2 File : $Source: /cvsroot/ijbswa/current/doc/source/changelog.sgml,v $
4 Purpose : Entity included in other project documents.
6 $Id: changelog.sgml,v 2.8 2014/11/14 11:31:41 fabiankeil Exp $
8 Copyright (C) 2013 Privoxy Developers http://www.privoxy.org/
11 ======================================================================
12 This file used for inclusion with other documents only.
13 ======================================================================
15 If you make changes to this file, please verify the finished
16 docs all display as intended.
18 This file is included into:
24 <application>Privoxy 3.0.22</application> stable is mainly a bug-fix
25 release, it also has a couple of new features, though.
26 Note that the first two entries in the ChangeLog below refer to security
31 The SGML ChangeLog can be generated with: utils/changelog2doc.pl ChangeLog
41 Fixed a memory leak when rejecting client connections due to
42 the socket limit being reached (CID 66382). This affected
43 Privoxy 3.0.21 when compiled with IPv6 support (on most
44 platforms this is the default).
49 Fixed an immediate-use-after-free bug (CID 66394) and two
50 additional unconfirmed use-after-free complaints made by
51 Coverity scan (CID 66391, CID 66376).
56 Actually show the FORCE_PREFIX value on the show-status page.
61 Properly deal with Keep-Alive headers with timeout= parameters
62 If the timeout still can't be parsed, use the configured
63 timeout instead of preventing the client from keeping the
64 connection alive. Fixes #3615312/#870 reported by Bernard Guillot.
69 Not using any filter files no longer results in warning messages
70 unless an action file is referencing header taggers or filters.
71 Reported by Stefan Kurtz in #3614835.
76 Fixed a bug that prevented Privoxy from reusing some reusable
77 connections. Two bit masks with different purpose unintentionally
83 A couple of additional bugs were discovered by Coverity Scan.
84 The fixes that are not expected to affect users are not explicitly
85 mentioned here, for details please have a look at the CVS logs.
97 Introduced negative tag patterns NO-REQUEST-TAG and NO-RESPONSE-TAG.
98 They apply if no matching tag is found after parsing client or
104 Add support for external filters which allow to process the
105 response body with a script or program written in any language
106 the platform supports. External filters are enabled with
107 +external-filter{} after they have been defined in one of the
108 filter files with a header line starting with "EXTERNAL-FILTER:".
109 External filter support is experimental, not compiled by default
110 and known not to work on all platforms.
115 Add support for the 'PATCH' method as defined in RFC5789.
120 Reject requests with unsupported Expect header values.
121 Fixes a couple of Co-Advisor tests.
126 Normalize the HTTP-version in forwarded requests and responses.
127 This is an explicit RFC 2616 MUST and RFC 7230 mandates that
128 intermediaries send their own HTTP-version in forwarded
134 Server 'Keep-Alive' headers are no longer forwarded. From a user's
135 point of view it doesn't really matter, but RFC 2616 (obsolete)
136 mandates that the header is removed and this fixes a Co-Advisor
142 Change declared template file encoding to UTF-8. The templates
143 already used a subset of UTF-8 anyway and changing the declaration
144 allows to properly display UTF-8 characters used in the action files.
145 This change may require existing action files with ISO-8859-1
146 characters that aren't valid UTF-8 to be converted to UTF-8.
147 Requested by Sam Chen in #582.
152 Do not pass rejected keep-alive timeouts to the server. It might
153 not have caused any problems (we know of), but doing the right
154 thing shouldn't hurt either.
159 Let log_error() use its own buffer size #define to make changing
160 the log buffer size slightly less inconvenient.
165 Turned single-threaded into a "proper" toggle directive with arguments.
170 CGI templates no longer enforce new windows for some links.
175 Remove an undocumented workaround ('HOST' header removal) for
176 an Apple iTunes bug that according to #729900 got fixed in 2003.
