www |
252 | 251 |
|
253 | 252 |
|
| 253 | + Insecure cookies are set for these domains and hosts: |
| 254 | +
|
| 255 | + - .oracle.com |
| 256 | + - blogs.oracle.com |
| 257 | + - community.oracle.com |
| 258 | + - education.oracle.com |
| 259 | + - login.oracle.com |
| 260 | +
|
| 261 | +
|
254 | 262 | Mixed content: |
255 | 263 |
|
256 | 264 | - Script on medianetwork from www.oracleimg.com ¹ |
|
260 | 268 | - medianetwork from sun.edgeboss.net |
261 | 269 | - medianetwork from www.oracleimg.com ¹ |
262 | 270 | - medianetwork from www.oracleimg.com ² |
| 271 | + - www from $self ¹ |
263 | 272 |
|
264 | 273 | - Web bugs, on: |
265 | 274 |
|
|
293 | 302 | <target host="*.us1.cloud.oracle.com" /> |
294 | 303 |
|
295 | 304 | <target host="communities.oracle.com" /> |
| 305 | + <target host="community.oracle.com" /> |
296 | 306 | <target host="competencycentre.oracle.com" /> |
297 | 307 | <target host="conference.oracle.com" /> |
298 | 308 | <target host="digitalmedia.oracle.com" /> |
|
348 | 358 | <target host="otn.oracle.com" /> |
349 | 359 | <target host="partners.oracle.com" /> |
350 | 360 | <target host="plmap.oracle.com" /> |
| 361 | + <target host="profile.oracle.com" /> |
351 | 362 | <target host="public-yum.oracle.com" /> |
352 | 363 | <target host="search.oracle.com" /> |
353 | 364 | <target host="shop.oracle.com" /> |
|
388 | 399 | <!-- |
389 | 400 | Exceptions: |
390 | 401 | --> |
391 | | - <exclusion pattern="^http://www\.oracle(?:img)?\.com/(?!(?:\w+/)?assets/|\w+/[^/]+\.(?:css|gif|jpg|js|png)$|(?:javaone|rightnow)(?:$|[?/]))"/> |
| 402 | + <exclusion pattern="^http://www\.oracle(?:img)?\.com/(?!(?:\w+/)?assets/|\w+/[^/]+\.(?:css|gif|jpg|js|png)$|(?:communities|corporate/careers|javaone|rightnow)(?:$|[?/]))"/> |
392 | 403 |
|
393 | 404 | <!-- +ve: |
394 | 405 | --> |
|
411 | 422 |
|
412 | 423 | <!-- -ve: |
413 | 424 | --> |
| 425 | + <test url="http://www.oracle.com/communities" /> |
| 426 | + <test url="http://www.oracle.com/corporate/careers" /> |
414 | 427 | <test url="http://www.oracle.com/rightnow/" /> |
415 | 428 | <test url="http://www.oracle.com/us/assets/compass-homestyle.css" /> |
416 | 429 | <test url="http://www.oracleimg.com/us/assets/compass-hp-sprite.png" /> |
|
421 | 434 | --> |
422 | 435 | <!--securecookie host="^\.oracle\.com$" name="^(Order_MarketingCampaignSuccess|Order_MarketingTrigger|p_cur_URL|p_lang|p_mcc|p_org_id)$" /--> |
423 | 436 | <!--securecookie host="^blogs\.oracle\.com$" name="^BIGipServerblogs_prod_pool$" /--> |
| 437 | + <!--securecookie host="^(community|login)\.oracle\.com$" name="^BIGipServer~Public~[\w+-]_\d+$" /--> |
| 438 | + <!--securecookie host="^community\.oracle\.com$" name="^jive\.security\.context$" /--> |
424 | 439 | <!--securecookie host="^education\.oracle\.com$" name="^BIGipServerfapap-education_http_pool$" /--> |
| 440 | + <!--securecookie host="^login\.oracle\.com$" name="^TS[\da-f]" /--> |
425 | 441 |
|
426 | 442 | <securecookie host="^(?:\w+|\.edelivery)\.oracle\.com$" name=".+" /> |
427 | 443 | <!-- |
|
459 | 475 | <rule from="^http://crmondemand\.oracle\.com/" |
460 | 476 | to="https://www.oracle.com/us/products/applications/crmondemand/index.html" /> |
461 | 477 |
|
462 | | - <rule from="^http://((?:i?academy|acsportal|advancedsupport|amr|amr-stage|apex|apexea|asktom|blogs(?:-stage)?|campus|cloud|\w+\.(?:em1|us0|us1)\.cloud|communities|competencycentre|conference|digitalmedia|dne|docs|edelivery(?:-hqdc-test)?|education(?:-stage)?|emeajobs|emeapressoffice|etrm|(?:cn\.|kr\.)?forums(?:-stage)?|(?:bi-|crm-|fin-|[hs]cm-|ic-|pr[cj]-)?fusioncrm|fusionhelp(?:-stage)?|gcmprm|hs-ws1|ilearning(?:content)?|irecruitment|itsp|itsp-stage|linux|login(?:-stage)?|medianetwork|my?|myprofile(?:-mktas)?|oai|oss|otn|partners|plmap|public-yum|search|shop|solutions|status-ksplice|stbeehive|strtc|suppliers|support(?:html)?|updates|wfs|wikis(?:-stage)?|workforce|www|www(?:-portal)?-stage)\.)?oracle\.com/" |
| 478 | + <rule from="^http://((?:i?academy|acsportal|advancedsupport|amr|amr-stage|apex|apexea|asktom|blogs(?:-stage)?|campus|cloud|\w+\.(?:em1|us0|us1)\.cloud|communities|community|competencycentre|conference|digitalmedia|dne|docs|edelivery(?:-hqdc-test)?|education(?:-stage)?|emeajobs|emeapressoffice|etrm|(?:cn\.|kr\.)?forums(?:-stage)?|(?:bi-|crm-|fin-|[hs]cm-|ic-|pr[cj]-)?fusioncrm|fusionhelp(?:-stage)?|gcmprm|go|hs-ws1|ilearning(?:content)?|irecruitment|itsp|itsp-stage|linux|login(?:-stage)?|medianetwork|my?|myprofile(?:-mktas)?|oai|oss|otn|partners|plmap|profile|public-yum|search|shop|solutions|status-ksplice|stbeehive|strtc|suppliers|support(?:html)?|updates|wfs|wikis(?:-stage)?|workforce|www|www(?:-portal)?-stage)\.)?oracle\.com/" |
463 | 479 | to="https://$1oracle.com/" /> |
464 | 480 |
|
465 | 481 | <rule from="^http://www\.oracleimg\.com/" |
|
0 commit comments