+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
<HTML
><HEAD
><TITLE
>Configuration</TITLE
><META
NAME="GENERATOR"
-CONTENT="Modular DocBook HTML Stylesheet Version 1.76b+
-"><LINK
+CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
REL="HOME"
TITLE="Privoxy Frequently Asked Questions"
HREF="index.html"><LINK
HREF="misc.html"><LINK
REL="STYLESHEET"
TYPE="text/css"
-HREF="../p_doc.css"></HEAD
+HREF="../p_doc.css"><META
+HTTP-EQUIV="Content-Type"
+CONTENT="text/html;
+charset=ISO-8859-1"></HEAD
><BODY
CLASS="SECT1"
BGCOLOR="#EEEEEE"
CLASS="SECT1"
><A
NAME="CONFIGURATION"
-></A
->3. Configuration</H1
+>3. Configuration</A
+></H1
><DIV
CLASS="SECT2"
><H3
CLASS="SECT2"
><A
-NAME="AEN339"
-></A
+NAME="ACTIONSFILE"
>3.1. What exactly is an <SPAN
CLASS="QUOTE"
>"actions"</SPAN
-> file?</H3
+> file?</A
+></H3
><P
> <SPAN
CLASS="APPLICATION"
TARGET="_top"
>actions</A
>"</SPAN
->
+>
that are used to manipulate and control web page data.
<A
HREF="../user-manual/actions-file.html"
CLASS="SECT2"
><A
NAME="ACTIONSS"
-></A
>3.2. The <SPAN
CLASS="QUOTE"
>"actions"</SPAN
-> concept confuses me. Please list
+> concept confuses me. Please list
some of these <SPAN
CLASS="QUOTE"
>"actions"</SPAN
->.</H3
+>.</A
+></H3
><P
> For a comprehensive discussion of the actions concept, please refer
to the <A
><H3
CLASS="SECT2"
><A
-NAME="AEN362"
-></A
+NAME="ACTCONFIG"
>3.3. How are actions files configured? What is the easiest
-way to do this?</H3
+way to do this?</A
+></H3
><P
> Actions files are just text files in a special syntax and can be edited
with a text editor. But probably the easiest way is to access
>View &
change the current configuration</A
>"</SPAN
-> from the menu.</P
+> from the menu. Note
+ that this feature must be explicitly enabled in the main config file
+ (see <A
+HREF="../user-manual/config.html#ENABLE-EDIT-ACTIONS"
+TARGET="_top"
+>enable-edit-actions</A
+>).</P
></DIV
><DIV
CLASS="SECT2"
><H3
CLASS="SECT2"
><A
-NAME="AEN370"
-></A
+NAME="AEN419"
>3.4. There are several different <SPAN
CLASS="QUOTE"
>"actions"</SPAN
> files. What are
-the differences?</H3
+the differences?</A
+></H3
><P
-> Three actions files
- are being included by the developers, to be used for
- different purposes: These are
- <TT
-CLASS="FILENAME"
->default.action</TT
->, the <SPAN
-CLASS="QUOTE"
->"main"</SPAN
-> actions file
- which is actively maintained by the <SPAN
-CLASS="APPLICATION"
->Privoxy</SPAN
->
- developers and typically sets the default policies, <TT
-CLASS="FILENAME"
->user.action</TT
->, where users are encouraged
- to make their private customizations, and <TT
-CLASS="FILENAME"
->standard.action</TT
->,
- which is for internal <SPAN
-CLASS="APPLICATION"
->Privoxy</SPAN
-> use only.
- Please see <A
+> Please have a look at the <A
HREF="../user-manual/actions-file.html"
TARGET="_top"
>the actions chapter</A
HREF="../user-manual/index.html"
TARGET="_top"
>User Manual</A
-> for a more
- detailed explanation.</P
-><P
-> Earlier versions included three different versions of the
- <TT
-CLASS="FILENAME"
->default.action</TT
-> file. The new scheme allows for
- greater flexibility of local configuration, and for browser based
- selection of pre-defined <SPAN
-CLASS="QUOTE"
->"aggressiveness"</SPAN
-> levels.</P
+> for a detailed explanation.</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="GETUPDATES"
-></A
->3.5. Where can I get updated Actions Files?</H3
+>3.5. Where can I get updated Actions Files?</A
+></H3
><P
-> Based on your feedback and the continuing development, updates of
- <TT
+> Based on your feedback and the continuing development, updates of
+ <TT
CLASS="FILENAME"
>default.action</TT
> will be
-
made available from time to time on the <A
-HREF="http://sourceforge.net/project/showfiles.php?group_id=11118"
+
made available from time to time on the <A
+HREF="https://sourceforge.net/project/showfiles.php?group_id=11118"
TARGET="_top"
>files section</A
> of
our <A
-HREF="http://sf.net/projects/ijbswa/"
+HREF="https://sourceforge.net/projects/ijbswa/"
TARGET="_top"
>project page</A
>.
