HTTPS Somewhere
Redirect HTTP to HTTPS with user defined rules.
什么是HTTPS Somewhere?
HTTPS Somewhere是由AfterRain开发的Chrome扩展程序,该扩展的主要功能是“Redirect HTTP to HTTPS with user defined rules.”。
扩展截图
下载HTTPS Somewhere扩展crx文件
下载HTTPS Somewhere扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。
扩展使用说明
[Notice: in alpha state] If you like to look under the hood, writing some regular expression, or want a safer way to prevent massive XSS attack utilizing TLS or SSL encryption. HTTPS Somewhere will not let you disappointed. It is another HTTPS redirection extension that do exactly what you want. (See screenshot for better idea.) What make HTTPS Somewhere different from HTTPS Everywhere? - Encrypt what matter rather than attempt to encrypt many websites as possible. - Works with resources and elements even on the webpages that not secure.* - You take full control of the redirection with more advance user interface. - Take advantage from powerful regular expression you can define any pattern you can imagined. - Works completely in the background no icon added to the toolbar. - HTTPS Somewhere will never break any website without your consent. - It doesn't try to outsmart you. Some limitations: - Relatively difficult compared to HTTPS Everywhere. - Can't redirect to different hostname. How to use? - Check "Options" link in chrome://extensions/ * Why this matter? Why make some resources secure despite that the page itself is not? It doesn't make anything more secure, does it? There is a case in Thailand where an attacker exploit caching server of certain ISP. (Probably related to DNS and weird caching behavior. The details never made public and the case was denied by the ISP. However, this case affect millions of endpoints leaving lots of eye witness.) The attacker focus on Google's services included (but not limited to) Google Analytic and Google Ads. Result in massive and largest scale javascript injection I ever see in my life. (My estimation of the revenue the attacker gain from this one attack is at least 6 figures USD. The attack last for months because it is highly inconsistent.) So yeah in theory this probably wont gain any security to any page or prevent Eve to do bad things but in practical it does prevent some attack vector.
扩展基本信息
名称 | HTTPS Somewhere |
ID | dapfmaempgppekcneleonmpoebhkfaol |
官方URL | https://chromewebstore.google.com/detail/https-somewhere/dapfmaempgppekcneleonmpoebhkfaol |
简介 | Redirect HTTP to HTTPS with user defined rules. |
文件大小 | 275 KB |
安装次数 | 9,218 |
当前版本 | 0.0.1 |
更新时间 | 2014-09-08 |
上架时间 | 2014-09-08 |
评分 | 4.50/5 共12次评分 |
开发者 | AfterRain |
付费类型 | free |
支持的语言 | en-US |
manifest.json | |
{ "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx", "manifest_version": 2, "name": "HTTPS Somewhere", "description": "Redirect HTTP to HTTPS with user defined rules.", "version": "0.0.1", "permissions": [ "*:\/\/*\/", "webRequest", "webRequestBlocking", "storage" ], "options_page": "options.html", "minimum_chrome_version": "22", "background": { "page": "background.html" } } |