|
|
|
current/doc/webserver/user-manual actions-file.html, 1.24, 1.25 appendix.ht: msg#00017web.privoxy.cvs
Update of /cvsroot/ijbswa/current/doc/webserver/user-manual In directory sc8-pr-cvs2.sourceforge.net:/tmp/cvs-serv1060/doc/webserver/user-manual Modified Files: actions-file.html appendix.html configuration.html copyright.html filter-file.html index.html installation.html introduction.html quickstart.html startup.html Log Message: More docs for 307 stable. Index: actions-file.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/actions-file.html,v retrieving revision 1.24 retrieving revision 1.25 diff -u -d -r1.24 -r1.25 --- actions-file.html 22 Nov 2007 17:38:40 -0000 1.24 +++ actions-file.html 7 Dec 2007 12:00:08 -0000 1.25 @@ -259,7 +259,7 @@ > <DIV CLASS="TABLE" ><A -NAME="AEN2171" +NAME="AEN2167" ></A ><P ><B @@ -528,7 +528,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN2270" +NAME="AEN2266" >8.1. Finding the Right Mix</A ></H2 ><P @@ -563,7 +563,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN2277" +NAME="AEN2273" >8.2. How to Edit</A ></H2 ><P @@ -893,7 +893,7 @@ ><H3 CLASS="SECT3" ><A -NAME="AEN2368" +NAME="AEN2364" >8.4.1. The Domain Pattern</A ></H3 ><P @@ -1117,7 +1117,7 @@ ><H3 CLASS="SECT3" ><A -NAME="AEN2439" +NAME="AEN2435" >8.4.2. The Path Pattern</A ></H3 ><P @@ -2061,6 +2061,14 @@ and use their output as input. </P ><P +> If the request URL gets changed, <SPAN +CLASS="APPLICATION" +>Privoxy</SPAN +> will detect that and use the new + one. This can be used to rewrite the request destination behind the client's + back, for example to specify a Tor exit relay for certain requests. + </P +><P > Please refer to the <A HREF="filter-file.html" >filter file chapter</A @@ -4339,6 +4347,8 @@ # This way you can continue to use Tor for your normal browsing, # without overloading the Tor network with your FreeBSD ports updates # or downloads of bigger files like ISOs. +# Note that HTTP headers are easy to fake and therefore their +# values are as (un)trustworthy as your clients and users. {+forward-override{forward .} \ -hide-if-modified-since \ -overwrite-last-modified \ @@ -4926,8 +4936,8 @@ CLASS="QUOTE" >"If-Modified-Since:"</SPAN > makes - sure it isn't used as a cookie replacement, but you will run into - caching problems if the random range is too high. + it less likely that the server can use the time as a cookie replacement, + but you will run into caching problems if the random range is too high. </P ><P > It is a good idea to only use a small negative value and let @@ -4948,7 +4958,8 @@ HREF="actions-file.html#CRUNCH-IF-NONE-MATCH" >crunch-if-none-match</A ></TT ->. +>, + otherwise it's more or less pointless. </P ></DD ><DT @@ -4963,8 +4974,8 @@ ><TD ><PRE CLASS="SCREEN" -># Let the browser revalidate without being tracked across sessions -{ +hide-if-modified-since{-60} \ +># Let the browser revalidate but make tracking based on the time less likely. +{+hide-if-modified-since{-60} \ +overwrite-last-modified{randomize} \ +crunch-if-none-match} /</PRE @@ -4994,7 +5005,7 @@ >Typical use:</DT ><DD ><P ->Improve privacy by not embedding the source of the request in the HTTP headers.</P +>Improve privacy by not forwarding the source of the request in the HTTP headers.</P ></DD ><DT >Effect:</DT @@ -5003,8 +5014,7 @@ > Deletes any existing <SPAN CLASS="QUOTE" >"X-Forwarded-for:"</SPAN -> HTTP header from client requests, - and prevents adding a new one. +> HTTP header from client requests. </P ></DD ><DT @@ -5024,7 +5034,7 @@ >Notes:</DT ><DD ><P -> It is safe to leave this on. +> It is safe and recommended to leave this on. </P ></DD ><DT @@ -5216,6 +5226,13 @@ ><P ><SPAN CLASS="QUOTE" +>"conditional-forge"</SPAN +> to forge the header if the host has changed.