CLASS="APPLICATION"
>Privoxy</SPAN
> or the actions file, <A
-HREF="http://lists.sourceforge.net/lists/listinfo/ijbswa-announce/"
+HREF="https://lists.privoxy.org/mailman/listinfo/privoxy-announce"
TARGET="_top"
>subscribe
- to our announce mailing list</A
->, ijbswa-announce@lists.sourceforge.net.
+ to our announce mailing list</A
+>, privoxy-announce@lists.privoxy.org.
</P
></DIV
><DIV
CLASS="SECT2"
><A
NAME="NEWCONFIG"
-></A
->3.6. Can I use my old config files?</H3
+>3.6. Can I use my old config files?</A
+></H3
><P
-> The syntax and purpose of configuration files has remained the same
- throughout the 3.x series. Although each release contains updated,
- <SPAN
+> The syntax and purpose of configuration files has remained roughly the
+ same throughout the 3.x series, but backwards compatibility is not guaranteed.
+ Also each release contains updated, <SPAN
CLASS="QUOTE"
>"improved"</SPAN
-> versions and it is recommended to use the newer
- configuration files.
-
- If upgrading from version prior to 3.0.4 the syntax for <TT
-CLASS="LITERAL"
->fast-redirects</TT
->
- has changed. See the <A
-HREF="../user-manual/whatsnew.html"
-TARGET="_top"
->What's New section</A
->
- of the <I
-CLASS="CITETITLE"
->User Manual</I
-> for details.
+> versions and it is
+ therefore strongly recommended to install the newer configuration files
+ and merge back your modifications.
+ </P
+></DIV
+><DIV
+CLASS="SECT2"
+><H3
+CLASS="SECT2"
+><A
+NAME="DIFFICULT"
+>3.7. Why is the configuration so complicated?</A
+></H3
+><P
+> <SPAN
+CLASS="QUOTE"
+>"Complicated"</SPAN
+> is in the eye of the beholder.
</P
><P
-> But all configuration files have substantially
- changed from the <SPAN
-CLASS="APPLICATION"
->Junkbuster</SPAN
-> days, and early
- versions of <SPAN
-CLASS="APPLICATION"
->Privoxy 2.x</SPAN
->. The old files, like
- <TT
-CLASS="FILENAME"
->blocklist</TT
-> will not work at all.
+> Privoxy is currently mainly written by and for people who are already
+ familiar with the underlying concepts like regular expressions, HTTP and HTML,
+ or are willing to become familiar with them to be able to get the most
+ out of a powerful and flexible tool such as Privoxy.
</P
><P
-> Refer to the <A
-HREF="../user-manual/whatsnew.html"
-TARGET="_top"
->What's New</A
->
- page for information on configuration changes that may occur from one release to another.
+> While everybody is expected to be able to get a Privoxy default installation
+ up and running, fine-tuning requires a certain amount of background
+ information and Privoxy's documentation mainly concentrates on the
+ Privoxy-specific parts while only providing references to the rest.
+ </P
+><P
+> If you or anyone you know has the skills, time and energy to
+ reduce the barrier of entry, please <A
+HREF="general.html#PARTICIPATE"
+>get involved</A
+>.
</P
></DIV
><DIV
CLASS="SECT2"
><A
NAME="YAHOO"
-></A
->3.7. How can I make my Yahoo/Hotmail/Gmail account work?</H3
+>3.8. How can I make my Yahoo/Hotmail/Gmail account work?</A
+></H3
><P
> The default configuration shouldn't impact the usability of any of these services.
