Fabian Keil [Mon, 20 Feb 2017 13:48:54 +0000 (13:48 +0000)]
Factor create_client_specific_tag() out of add_tag_for_client()
... to reduce code duplication and make bugs like the one
fixed in r1.8 less likely.
Fabian Keil [Mon, 20 Feb 2017 13:47:51 +0000 (13:47 +0000)]
add_tag_for_client(): Set time_to_live properly
Previously the time_to_live was always set for the first tag.
Attempts to temporarily enable a tag would result in enabling
it permanently unless no tag was enabled already.
D'oh.
Fabian Keil [Mon, 20 Feb 2017 13:47:04 +0000 (13:47 +0000)]
Insert a refresh tag into the /client-tags cgi page
... when serving it while a client-specific tag
is temporarily enabled.
This makes it less likely that the user ends up
looking at tag state that is out of date.
Fabian Keil [Mon, 20 Feb 2017 13:46:25 +0000 (13:46 +0000)]
Let rsync take care of the permissions on the remote side
... instead of clowning around with find after rsync is done.
Fabian Keil [Mon, 20 Feb 2017 13:45:36 +0000 (13:45 +0000)]
Remove a superfluous 'simply' and replace another one
Fabian Keil [Mon, 20 Feb 2017 13:45:25 +0000 (13:45 +0000)]
Remove a superfluous 'simply'
Fabian Keil [Mon, 20 Feb 2017 13:45:14 +0000 (13:45 +0000)]
Use absolute URLs in the client-tag forms
It's more consistent with the rest of the CGI page
URLs and makes it more convenient to copy the forms
to external pages.
Fabian Keil [Mon, 20 Feb 2017 13:44:54 +0000 (13:44 +0000)]
Document the "trusted-cgi-referer" directive
Sponsored by: Robert Klemme
Fabian Keil [Mon, 20 Feb 2017 13:44:32 +0000 (13:44 +0000)]
Add a 'trusted-cgi-referrer' directive
It allows to configure another page or site that can be used
to reach sensitive CGI ressources.
Example:
trusted-cgi-referer http://www.example.org/blafasel
Currently the parameter is a vanilla string (not a regular
expression) and has to match the beginning of the Referer
the client used to reach a harmful ressource.
Sponsored by: Robert Klemme
Fabian Keil [Mon, 23 Jan 2017 16:23:16 +0000 (16:23 +0000)]
Add Yossi Zahn as contributor
Fabian Keil [Mon, 23 Jan 2017 16:23:03 +0000 (16:23 +0000)]
Adjust contributor name order to get closer to alphabetical order again
Fabian Keil [Mon, 23 Jan 2017 16:12:18 +0000 (16:12 +0000)]
Revert r1.165 which didn't perform as advertised
While the idea was to use "https:// when creating links
for the user manual on the website", the actual effect
was to use "https://" when Privoxy was supposed to serve
the user manual itself.
Reverting the commit is sufficient as the "use https://
when creating links for the user manual on the website"
use case is already covered by project.h r1.214.
Reported by Yossi Zahn on Privoxy-devel@.
Fabian Keil [Mon, 23 Jan 2017 16:10:28 +0000 (16:10 +0000)]
Fix a comment
Fabian Keil [Mon, 23 Jan 2017 13:06:53 +0000 (13:06 +0000)]
Add #152: Fix CSS references in the website documentation
Fabian Keil [Mon, 23 Jan 2017 13:06:41 +0000 (13:06 +0000)]
Add fetch tests for /toggle-client-tag
Fabian Keil [Mon, 23 Jan 2017 13:06:31 +0000 (13:06 +0000)]
Update /client-tags test now that a trusted Referer is no longer required
Fabian Keil [Mon, 23 Jan 2017 13:06:19 +0000 (13:06 +0000)]
Bump for-privoxy-version to 3.0.27
... as we now rely on untrusted cgi request being
rejected with status code 403 (instead of 200).