</P +></LI +><LI +><P +><SPAN +CLASS="QUOTE" >"block"</SPAN > to delete the header unconditionally.</P ></LI @@ -5258,7 +5275,7 @@ ><P > Always blocking the referrer, or using a custom one, can lead to failures on servers that check the referrer before they answer any - requests, in an attempt to prevent their valuable content from being + requests, in an attempt to prevent their content from being embedded or linked to elsewhere. </P ><P @@ -5345,7 +5362,7 @@ >Typical use:</DT ><DD ><P ->Conceal your type of browser and client operating system</P +>Try to conceal your type of browser and client operating system</P ></DD ><DT >Effect:</DT @@ -5403,7 +5420,6 @@ ></SPAN > the right thing to do: good web sites work browser-independently). - </P ></TD ></TR @@ -5491,7 +5507,7 @@ >Typical use:</DT ><DD ><P ->To protect against the MS buffer over-run in JPEG processing</P +>Try to protect against a MS buffer over-run in JPEG processing</P ></DD ><DT >Effect:</DT @@ -5522,12 +5538,13 @@ allow execution of code on the target system, giving an attacker access to the system in question by merely planting an altered JPEG image, which would have no obvious indications of what lurks inside. This action - prevents this exploit. + tries to prevent this exploit if delivered through unencrypted HTTP. </P ><P -> Note that the described exploit is only one of many, - using this action does not mean that you no longer - have to patch the client. +> Note that the exploit mentioned is several years old + and it's unlikely that your client is still vulnerable + against it. This action may be removed in one of the + next releases. </P ></DD ><DT @@ -5701,6 +5718,9 @@ > This action is most appropriate for browsers that don't have any controls for unwanted pop-ups. Not recommended for general usage. </P +><P +> This action doesn't work very reliable and may be removed in future releases. + </P ></DD ><DT >Example usage:</DT @@ -5793,8 +5813,7 @@ > URLs) through proxies. It works very simply: the proxy connects to the server on the specified port, and then short-circuits its connections to the client and to the remote server. - This can be a big security hole, since CONNECT-enabled proxies can be - abused as TCP relays very easily. + This means CONNECT-enabled proxies can be used as TCP relays very easily. </P ><P > <SPAN @@ -7164,7 +7183,7 @@ ><H3 CLASS="SECT3" ><A -NAME="AEN4245" +NAME="AEN4247" >8.5.39. Summary</A ></H3 ><P @@ -7469,7 +7488,7 @@ ><H3 CLASS="SECT3" ><A -NAME="AEN4310" +NAME="AEN4312" >8.7.1. default.action</A ></H3 ><P @@ -8190,7 +8209,7 @@ ><H3 CLASS="SECT3" ><A -NAME="AEN4446" +NAME="AEN4448" >8.7.2. user.action</A ></H3 ><P Index: appendix.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/appendix.html,v retrieving revision 1.33 retrieving revision 1.34 diff -u -d -r1.33 -r1.34 --- appendix.html 22 Nov 2007 17:38:40 -0000 1.33 +++ appendix.html 7 Dec 2007 12:00:08 -0000 1.34 @@ -745,7 +745,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN5331" +NAME="AEN5333" >14.2. Privoxy's Internal Pages</A ></H2 ><P @@ -791,7 +791,7 @@ Privoxy main page: </P ><A -NAME="AEN5345" +NAME="AEN5347" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -824,7 +824,7 @@ editing of actions files: </P ><A -NAME="AEN5353" +NAME="AEN5355" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -844,7 +844,7 @@ Show the source code version numbers: </P ><A -NAME="AEN5358" +NAME="AEN5360" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -864,7 +864,7 @@ Show the browser's request headers: </P ><A -NAME="AEN5363" +NAME="AEN5365" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -884,7 +884,7 @@ Show which actions apply to a URL and why: </P ><A -NAME="AEN5368" +NAME="AEN5370" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -916,7 +916,7 @@ place: </P ><A -NAME="AEN5376" +NAME="AEN5378" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -933,7 +933,7 @@ > Short cuts. Turn off, then on: </P ><A -NAME="AEN5380" +NAME="AEN5382" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" @@ -947,7 +947,7 @@ </P ></BLOCKQUOTE ><A -NAME="AEN5383" +NAME="AEN5385" ></A ><BLOCKQUOTE CLASS="BLOCKQUOTE" Index: configuration.