- It
will, however, make all <A
+ It
may, however, make all <A
HREF="http://en.wikipedia.org/wiki/Browser_cookie"
TARGET="_top"
>cookies</A
->
+>
temporary, so that your browser will forget your
login credentials in between browser sessions. If you would like not to have to log
in manually each time you access those websites, simply turn off all cookie handling
> file. An example for yahoo might
look like:
</P
-><P
-> <TABLE
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
></TD
></TR
></TABLE
->
- </P
><P
-> These kinds of sites are often quite complex and heavy with
+> These kinds of sites are often quite complex and heavy with
<A
HREF="http://en.wikipedia.org/wiki/Javascript"
TARGET="_top"
>Javascript</A
-> and
+> and
thus <SPAN
CLASS="QUOTE"
>"fragile"</SPAN
CLASS="EMPHASIS"
>still</I
></SPAN
-> a problem,
+> a problem,
we have an <A
HREF="../user-manual/actions-file.html#ALIASES"
TARGET="_top"
> just for such
sticky situations:
</P
-><P
-> <TABLE
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
CLASS="LITERAL"
>fragile</TT
> }
+ # Gmail is ...
mail.google.com</PRE
></TD
></TR
></TABLE
->
- </P
><P
> Be sure to flush your browser's caches whenever making these kinds of
changes, just to make sure the changes <SPAN
</P
><P
> Make sure the domain, host and path are appropriate as well. Your browser can
- tell you where you are specifically and you should use that information for
- your configuration settings. Note that above it is not referenced as
+ tell you where you are specifically and you should use that information for
+ your configuration settings. Note that above it is not referenced as
<TT
CLASS="LITERAL"
>gmail.com</TT
CLASS="SECT2"
><A
NAME="CONFIGFILES"
-></A
->3.8. What's the difference between the
+>3.9. What's the difference between the
<SPAN
CLASS="QUOTE"
>"Cautious"</SPAN
> and <SPAN
CLASS="QUOTE"
>"Advanced"</SPAN
-> defaults?</H3
+> defaults?</A
+></H3
><P
> Configuring <SPAN
CLASS="APPLICATION"
>User
Manual</I
></A
-> for a list of actions, and how the default
+> for a list of actions, and how the default
profiles are set.
</P
><P
>"problem"</SPAN
> sites are included, but in
general, the more aggressive your default settings are, the more exceptions
- you will have to make later. New users are best to start off in
+ you will have to make later. New users are best to start off in
<SPAN
CLASS="QUOTE"
>"Cautious"</SPAN
-> setting. This is safest and will have the fewest
+> setting. This is safest and will have the fewest
problems. See the <A
HREF="../user-manual/index.html"
TARGET="_top"
> It should be noted that the <SPAN
CLASS="QUOTE"
>"Advanced"</SPAN
-> profile (formerly known
+> profile (formerly known
as the <SPAN
CLASS="QUOTE"
>"Adventuresome"</SPAN
> profile) is more
- aggressive, and will make use of some of
+ aggressive, and will make use of some of
<SPAN
CLASS="APPLICATION"
>Privoxy's</SPAN
CLASS="SECT2"
><A
NAME="BROWSECONFIG"
-></A
->3.9. Why can I change the configuration
-with a browser? Does that not raise security issues?</H3
+>3.10. Why can I change the configuration
+with a browser? Does that not raise security issues?</A
+></H3
><P
> It may seem strange that regular users can edit the config files with their
browsers, although the whole <TT
CLASS="QUOTE"
>"privoxy"</SPAN
>,
- it can update the config files.
+ it can update its own config files.
</P
><P
> If you run <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
> for multiple untrusted users (e.g. in
- a LAN), you will probably want to turn the web-based editor and remote toggle
- features off by setting <SPAN
+ a LAN) or aren't entirely in control of your own browser, you will probably want
+ to make sure that the web-based editor and remote toggle features are
+ <SPAN
+CLASS="QUOTE"
+>"off"</SPAN
+> by setting <SPAN
CLASS="QUOTE"
>"<TT
CLASS="LITERAL"
>.
</P
><P
-> Note that in the default configuration, only local users (i.e. those on
- <SPAN
-CLASS="QUOTE"
->"localhost"</SPAN
->) can connect to <SPAN
+> As of <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
->,
- so this is not (normally) a security problem.
