Skip to content

/uBlock

Loading…

New issue

Wiki's list of "useful rulesets" - incomplete rules for Stack Exchange network? #1098

Closed
krzysztof-sikorski opened this Issue · 2 comments

Labels

None yet

Milestone

No milestone

Assignee

No one assigned

2 participants

@krzysztof-sikorski @gorhill
@krzysztof-sikorski
krzysztof-sikorski commented

The wiki page "Dynamic filtering: default-deny: useful rulesets" lists some rules for sites from Stack Exchange network (Stack Overflow, Server Fault etc), but they are incomplete or at least inconsistent.

There are many domains in the network (mostly subdomains of stackexchange.com) but they all run on the same engine and require the same 3rd-party content. I browse that network a lot so I gathered a bit of knowledge about required rules.

As far as I know, the sites request these domains:

  1. sstatic.net - most of the page content (styles, images etc)
  2. stackauth.com - cross-site menu / authentication bar at the top
  3. mathjax.org - for mathematic markup
  4. i.stack.imgur.com - for proxied images in questions & answers
  5. ajax.googleapis.com - not completely sure, probably only webfonts
  6. gravatar.com - user avatars

I think sources 1&2 are essential, and 3&4 are also quite nice to unblock.

So the final set of rules would be probably something like this:

askubuntu.com i.stack.imgur.com * noop
askubuntu.com mathjax.org * noop
askubuntu.com sstatic.net * noop
askubuntu.com stackauth.com * noop

mathoverflow.net i.stack.imgur.com * noop
mathoverflow.net mathjax.org * noop
mathoverflow.net sstatic.net * noop
mathoverflow.net stackauth.com * noop

serverfault.com i.stack.imgur.com * noop
serverfault.com mathjax.org * noop
serverfault.com sstatic.net * noop
serverfault.com stackauth.com * noop

stackexchange.com i.stack.imgur.com * noop
stackexchange.com mathjax.org * noop
stackexchange.com sstatic.net * noop
stackexchange.com stackauth.com * noop

stackoverflow.com i.stack.imgur.com * noop
stackoverflow.com mathjax.org * noop
stackoverflow.com sstatic.net * noop
stackoverflow.com stackauth.com * noop

superuser.com i.stack.imgur.com * noop
superuser.com mathjax.org * noop
superuser.com sstatic.net * noop
superuser.com stackauth.com * noop

I can edit the wiki page, but I would like a confirmation first - is my set correct?

@gorhill
gorhill commented

I fill that lists whenever I encountered a site for which the rules I believe are of public interest, so yes, it will always be incomplete as I can't possibly take care of the whole WWW.

The guideline is to stick to obvious 1st-party hostnames, leave out 3rd-party ones -- although I will sometimes bend that rule on a per-case basis, and also often the entry will be commented as to why (i.e. "to make videos playable"). Someone using default-deny can take care of whether or not they want to allow the 3rd-parties.

I suppose mathjax.org is reasonable, but for mathoverflow.net only.

The same cannot be said for imgur.com, ajax.googleapis.com and gravatar.com, who embed themselves everywhere.

@krzysztof-sikorski
krzysztof-sikorski commented

I will add Mathjax then, with a comment.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.