X-Git-Url: http://www.privoxy.org/gitweb/03andreas_t.jpg?a=blobdiff_plain;f=doc%2Fsource%2Fp-config.sgml;h=53985876f93863b6b4af6dc35d5fe638d306528a;hb=c3cac1ed13405f60967359a06bd0e0a7dbb3d594;hp=7ce86426e70ce5293d8d169dde1b663a0cd97992;hpb=bf1b74a48f95ddd631500995675b164ed8159025;p=privoxy.git
diff --git a/doc/source/p-config.sgml b/doc/source/p-config.sgml
index 7ce86426..53985876 100644
--- a/doc/source/p-config.sgml
+++ b/doc/source/p-config.sgml
@@ -3,7 +3,7 @@
Purpose : Used with other docs and files only.
- Copyright (C) 2001-2020 Privoxy Developers https://www.privoxy.org/
+ Copyright (C) 2001-2021 Privoxy Developers https://www.privoxy.org/
See LICENSE.
========================================================================
@@ -90,7 +90,7 @@
Sample Configuration File for Privoxy &p-version;
-Copyright (C) 2001-2020 Privoxy Developers https://www.privoxy.org/
+Copyright (C) 2001-2021 Privoxy Developers https://www.privoxy.org/
@@ -738,6 +738,7 @@ actionsfile
fk 2007-11-07
-->
@@actionsfile user.action # User customizations]]>
+@@#actionsfile regression-tests.action # Tests for privoxy-regression-test]]>
@@ -1269,7 +1270,7 @@ actionsfile
They can only be used if Privoxy has
been compiled with IPv6 support. If you aren't sure if your version
supports it, have a look at
- http://config.privoxy.org/show-status.
+ http://config.privoxy.org/show-status.
Some operating systems will prefer IPv6 to IPv4 addresses even if the
@@ -3135,16 +3136,11 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
- Effect if unset:
+ Notes:
Connections are served until a resource limit is reached.
-
-
-
- Notes:
-
&my-app; creates one thread (or process) for every incoming client
connection that isn't rejected based on the access control settings.
@@ -3582,7 +3578,10 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Note that sorting headers in an uncommon way will make fingerprinting
- actually easier. Encrypted headers are not affected by this directive.
+ actually easier.
+ Encrypted headers are not affected by this directive unless
+ https-inspection
+ is enabled.
@@ -3596,9 +3595,13 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Referer \
Cookie \
DNT \
+ Connection \
+ Pragma \
+ Upgrade-Insecure-Requests \
If-Modified-Since \
Cache-Control \
Content-Length \
+ Origin \
Content-Type
]]>
@@ -3632,12 +3635,6 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Notes:
-
-
- This is an experimental feature. The syntax is likely to change
- in future versions.
-
-
Client-specific tags allow Privoxy admins to create different
profiles and let the users chose which one they want without
@@ -3671,7 +3668,7 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Clients can request tags to be set by using the CGI interface http://config.privoxy.org/client-tags.
The specific tag description is only used on the web page and should
- be phrased in away that the user understand the effect of the tag.
+ be phrased in away that the user understands the effect of the tag.
@@ -3683,6 +3680,11 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
# that are enabled based on CLIENT-TAG patterns.
client-specific-tag circumvent-blocks Overrule blocks but do not affect other actions
client-specific-tag disable-content-filters Disable content-filters but do not affect other actions
+ client-specific-tag overrule-redirects Overrule redirect sections
+ client-specific-tag allow-cookies Do not crunch cookies in either direction
+ client-specific-tag change-tor-socks-port Change forward-socks5 settings to use a different Tor socks port (and circuits)
+ client-specific-tag no-https-inspection Disable HTTPS inspection
+ client-specific-tag no-tls-verification Don't verify certificates when http-inspection is enabled
@@ -3718,12 +3720,6 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Notes:
-
-
- This is an experimental feature. The syntax is likely to change
- in future versions.
-
-
In case of some tags users may not want to enable them permanently,
but only for a short amount of time, for example to circumvent a block
@@ -3779,12 +3775,6 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
Notes:
-
-
- This is an experimental feature. The syntax is likely to change
- in future versions.
-
-
If clients reach Privoxy through another proxy, for example a load
balancer, Privoxy can't tell the client's IP address from the connection.
@@ -3904,9 +3894,11 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
HTTPS Inspection (Experimental)
- HTTPS inspection allows to filter encrypted requests.
+ HTTPS inspection allows to filter encrypted requests and responses.
This is only supported when Privoxy
has been built with FEATURE_HTTPS_INSPECTION.
+ If you aren't sure if your version supports it, have a look at
+ http://config.privoxy.org/show-status.
@@ -4084,6 +4076,12 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t
The ca-cert-file section contains
a command to generate it.
+
+ The CA key is used by &my-app; to sign generated certificates.
+
+
+ Access to the key should be limited to Privoxy.
+
@@ -4413,6 +4411,8 @@ AES128-SHA
An example file can be downloaded from
https://curl.se/ca/cacert.pem.
+ If you want to create the file yourself, please see:
+ https://curl.se/docs/caextract.html.