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/configuration.html,v retrieving revision 1.28 retrieving revision 1.29 diff -u -d -r1.28 -r1.29 --- configuration.html 22 Nov 2007 17:38:40 -0000 1.28 +++ configuration.html 7 Dec 2007 12:00:08 -0000 1.29 @@ -95,7 +95,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN816" +NAME="AEN814" >6.1. Controlling Privoxy with Your Web Browser</A ></H2 ><P @@ -126,7 +126,7 @@ > <H2 CLASS="BRIDGEHEAD" ><A -NAME="AEN824" +NAME="AEN822" ></A > Privoxy Menu</H2 ><P @@ -272,9 +272,7 @@ <SPAN CLASS="APPLICATION" >Privoxy</SPAN -> executable. The name - and number of configuration files has changed from previous versions, and is - subject to change as development progresses.</P +> executable. </P ><P > The installed defaults provide a reasonable starting point, though some settings may be aggressive by some standards. For the time being, the @@ -453,14 +451,6 @@ >old</I ></SPAN > listening address.</P -><P -> While under development, the configuration content is subject to change. - The below documentation may not be accurate by the time you read this. - Also, what constitutes a <SPAN -CLASS="QUOTE" ->"default"</SPAN -> setting, may change, so - please check all your configuration files on important issues.</P ></DIV ></DIV ><DIV Index: copyright.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/copyright.html,v retrieving revision 1.32 retrieving revision 1.33 diff -u -d -r1.32 -r1.33 --- copyright.html 22 Nov 2007 17:38:40 -0000 1.32 +++ copyright.html 7 Dec 2007 12:00:08 -0000 1.33 @@ -80,7 +80,7 @@ >12. Privoxy Copyright, License and History</A ></H1 ><P -> Copyright © 2001 - 2007 by Privoxy Developers <CODE +> Copyright © 2001-2007 by Privoxy Developers <CODE CLASS="EMAIL" ><<A HREF="mailto:ijbswa-developers@xxxxxxxxxxxxxxxxxxxxx"; @@ -99,7 +99,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN5074" +NAME="AEN5076" >12.1. License</A ></H2 ><P Index: filter-file.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/filter-file.html,v retrieving revision 1.24 retrieving revision 1.25 diff -u -d -r1.24 -r1.25 --- filter-file.html 22 Nov 2007 17:38:40 -0000 1.24 +++ filter-file.html 7 Dec 2007 12:00:08 -0000 1.25 @@ -363,7 +363,7 @@ ><H2 CLASS="SECT2" ><A -NAME="AEN4601" +NAME="AEN4603" >9.1. Filter File Tutorial</A ></H2 ><P Index: index.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/index.html,v retrieving revision 1.36 retrieving revision 1.37 diff -u -d -r1.36 -r1.37 --- index.html 22 Nov 2007 17:38:40 -0000 1.36 +++ index.html 7 Dec 2007 12:00:08 -0000 1.37 @@ -292,7 +292,7 @@ ><DL ><DT >6.1. <A -HREF="configuration.html#AEN816" +HREF="configuration.html#AEN814" >Controlling Privoxy with Your Web Browser</A ></DT ><DT @@ -515,12 +515,12 @@ ><DL ><DT >8.1. <A -HREF="actions-file.html#AEN2270" +HREF="actions-file.html#AEN2266" >Finding the Right Mix</A ></DT ><DT >8.2. <A -HREF="actions-file.html#AEN2277" +HREF="actions-file.html#AEN2273" >How to Edit</A ></DT ><DT @@ -537,12 +537,12 @@ ><DL ><DT >8.4.1. <A -HREF="actions-file.html#AEN2368" +HREF="actions-file.html#AEN2364" >The Domain Pattern</A ></DT ><DT >8.4.2. <A -HREF="actions-file.html#AEN2439" +HREF="actions-file.html#AEN2435" >The Path Pattern</A ></DT ><DT @@ -754,7 +754,7 @@ ></DT ><DT >8.5.39. <A -HREF="actions-file.html#AEN4245" +HREF="actions-file.html#AEN4247" >Summary</A ></DT ></DL @@ -773,12 +773,12 @@ ><DL ><DT >8.7.1. <A -HREF="actions-file.html#AEN4310" +HREF="actions-file.html#AEN4312" >default.action</A ></DT ><DT >8.7.2. <A -HREF="actions-file.html#AEN4446" +HREF="actions-file.html#AEN4448" >user.action</A ></DT ></DL @@ -794,7 +794,7 @@ ><DL ><DT >9.1. <A -HREF="filter-file.html#AEN4601" +HREF="filter-file.html#AEN4603" >Filter File Tutorial</A ></DT ><DT @@ -862,7 +862,7 @@ ><DL ><DT >12.1. <A -HREF="copyright.html#AEN5074" +HREF="copyright.html#AEN5076" >License</A ></DT ><DT @@ -896,7 +896,7 @@ ></DT ><DT >14.2. <A -HREF="appendix.html#AEN5331" +HREF="appendix.html#AEN5333" >Privoxy's Internal Pages</A ></DT ><DD Index: installation.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/installation.html,v retrieving revision 1.27 retrieving revision 1.28 diff -u -d -r1.27 -r1.28 --- installation.html 22 Nov 2007 17:38:40 -0000 1.27 +++ installation.html 7 Dec 2007 12:00:08 -0000 1.28 @@ -577,8 +577,8 @@ ><TD ><PRE CLASS="SCREEN" -> tar xzvf privoxy-3.0.7-beta-src* [.tgz or .tar.gz] - cd privoxy-3.0.7-beta</PRE +> tar xzvf privoxy-3.0.7-src* [.tgz or .tar.gz] + cd privoxy-3.0.7</PRE ></TD ></TR ></TABLE Index: introduction.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/introduction.html,v retrieving revision 1.22 retrieving revision 1.23 diff -u -d -r1.22 -r1.23 --- introduction.html 15 Nov 2007 03:39:49 -0000 1.22 +++ introduction.html 7 Dec 2007 12:00:08 -0000 1.23 @@ -79,27 +79,11 @@ >1. Introduction</A ></H1 ><P -> This documentation is included with the current beta version of +> This documentation is included with the current stable version of <SPAN CLASS="APPLICATION" >Privoxy</SPAN ->, v.3.0.7, - and is mostly complete at this point. The most up to date reference for the - time being is still the comments in the source files and in the individual - configuration files. Development of a new version is currently nearing - completion, and includes significant changes and enhancements over - earlier versions. .</P -><P -> Since this is a beta version, not all new features are well tested. This - documentation may be slightly out of sync as a result (especially with - CVS sources). And there <SPAN -CLASS="emphasis" -><I -CLASS="EMPHASIS" ->may be</I -></SPAN -> bugs, though hopefully - not many! </P +>, v.3.0.7.</P ><DIV CLASS="SECT2" ><H2 @@ -120,7 +104,7 @@ CLASS="APPLICATION" >Privoxy</SPAN > provides many supplemental - features, some of them currently under development, + features, that give the end-user more control, more privacy and more freedom:</P ><P > <P Index: quickstart.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/quickstart.html,v retrieving revision 1.27 retrieving revision 1.28 diff -u -d -r1.27 -r1.28 --- quickstart.html 22 Nov 2007 17:38:40 -0000 1.27 +++ quickstart.html 7 Dec 2007 12:00:08 -0000 1.28 @@ -724,7 +724,7 @@ > <DIV CLASS="FIGURE" ><A -NAME="AEN569" +NAME="AEN567" ></A ><P ><B Index: startup.html =================================================================== RCS file: /cvsroot/ijbswa/current/doc/webserver/user-manual/startup.html,v retrieving revision 1.23 retrieving revision 1.24 diff -u -d -r1.23 -r1.24 --- startup.html 22 Nov 2007 17:38:41 -0000 1.23 +++ startup.html 7 Dec 2007 12:00:08 -0000 1.24 @@ -111,7 +111,7 @@ > <DIV CLASS="FIGURE" ><A -NAME="AEN624" +NAME="AEN622" ></A ><P ><B @@ -245,7 +245,7 @@ > <DIV CLASS="FIGURE" ><A -NAME="AEN668" +NAME="AEN666" ></A ><P ><B ------------------------------------------------------------------------- SF.Net email is sponsored by: Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php_______________________________________________ ijbswa-commits mailing list ijbswa-commits@xxxxxxxxxxxxxxxxxxxxx https://lists.sourceforge.net/lists/listinfo/ijbswa-commits |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
|
|
| News | FAQ | advertise |