Squashed commit of the following:

J0WI · J0WI · commit 275781e4bb30 · 2016-07-29T03:05:46.000+02:00
commit 7af0045 Merge: 38896cd ffdffee Author: jowi <sjw@gmx.ch> Date: Fri Jul 29 03:00:14 2016 +0200 Merge branch 'ancestry-patch' of https://github.com/fuglede/https-everywhere into fuglede-ancestry-patch commit ffdffee Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Sun Jul 17 20:40:19 2016 +0200 [Custhelp.com] Remove subdomains See the parent commit for more details; basically, even with a bit of assistance, too many redirects were there for the tests to be happy about it. Since the ultimate target of those redirects could not be secured anyway, let us just remove the rules. commit 8c08ce6 Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Sun Jul 17 20:26:17 2016 +0200 [Custhelp.com] Update targets This redirects directly to the target that the host itself redirects to through a middle-man, when accessed via http. Normally, we don't carry out the redirects for the sites, if we can instead upgrade to a secure connection directly (as the ruleset did previously), but in this case, the total amount of redirects were causing issues for the fetch tests (see EFForg#4747 (comment)), and since the initial redirect already bounced to a different domain, I figured this wasn't as bad an idea in this case, as it might be in others. commit 50ac266 Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Sun Jun 26 14:39:05 2016 +0200 Merge submodule changes commit 77d8a84 Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Sun Jun 26 14:30:16 2016 +0200 [Ancestry] Update ruleset This incorporates the notes on subdomains mentioned in EFForg#4747 (comment). It also removes the rule for secure.store.ancestry.com which currently times out. commit 4df85d4 Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Sun Jun 26 14:32:48 2016 +0200 Remove Ancestry.xml from whitelist Conflicts: utils/ruleset-coverage-whitelist.txt commit 7b420ea Author: Søren Fuglede Jørgensen <s@fuglede.dk> Date: Wed May 11 22:46:43 2016 +0200 [Ancestry] Disable a few rules This should fix the issues mentioned in EFForg#4742 -- unfortunately, one of those requires a user login, but based on the input provided in that GH issue, simply taking out the CORS issue-causing domain should do the job.
diff --git a/src/chrome/content/rules/Ancestry.xml b/src/chrome/content/rules/Ancestry.xml
@@ -9,43 +9,41 @@
 		- (www.)ancestry.co.uk *
 		- (www.)ancestry.com *
 		- blog.ancestry.com *
+		- blogs.ancestry.com ¹
+		- boards.ancestry.com *
+		- community.ancestry.com *
+		- home.ancestry.com *
+		- rootsweb.ancestry.com *
+		- search.ancestry.com *
+		- trees.ancestry.com *
 
 	* Refused
+	¹ Mismatch
 
 
 	Problematic domains:
 
-		- c.ancestry.com	(akamai)
-
-
-	Fully covered domains:
-
-		- secure.ancestry.co.uk
-		- c.ancestry.com	(→ c.mfcreative.com)
-		- c.mfcreative.com
+		- c.ancestry.com		(akamai)
+		- corporate.ancestry.com	(redirects to HTTP)
+		- c.mfccreative.com		(causes CORS issues)
 
 -->
 <ruleset name="Ancestry.com (partial)">
 
 	<target host="secure.ancestry.co.uk" />
-	<target host="*.ancestry.com" />
-	<target host="c.mfcreative.com" />
+
+	<target host="health.ancestry.com" />
+	<target host="help.ancestry.com" />
+	<target host="dna.ancestry.com" />
+	<target host="store.ancestry.com" />
+	<target host="support.ancestry.com" />
 
 
 	<securecookie host="^secure\.ancestry\.co\.uk$" name=".+" />
 	<securecookie host="^dna\.ancestry\.com$" name=".+" />
 
 
-	<rule from="^http://secure\.ancestry\.co\.uk/"
-		to="https://secure.ancestry.co.uk/" />
-
-	<rule from="^http://dna\.ancestry\.com/"
-		to="https://dna.ancestry.com/" />
-
-	<rule from="^http://(?:secure\.)?store\.ancestry\.com/"
-		to="https://secure.store.ancestry.com/" />
-
-	<rule from="^http://c\.(?:ancestry|mfcreative)\.com/"
-		to="https://c.mfcreative.com/" />
+	<rule from="^http:"
+		to="https:" />
 
 </ruleset>
diff --git a/src/chrome/content/rules/Custhelp.com.xml b/src/chrome/content/rules/Custhelp.com.xml
@@ -36,11 +36,16 @@
 	<exclusion pattern="^http://canoncanada\.custhelp\.com/" />
 
 		<test url="http://canoncanada.custhelp.com/" />
-		
+
 	<!-- Fix #4742 -->
 	<exclusion pattern="^http://ancestryuk\.custhelp\.com/" />
-	
-	<test url="http://ancestryuk.custhelp.com/" />
+
+		<test url="http://ancestryuk.custhelp.com/" />
+
+	<!-- Redirects through a number of sites which ultimately can not be secured. -->
+	<exclusion pattern="^http://www\.custhelp\.com/" />
+
+		<test url="http://www.custhelp.com/" />
 
 	<!--	Mismatched (CN: forums.motorola.com)
 
diff --git a/utils/ruleset-coverage-whitelist.txt b/utils/ruleset-coverage-whitelist.txt
@@ -349,7 +349,7 @@ b2552ff803ea1ca29d3c3daba9f91d398e812a34fd9649a64ed8541e240dbb2d  Analytics.edge
 dd70debfd991bb22af84defbd2e2e138ffcb6833abc14c2306ca8a74884adc69  Analytics.edgesuite.net.xml
 e98e069b007f4adb9098eccd264fe472c4d5af95bbce86fdf03fe1e21c23a580  AnarchistNews.xml
 2441455388de9d12ccfad5c0b83035d8b47127291f9c06dbce841ec75db3a6fc  ANB.xml
-d7016ce4b049d3bf0a5ab6b601b0189ed9c6f6c5d8392daf5486d022d632ae58  Ancestry.xml
+3defe75f544d17aade0f482f90ffc16077f9f3cf1b55df24b0fa71f3e65f8ec7  Anchor.xml
 7ac1cec22ddf2d592fc25f91c145bedf66894ec6ba6b369c9527b520b35e2711  AnchorFree.xml
 4b70b0b18a0bff5c2c2f9bcd770f000a9d9be1df8b1c33428a682fe11ec8d15f  Ancud.de.xml
 4374b1d75194a0b7191a28cbb5363d9065e69ca23f46f8778a899e9e3c74a6e6  Andalucia_Property_Rentals.com.xml