Fabian Keil [Mon, 23 Jan 2017 13:05:58 +0000 (13:05 +0000)]
Bumpy copyright
Fabian Keil [Mon, 23 Jan 2017 13:05:50 +0000 (13:05 +0000)]
Update test for /send-stylesheet and add another one
Fabian Keil [Mon, 23 Jan 2017 13:05:26 +0000 (13:05 +0000)]
cgi_error_disabled(): Use status code 403 and an appropriate response line
Fabian Keil [Mon, 23 Jan 2017 13:05:13 +0000 (13:05 +0000)]
Bump copyright
Fabian Keil [Mon, 23 Jan 2017 13:04:58 +0000 (13:04 +0000)]
Use a dedicated cgi handler to deal with tag-toggle requests
As a result the /client-tags page is now safe to reach without
trusted Referer header which makes bookmarking or linking to
it more convenient.
Finally, refreshing the /client-tags page to show the
current state can no longer unintentionally repeat the
previous toggle request.
Fabian Keil [Mon, 23 Jan 2017 13:03:26 +0000 (13:03 +0000)]
Fix a TODO reference
Fabian Keil [Mon, 23 Jan 2017 13:03:17 +0000 (13:03 +0000)]
Remove an obsolete reference to Privoxy 3.0.17
Fabian Keil [Mon, 23 Jan 2017 13:03:06 +0000 (13:03 +0000)]
Suggest to log applying actions as well when reproducing problems
Fabian Keil [Mon, 23 Jan 2017 13:02:45 +0000 (13:02 +0000)]
Remove a couple of SourceForge references in copyright headers
Fabian Keil [Mon, 23 Jan 2017 13:02:18 +0000 (13:02 +0000)]
templates: Consistently use https:// when linking to our website
Fabian Keil [Mon, 23 Jan 2017 13:01:56 +0000 (13:01 +0000)]
templates: Remove SourceForge references in Copyright header
Fabian Keil [Mon, 23 Jan 2017 13:01:37 +0000 (13:01 +0000)]
templates: Remove a couple of SourceForge references in a comment
While at it, fix the grammar.
Fabian Keil [Mon, 23 Jan 2017 13:00:51 +0000 (13:00 +0000)]
templates: Move the site-specific documentation block before the generic one
While most Privoxy installations don't have a site-specific
documentation block, in cases were it exists it's likely to
be more relevant than the generic one.
Showing it first makes it less likely that users stop reading
before they reach it, especially on pages that don't fit on
the screen.
Fabian Keil [Mon, 23 Jan 2017 12:59:45 +0000 (12:59 +0000)]
Bump SMGL entities for 3.0.27 UNRELEASED
Fabian Keil [Thu, 12 Jan 2017 14:27:47 +0000 (14:27 +0000)]
Regenerate HTML docs with recent changes
configure.in has been locally reverted to r1.204
to get 3.0.26 stable documentation that can be put
on the webserver before the next release.
Tidied with tidy 5.2.0 from http://www.html-tidy.org/.
As an expected side effect the diff is bloated enough
to be considered a "rewrite" by git (again), but using
a more recent tidy version should make it easier to
prevent frequent diff bloat in the future when building
on different platforms.
As an unexpected side-effect some pre tags are messed
up now and their first line contains bogus white-space
that causes rendering issues. This regression should
be analysed and fixed or worked around before the next
release but doesn't seem critical.
It's conceivable that the tidy upgrade caused less
obvious regressions that have yet to be found.
Fabian Keil [Thu, 12 Jan 2017 14:20:07 +0000 (14:20 +0000)]
Add Clint Adams as contributor (Debian bug #848211)
Fabian Keil [Thu, 12 Jan 2017 14:19:58 +0000 (14:19 +0000)]
Unblock adventofcode.com/
Reported by Clint Adams in Debian bug #848211.
Fixes Roland's AF#937.
Fabian Keil [Thu, 12 Jan 2017 14:19:37 +0000 (14:19 +0000)]
Update copyright year and devel mailing list
Fabian Keil [Thu, 12 Jan 2017 14:19:27 +0000 (14:19 +0000)]
Explicitly mention that Privoxy binaries are built by individuals on their own systems
Buyer beware!
