/
Microsoft-Atlas.xml
86 lines (56 loc) · 1.88 KB
/
Microsoft-Atlas.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
<!--
For other Facebook coverage, see Facebook.xml.
CDN buckets:
- a248.e.akamai.net/img.atdmt.com/
- atlasdmt.vo.msecnd.net
- cdn.atdmt.com
Problematic hosts in *atdmt.com:
- cdn (mismatched, CN: *.sharepointonline.com)
- h ¹
- img ²
- exch-eu (mismatched, CN: view.atdmt.com)
- spe (akamai)
¹ Mismatched
² Server sends no certificate chain, see https://whatsmychaincert.com
Insecure cookies are set for these domains: ᶜ
- .atdmt.com
ᶜ See https://owasp.org/index.php/SecureFlag
c.atdmt.com sets MUID wildcard cookie on
whichever domain it is loaded from.
-->
<ruleset name="Atdmt.com">
<!-- Direct rewrites:
-->
<target host="ad.atdmt.com" />
<target host="c.atdmt.com" />
<target host="c1.atdmt.com" />
<target host="clk.atdmt.com" />
<target host="flex.atdmt.com" />
<target host="iact.atdmt.com" />
<target host="rad.atdmt.com" />
<target host="sact.atdmt.com" />
<target host="switch.atdmt.com" />
<target host="view.atdmt.com" />
<!-- Sets cookie without Secure:
-->
<!--test url="http://ad.atdmt.com/m/img;m=;cache=?revenue=&order_id=&qty=&currency_code=&country=&region=&product=" /-->
<!-- Complications:
-->
<target host="cdn.atdmt.com" />
<target host="exch-eu.atdmt.com" />
<target host="h.atdmt.com" />
<exclusion pattern="^http://view\.atdmt\.com/action/windows_downloads_Upgrade" />
<test url="http://view.atdmt.com/action/windows_downloads_Upgrade" />
<!-- Not secured by server:
-->
<!--securecookie host="^\.atdmt\.com$" name="^(?:AA002|ATN|MUID)$" /-->
<securecookie host="." name="." />
<rule from="^http://cdn\.atdmt\.com/"
to="https://atlasdmt.vo.msecnd.net/" />
<rule from="^http://exch-eu\.atdmt\.com/"
to="https://view.atdmt.com/" />
<rule from="^http://h\.atdmt\.com/"
to="https://h.bing.com/" />
<rule from="^http:"
to="https:" />
</ruleset>