184 Action file improvements:
188 The pattern 'promotions.' is no longer being blocked.
189 Reported by rakista in #3608540.
194 Disable fast-redirects for .microsofttranslator.com/.
199 Disable filter{banners-by-size} for .dgb-tagungszentren.de/.
204 Add adn.speedtest.net as a site-specific unblocker.
205 Support request #3612908.
210 Disable filter{banners-by-size} for creativecommons.org/.
215 Block requests to data.gosquared.com/. Reported by cbug in #3613653.
220 Unblock .conrad./newsletter/. Reported by David Bo in #3614238.
225 Unblock .bundestag.de/.
230 Unblock .rote-hilfe.de/.
235 Disable fast-redirects for .facebook.com/plugins/like.php.
240 Unblock Stackexchange popup URLs that aren't used to serve ads.
241 Reported by David Wagner in #3615179.
246 Disable fast-redirects for creativecommons.org/.
251 Unblock .stopwatchingus.info/.
256 Block requests for .adcash.com/script/.
257 Reported by Tyrexionibus in #3615289.
262 Disable HTML filters if the response was tagged as JavaScript.
263 Filtering JavaScript code with filters intended to deal with HTML
264 is usually a waste of time and, more importantly, may break stuff.
269 Use a custom redirect{} for .washingtonpost.com/wp-apps/imrs\.php\?src=
270 Previously enabling the 'Advanced' settings (or manually enabling
271 +fast-redirects{}) prevented some images from being loaded properly.
276 Unblock "adina*." Fixes #919 reported by Morton A. Goldberg.
286 Unblock 'adele*.'. Reported by Adele Lime in #1663.
291 Disable banners-by-size for kggp.de/.
299 Filter file improvements & bug fixes:
303 Decrease the chances that js-annoyances creates invalid JavaScript.
304 Submitted by John McGowan on ijbswa-users@.
309 Let the msn filter hide 'related' ads again.
314 Remove a stray '1' in the 'html-annoyances' filter.
319 Prevent img-reorder from messing up img tags with empty src
320 attributes. Fixes #880 reported by Duncan.
328 Documentation improvements:
332 Updated the 'Would you like to donate?' section.
337 Note that invalid forward-override{} parameter syntax isn't
338 detected until the parameter is used.
343 Add another +redirect{} example: a shortcut for illumos bugs.
348 Make it more obvious that many operating systems support log
349 rotation out of the box.
354 Fixed dead links. Reported by Mark Nelson in #3614557.
359 Rephrased the 'Why is the configuration so complicated?' answer
360 to be slightly less condescending. Anonymously suggested in #3615122.
365 Be more explicit about accept-intercepted-requests's lack of MITM support.
370 Make 'demoronizer' FAQ entries more generic.
375 Add an example hostname to the --pre-chroot-nslookup description.
380 Add an example for a host pattern that matches an IP address.
385 Rename the 'domain pattern' to 'host pattern' as it may
386 contain IP addresses as well.
391 Recommend forward-socks5t when using Tor. It seems to work fine and
392 modifying the Tor configuration to profit from it hasn't been necessary
398 Add another redirect{} example to stress that redirect loops can
399 and should be avoided.
404 The usual spelling and grammar fixes. Parts of them were
405 reported by Reuben Thomas in #3615276.
410 Mention the PCRS option letters T and D in the filter section.
415 Clarify that handle-as-empty-doc-returns-ok is still useful
416 and will not be removed without replacement.
421 Note that security issues shouldn't be reported using the bug tracker.
426 Clarify what Privoxy does if both +block{} and +redirect{} apply.
431 Removed the obsolete bookmarklets section.
439 Build system improvements:
443 Let --with-group properly deal with secondary groups.
444 Patch submitted by Anatoly Arzhnikov in #3615187.
449 Fix web-actions target.
454 Add a web-faq target that only updates the FAQ on the webserver.
459 Remove already-commented-out non-portable DOSFILTER alternatives.
464 Remove the obsolete targets dok-put and dok-get.
469 Add a sf-shell target.