HTTPS Somewhere
Redirect HTTP to HTTPS with user defined rules.
什麼是HTTPS Somewhere?
HTTPS Somewhere是由AfterRain開發的Chrome擴展程式,該擴展的主要功能是“Redirect HTTP to HTTPS with user defined rules.”。
擴展截圖
下載HTTPS Somewhere擴展crx文件
下載HTTPS Somewhere擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。
擴展使用說明
[Notice: in alpha state]
If you like to look under the hood, writing some regular expression, or want a safer way to prevent massive XSS attack utilizing TLS or SSL encryption. HTTPS Somewhere will not let you disappointed.
It is another HTTPS redirection extension that do exactly what you want.
(See screenshot for better idea.)
What make HTTPS Somewhere different from HTTPS Everywhere?
- Encrypt what matter rather than attempt to encrypt many websites as possible.
- Works with resources and elements even on the webpages that not secure.*
- You take full control of the redirection with more advance user interface.
- Take advantage from powerful regular expression you can define any pattern you can imagined.
- Works completely in the background no icon added to the toolbar.
- HTTPS Somewhere will never break any website without your consent.
- It doesn't try to outsmart you.
Some limitations:
- Relatively difficult compared to HTTPS Everywhere.
- Can't redirect to different hostname.
How to use?
- Check "Options" link in chrome://extensions/
* Why this matter? Why make some resources secure despite that the page itself is not?
It doesn't make anything more secure, does it?
There is a case in Thailand where an attacker exploit caching server of certain ISP. (Probably related to DNS and weird caching behavior. The details never made public and the case was denied by the ISP. However, this case affect millions of endpoints leaving lots of eye witness.) The attacker focus on Google's services included (but not limited to) Google Analytic and Google Ads. Result in massive and largest scale javascript injection I ever see in my life. (My estimation of the revenue the attacker gain from this one attack is at least 6 figures USD. The attack last for months because it is highly inconsistent.) So yeah in theory this probably wont gain any security to any page or prevent Eve to do bad things but in practical it does prevent some attack vector. 擴展基本資訊
| 名稱 |  HTTPS Somewhere |
| ID | dapfmaempgppekcneleonmpoebhkfaol |
| 官方網址 | https://chromewebstore.google.com/detail/https-somewhere/dapfmaempgppekcneleonmpoebhkfaol |
| 簡介 | Redirect HTTP to HTTPS with user defined rules. |
| 檔案大小 | 275 KB |
| 安裝次數 | 9,218 |
| 目前版本 | 0.0.1 |
| 更新時間 | 2014-09-08 |
| 上架時間 | 2014-09-08 |
| 評分 | 4.50/5 共 12 次評分 |
| 開發者 | AfterRain |
| 付費類型 | free |
| 支援的語言 | en-US |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"manifest_version": 2,
"name": "HTTPS Somewhere",
"description": "Redirect HTTP to HTTPS with user defined rules.",
"version": "0.0.1",
"permissions": [
"*:\/\/*\/",
"webRequest",
"webRequestBlocking",
"storage"
],
"options_page": "options.html",
"minimum_chrome_version": "22",
"background": {
"page": "background.html"
}
} | |