Fabian Keil [Thu, 12 Jan 2017 14:19:13 +0000 (14:19 +0000)]
Bump copyright
Fabian Keil [Thu, 12 Jan 2017 14:19:02 +0000 (14:19 +0000)]
Add a link to the sponsor FAQ to the sponsor section on the homepage
Fabian Keil [Thu, 12 Jan 2017 14:18:43 +0000 (14:18 +0000)]
Unblock adlibris.com
Reported by Wyrex in #935
Fabian Keil [Tue, 10 Jan 2017 12:13:32 +0000 (12:13 +0000)]
Update #69 to note that the autconf files can't be simply updated due to license issues
Fabian Keil [Tue, 10 Jan 2017 12:13:19 +0000 (12:13 +0000)]
Belately update #53 to note that the mailing lists moved away from SF
Ian Silvester [Tue, 3 Jan 2017 15:23:19 +0000 (15:23 +0000)]
Add Tobias Netzel as the OS X (PPC) packager
Ian Silvester [Tue, 3 Jan 2017 15:22:20 +0000 (15:22 +0000)]
Add Tobias Netzel to the list of contributors
Fabian Keil [Sat, 24 Dec 2016 16:01:32 +0000 (16:01 +0000)]
Factor send_http_request() out of chat()
Fabian Keil [Sat, 24 Dec 2016 16:00:49 +0000 (16:00 +0000)]
Add a --fuzz option
... which exposes Privoxy internals to input from files or stdout.
Mainly tested with American Fuzzy Lop. For details see:
https://www.fabiankeil.de/talks/fuzzing-on-freebsd/
This work was partially funded with donations and done
as part of the Privoxy month in 2015.
Hohoho.
Fabian Keil [Sat, 24 Dec 2016 15:58:49 +0000 (15:58 +0000)]
Factor handle_established_connection() out of chat()
... to make fuzzing it more convenient.
Fabian Keil [Fri, 9 Dec 2016 09:35:48 +0000 (09:35 +0000)]
Add Marc Thomas as contributor
Marc reported a compatibility issue with forwarded CONNECT requests:
https://lists.privoxy.org/pipermail/privoxy-users/2016-December/000127.html
Fabian Keil [Fri, 9 Dec 2016 09:13:19 +0000 (09:13 +0000)]
Don't add a "Connection" header for CONNECT requests
Explicitly sending "Connection: close" is not necessary and
apparently it causes problems with some forwarding proxies
that will close the connection prematurely.
Reported by Marc Thomas on privoxy-users@:
https://lists.privoxy.org/pipermail/privoxy-users/2016-December/000127.html
Lee [Sun, 27 Nov 2016 18:16:41 +0000 (18:16 +0000)]
does a leading space make any difference?
nothing else has one so let's be consistent
Fabian Keil [Tue, 25 Oct 2016 10:48:24 +0000 (10:48 +0000)]
Add Danny Goossen as contributor
Fabian Keil [Tue, 25 Oct 2016 10:46:56 +0000 (10:46 +0000)]
Bump copyright
Fabian Keil [Tue, 25 Oct 2016 10:45:56 +0000 (10:45 +0000)]
socks5_connect(): Fail in case of unsupported address types
Previously they would not be detected right away and
Privoxy would fail later on with an error message that
didn't make it obvious that the problem was socks-related.
So far, no such problems have actually been reported.
Fabian Keil [Tue, 25 Oct 2016 10:43:00 +0000 (10:43 +0000)]
socks5_connect(): Properly deal with socks replies that contain IPv6 addresses
Previously parts of the reply were left unread and
later on treated as invalid HTTP response data.
Fixes #904 reported by Danny Goossen who also provided
the initial version of this patch.
Lee [Tue, 27 Sep 2016 22:48:28 +0000 (22:48 +0000)]
update windows build system to use supported software
The cygwin gcc -mno-cygwin option is no longer supported, so
convert the windows build system to use the cygwin cross-compiler
to build "native" code.