+> 3.0.7 these options are disabled by default.
</P
></DIV
><DIV
><H3
CLASS="SECT2"
><A
-NAME="AEN470"
-></A
->3.10. What is the <TT
+NAME="FILTERFILE"
+>3.11. What is the <TT
CLASS="FILENAME"
>default.filter</TT
> file? What is a <SPAN
CLASS="QUOTE"
>"filter"</SPAN
->?</H3
+>?</A
+></H3
><P
> The <A
HREF="../user-manual/filter-file.html"
CLASS="EMPHASIS"
>filters</I
></SPAN
-> as supplied by the developers are defined.
+> as supplied by the developers are defined.
Filters are a special subset of actions that can be used to modify or
- remove, web page content on the fly. Filters apply to <SPAN
+ remove web page content or headers on the fly. Content filters can
+ be applied to <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>anything</I
></SPAN
->
- in the page source (and optionally both client and server headers), including
- HTML tags, and JavaScript. Regular expressions are used to accomplish this.
- There are a number of pre-defined filters to deal with common annoyances. The
+> in the page source,
+ header filters can be applied to either server or client headers.
+ Regular expressions are used to accomplish this.</P
+><P
+> There are a number of pre-defined filters to deal with common annoyances. The
filters are only defined here, to invoke them, you need to use the
<A
HREF="../user-manual/actions-file.html#FILTER"
>filter</TT
>
action</A
-> in one of the actions files. Filtering is automatically
- disabled for inappropriate MIME types.</P
+> in one of the actions files. Content filtering is automatically
+ disabled for inappropriate MIME types, but if you know better than Privoxy
+ what should or should not be filtered you can filter any content you like.</P
+><P
+> Filters should
+ <SPAN
+CLASS="emphasis"
+><I
+CLASS="EMPHASIS"
+>not</I
+></SPAN
+> be confused with <A
+HREF="../user-manual/actions-file.html#BLOCK"
+TARGET="_top"
+><TT
+CLASS="LITERAL"
+>blocks</TT
+></A
+>, which
+ is a completely different action, and is more typically used to block ads and
+ unwanted sites.</P
><P
-> If you are familiar with regular expressions, and HTML, you can look at
+> If you are familiar with regular expressions, and HTML, you can look at
the provided <TT
CLASS="FILENAME"
>default.filter</TT
> with a text editor and define
your own filters. This is potentially a very powerful feature, but
- requires some expertise in both regular expressions and HTML/HTTP.
- You should
- place any modifications to the default filters, or any new ones you create
+ requires some expertise in both regular expressions and HTML/HTTP.
+ You should
+ place any modifications to the default filters, or any new ones you create
in a separate file, such as <TT
CLASS="FILENAME"
>user.filter</TT
->, so they won't
- be overwritten during upgrades.
- The ability to define multiple filter files
+>, so they won't
+ be overwritten during upgrades.
+ The ability to define multiple filter files
in <TT
CLASS="FILENAME"
>config</TT
> is a new feature as of v. 3.0.5.</P
><P
-> There is no GUI editor option for this part of the configuration,
- but you can disable/enable the various pre-defined filters of the included
+> There is no GUI editor option for this part of the configuration,
+ but you can disable/enable the various pre-defined filters of the included
<TT
CLASS="FILENAME"
>default.filter</TT
HREF="http://config.privoxy.org/show-status"
TARGET="_top"
>web-based actions file editor</A
+>.
