On 23 July 2014 14:31, Ian Cordasco <[email protected]> wrote: > On Wed, Jul 23, 2014 at 3:44 PM, Weedy <[email protected]> wrote: >> Did you guys ever work out how webmasters/sysadmins could embed rules >> into a page or store something in the docroot? >> >> https://domain.com/http-everywhere.xml or something? > > Is the purpose so that when you visit a website, you find a ruleset > for the domain and then download/load that ruleset?
HSTS is likely a better technology for the majority of use cases. I could see how a .well-known/ [0] ruleset would offer additional functionality (pattern based rules) but I wonder about the likely adoption rate is. It would have to be a website that wants HTTPS for all access to only a particular subset of pages. [0] If the server wanted to do this, they coul -- Eitan Adler _______________________________________________ HTTPS-Everywhere mailing list [email protected] https://lists.eff.org/mailman/listinfo/https-everywhere