Lee [Sat, 24 Sep 2016 16:16:55 +0000 (16:16 +0000)]
add --enable-static-linking option for configure
does the same thing as LDFLAGS=-static; ./configure
but nicer than mixing evars and configure options
Fabian Keil [Mon, 19 Sep 2016 14:16:42 +0000 (14:16 +0000)]
Bump required Privoxy version to 3.0.25
Due to the FEATURE_64_BIT_TIME_T dependency earlier versions
will skip some tests that should not be skipped.
Fabian Keil [Mon, 19 Sep 2016 14:16:30 +0000 (14:16 +0000)]
Fix a comment
Fabian Keil [Mon, 19 Sep 2016 14:16:22 +0000 (14:16 +0000)]
Bump copyright
Fabian Keil [Mon, 19 Sep 2016 14:16:14 +0000 (14:16 +0000)]
Add a fetch test for the client-tags page
Fabian Keil [Mon, 19 Sep 2016 14:16:05 +0000 (14:16 +0000)]
Bump version to 3.0.27 UNRELEASED
Roland Rosenfeld [Mon, 29 Aug 2016 12:04:09 +0000 (12:04 +0000)]
Add all Debian changes since 3.0.24-2.
Fabian Keil [Mon, 29 Aug 2016 10:47:44 +0000 (10:47 +0000)]
Update HTML version of the man page for 3.0.26
This required manual edits as parts of the
warranty disclaimer were missing.
Fabian Keil [Mon, 29 Aug 2016 10:45:59 +0000 (10:45 +0000)]
Fix the version of the last beta in the announcement
Fabian Keil [Mon, 29 Aug 2016 10:45:51 +0000 (10:45 +0000)]
utils/prepare-configfile.pl: Automatically unbreak the forward header line
Fabian Keil [Mon, 29 Aug 2016 10:45:38 +0000 (10:45 +0000)]
Rebuild webserver index with reference to the release feed
Fabian Keil [Mon, 29 Aug 2016 10:45:28 +0000 (10:45 +0000)]
Mention the release feed on the homepage
Ian Silvester [Sun, 28 Aug 2016 19:15:13 +0000 (19:15 +0000)]
Added packager info for iOS and Android distros
Fabian Keil [Fri, 26 Aug 2016 13:15:05 +0000 (13:15 +0000)]
Update the ChangeLog header for 3.0.25 beta
Fabian Keil [Fri, 26 Aug 2016 13:14:35 +0000 (13:14 +0000)]
Update the ChangeLog trailer for 3.0.25 beta
Fabian Keil [Fri, 26 Aug 2016 13:14:27 +0000 (13:14 +0000)]
Update announcement for 3.0.26 stable
Fabian Keil [Fri, 26 Aug 2016 13:14:18 +0000 (13:14 +0000)]
Update config file for 3.0.26
Fabian Keil [Fri, 26 Aug 2016 12:32:49 +0000 (12:32 +0000)]
Rebuild HTML docs for 3.0.26 stable
This commit yet again introduces lots of white-space
changes as the tidy output apparently isn't stable
across platforms.
Fabian Keil [Fri, 26 Aug 2016 12:32:19 +0000 (12:32 +0000)]
Shorten update instructions
The dok-release target takes care of the SGML entity updates.
Fabian Keil [Fri, 26 Aug 2016 12:32:07 +0000 (12:32 +0000)]
Fix a typo
Fabian Keil [Fri, 26 Aug 2016 12:31:58 +0000 (12:31 +0000)]
Fix typo
Fabian Keil [Fri, 26 Aug 2016 12:31:41 +0000 (12:31 +0000)]
Rebuild text files for 3.0.26 stable
Fabian Keil [Fri, 26 Aug 2016 12:31:25 +0000 (12:31 +0000)]
Update the SGML version of the ChangeLog
Fabian Keil [Fri, 26 Aug 2016 12:30:48 +0000 (12:30 +0000)]
Remove an URL in the ChangeLog
The colon confuses the SGML converter and the
URL isn't strictly necessary.