+ Note that the custom actions editor must be explicitly enabled in
+ the main config file (see <A
+HREF="../user-manual/config.html#ENABLE-EDIT-ACTIONS"
+TARGET="_top"
+>enable-edit-actions</A
+>).</P
+><P
+> If you intend to develop your own filters, you might want to have a look at
+ <A
+HREF="https://www.fabiankeil.de/sourcecode/pft/"
+TARGET="_top"
+>Privoxy-Filter-Test</A
>.</P
></DIV
><DIV
><H3
CLASS="SECT2"
><A
-NAME="AEN488"
-></A
->3.11. How can I set up Privoxy to act as a proxy for my
- LAN?</H3
+NAME="LANCONFIG"
+>3.12. How can I set up Privoxy to act as a proxy for my
+ LAN?</A
+></H3
><P
> By default, <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> only responds to requests
+> only responds to requests
from <TT
CLASS="LITERAL"
>127.0.0.1</TT
>Privoxy</SPAN
> on port 8118, this line
should look like:</P
-><P
-> <TABLE
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
></TD
></TR
></TABLE
-></P
><P
> Save the file, and restart <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
->. Configure
+>. Configure
all browsers on the network then to use this address and port number.</P
><P
> Alternately, you can have <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> listen on
+> listen on
all available interfaces:</P
-><P
-> <TABLE
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
></TD
></TR
></TABLE
-></P
><P
> And then use <SPAN
CLASS="APPLICATION"
>Privoxy's</SPAN
->
+>
<A
HREF="../user-manual/config.html#PERMIT-ACCESS"
TARGET="_top"
>permit-access</A
->
- feature to limit connections. A firewall in this situation is recommended
+>
+ feature to limit connections. A firewall in this situation is recommended
as well.</P
><P
> The above steps should be the same for any TCP network, regardless of
><H3
CLASS="SECT2"
><A
-NAME="AEN513"
-></A
->3.12. Instead of ads, now I get a checkerboard pattern. I don't want to see anything.</H3
+NAME="NOSEEUM"
+>3.13. Instead of ads, now I get a checkerboard pattern. I don't want to see anything.</A
+></H3
><P
> The replacement for blocked images can be controlled with the <A
HREF="../user-manual/actions-file.html#SET-IMAGE-BLOCKER"
> to <SPAN
CLASS="QUOTE"
>"blank"</SPAN
->. This can be done by editing the
+>. This can be done by editing the
<TT
CLASS="FILENAME"
>user.action</TT
><H3
CLASS="SECT2"
><A
-NAME="AEN530"
-></A
->3.13. Why would anybody want to see a checkerboard pattern?</H3
+NAME="WHYSEEUM"
+>3.14. Why would anybody want to see a checkerboard pattern?</A
+></H3
><P
> Remember that <A
HREF="general.html#WHATSANAD"
isn't</A
>, is an educated guess. While we hope that the standard configuration
is rather smart, it will make occasional mistakes. The checkerboard image is visually
- decent, but it shows you that and where images were blocked, which can be very
+ decent, and it shows you where images have been blocked, which can be very
helpful in case some navigation aid or otherwise innocent image was
- erroneously blocked. It is recommended for new users so they can
+ erroneously blocked. It is recommended for new users so they can
<SPAN
CLASS="QUOTE"
>"see"</SPAN
><H3
CLASS="SECT2"
><A
-NAME="AEN536"
-></A
->3.14. I see some images being replaced by a text
-instead of the checkerboard image. Why and how do I get rid of this?</H3
+NAME="BLOCKEDBYTEXT"
+>3.15. I see some images being replaced with text
+instead of the checkerboard image. Why and how do I get rid of this?</A
+></H3
><P
> This happens when the banners are not embedded in the HTML code of the
page itself, but in separate HTML (sub)documents that are loaded into (i)frames
or (i)layers, and these external HTML documents are blocked. Being non-images
they get replaced by a substitute HTML page rather than a substitute image,
which wouldn't work out technically, since the browser expects and accepts
- only HTML when it has requested an HTML document. </P
+ only HTML when it has requested an HTML document.</P
><P
> The substitute page adapts to the available space and shows itself as a
miniature two-liner if loaded into small frames, or full-blown with a
CLASS="SECT2"
><A
NAME="SRVANY"
-></A
->3.15. Can Privoxy run as a service
-on Win2K/NT/XP?</H3
+>3.16. Can Privoxy run as a service
+on Win2K/NT/XP?</A
+></H3
><P
> Yes. Version 3.0.5 introduces full <SPAN
CLASS="APPLICATION"
CLASS="CITETITLE"
>User Manual</I
></A
-> for details on how to install and configure
+> for details on how to install and configure
<SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
>srvany.exe</B
>.
See the discussion at <A
-HREF="http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118"
+HREF="https://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118"
TARGET="_top"
->http://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118</A
+>https://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118</A
>,
for details, and a sample configuration.</P
></DIV
CLASS="SECT2"
><A
NAME="OTHERPROXY"
-></A
->3.16. How can I make Privoxy work with other
-proxies like Squid or Tor?</H3
+>3.17. How can I make Privoxy work with other proxies?</A
+></H3
><P
> This can be done and is often useful to combine the benefits of
<SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> with those of a another proxy.