Fabian Keil [Fri, 26 Aug 2016 12:28:10 +0000 (12:28 +0000)]
Slightly reformat and rephrase ChangeLog entries
Fabian Keil [Fri, 26 Aug 2016 12:27:43 +0000 (12:27 +0000)]
Regenerate man page for 3.0.26 stable
Fabian Keil [Fri, 26 Aug 2016 12:27:34 +0000 (12:27 +0000)]
Bump SGML entities for 3.0.26 stable
Fabian Keil [Fri, 26 Aug 2016 12:27:18 +0000 (12:27 +0000)]
Add #151: Let the dok-tidy target work cross-platform
... without introducing tons of white-space changes.
Fabian Keil [Fri, 26 Aug 2016 12:26:43 +0000 (12:26 +0000)]
Declare 3.0.26 'stable'
Fabian Keil [Fri, 26 Aug 2016 11:19:53 +0000 (11:19 +0000)]
privoxy-log-parser: Use https:// for the website
Fabian Keil [Fri, 26 Aug 2016 11:19:37 +0000 (11:19 +0000)]
FAQ: Explicitly mention that sponsor logos are served from our server
Lee [Fri, 26 Aug 2016 03:45:37 +0000 (03:45 +0000)]
rebuilt .html docs for privoxy version 3.0.26
Lee [Fri, 26 Aug 2016 03:21:04 +0000 (03:21 +0000)]
add version 3.0.26 change log
Lee [Thu, 25 Aug 2016 21:49:19 +0000 (21:49 +0000)]
Add version 3.0.26 changes
Lee [Thu, 25 Aug 2016 19:53:28 +0000 (19:53 +0000)]
add a note about "entity p-version" and "entity p-status" needing to be updated
in the documentation source files to the "Before the Release:" section of the
developer manual.
Lee [Thu, 25 Aug 2016 19:22:20 +0000 (19:22 +0000)]
Add the filename to the "Update the code status" list item
in the "Before the Release:" section of the developer manual.
Lee [Thu, 25 Aug 2016 19:17:57 +0000 (19:17 +0000)]
remove obsolete info regarding X-Actions-File-Version
... and required_actions_file_version
from the "Before the Release:" section of the developer manual.
Lee [Thu, 25 Aug 2016 19:07:40 +0000 (19:07 +0000)]
Add a note about updating "for-privoxy-version=x.y.z"
... in default.action.master to the "Before the Release:"
section of the developer manual.
Lee [Mon, 22 Aug 2016 20:19:40 +0000 (20:19 +0000)]
Add a note to update the code status before releasing a new version.
Fabian Keil [Mon, 22 Aug 2016 14:50:29 +0000 (14:50 +0000)]
Add Marvin Renich (reporter of Debian bug #834941) as contributor
Fabian Keil [Mon, 22 Aug 2016 14:50:18 +0000 (14:50 +0000)]
accept_connection(): Fix crashes with "listen-addr :8118"
After jbsockets.c v1.136 a valid text representation of
the host address is required for the $listen-address
variable. If no host address has been specified, use an
empty string to prevent NULL pointer dereferences.
The problem was reported by Marvin Renich in Debian bug #834941,
the offending commit was tracked down by Roland in SF Bug #902.
Fabian Keil [Thu, 28 Jul 2016 08:25:50 +0000 (08:25 +0000)]
Rebuild HTML docs 3.0.26 UNRELEASED
Fabian Keil [Thu, 28 Jul 2016 08:25:33 +0000 (08:25 +0000)]
Bump SGML entities for 3.0.26 UNRELEASED
Fabian Keil [Thu, 28 Jul 2016 08:24:59 +0000 (08:24 +0000)]
Remove obsolete reference to mailing lists hosted at SourceForge
Fabian Keil [Thu, 28 Jul 2016 08:24:37 +0000 (08:24 +0000)]
Add the error favicon (from cgisimple.c) as vanilla file as well
The icon is used on the webserver for requests from users
who try to reach Privoxy's webinterface but end up at the
webserver due to a misconfiguration.
Previously it was copied manually to the webserver
which is error prone.
Fabian Keil [Thu, 28 Jul 2016 08:16:04 +0000 (08:16 +0000)]
GNUMakefile.in: Let the dok-user target remove temporary files