+> with those of a another proxy,
+ for example to cache content.
See the <A
HREF="../user-manual/config.html#FORWARDING"
TARGET="_top"
TARGET="_top"
>User Manual</A
> which
- describes how to do this, and the <A
+ describes how to do this. If you intend to use Privoxy with Tor,
+ please also have a look at
+ <A
HREF="misc.html#TOR"
-> How do I use Privoxy together with
- Tor</A
-> section below.</P
+>How do I use Privoxy together with Tor</A
+>.</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="PORT-80"
-></A
->3.17. Can I just set Privoxy to use port 80
-and thus avoid individual browser configuration?</H3
+>3.18. Can I just set Privoxy to use port 80
+and thus avoid individual browser configuration?</A
+></H3
><P
-> No, its more complicated than that. This only works with special kinds
+> No, its more complicated than that. This only works with special kinds
of proxies known as <SPAN
CLASS="QUOTE"
->"transparent"</SPAN
-> proxies (see below).</P
+>"intercepting"</SPAN
+> proxies
+ (<A
+HREF="configuration.html#INTERCEPTING"
+>see below</A
+>).</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="TRANSPARENT"
-></A
->3.18. Can Privoxy run as a <SPAN
+>3.19. Can Privoxy run as a <SPAN
CLASS="QUOTE"
>"transparent"</SPAN
-> proxy?</H3
+> proxy?</A
+></H3
><P
-> No, <SPAN
+> The whole idea of Privoxy is to modify client requests
+ and server responses in all sorts of ways and therefore
+ it's not a transparent proxy as described in
+ <A
+HREF="http://tools.ietf.org/html/rfc2616"
+TARGET="_top"
+>RFC 2616</A
+>.</P
+><P
+> However, some people say <SPAN
+CLASS="QUOTE"
+>"transparent proxy"</SPAN
+> when they
+ mean <SPAN
+CLASS="QUOTE"
+>"intercepting proxy"</SPAN
+>. If you are one of them,
+ please read the <A
+HREF="configuration.html#INTERCEPTING"
+>next entry</A
+>.</P
+></DIV
+><DIV
+CLASS="SECT2"
+><H3
+CLASS="SECT2"
+><A
+NAME="INTERCEPTING"
+>3.20. Can Privoxy run as a <SPAN
+CLASS="QUOTE"
+>"intercepting"</SPAN
+> proxy?</A
+></H3
+><P
+> <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> currently does not have this ability,
- though it may be added in a future release. Transparent proxies require
- special handling of the request headers beyond what
- <SPAN
+> can't intercept traffic itself,
+ but it can handle requests that where intercepted and redirected
+ with a packet filter (like <SPAN
CLASS="APPLICATION"
->Privoxy</SPAN
-> is now capable of.</P
+>PF</SPAN
+> or
+ <SPAN
+CLASS="APPLICATION"
+>iptables</SPAN
+>), as long as the <TT
+CLASS="LITERAL"
+>Host</TT
+>
+ header is present.
+ </P
><P
-> Chaining <SPAN
+> As the <TT
+CLASS="LITERAL"
+>Host</TT
+> header is required by HTTP/1.1 and as most
+ web sites rely on it anyway, this limitation shouldn't be a problem.</P
+><P
+> Please refer to your packet filter's documentation to learn how to
+ intercept and redirect traffic into <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> behind another proxy that has
- this ability should work though.
- See the <A
-HREF="../user-manual/config.html#FORWARDING"
-TARGET="_top"
->forwarding chapter</A
->
- in the <A
-HREF="../user-manual/index.html"
-TARGET="_top"
->User Manual</A
->. As
- a transparent proxy to be used for chaining we recommend Transproxy
- (<A
-HREF="http://transproxy.sourceforge.net/"
+>.
+ Afterward you just have to configure <SPAN
+CLASS="APPLICATION"
+>Privoxy</SPAN
+> to
+ <A
+HREF="../user-manual/config.html#ACCEPT-INTERCEPTED-REQUESTS"
TARGET="_top"
->http://transproxy.sourceforge.net/</A
->).</P
+>accept
+ intercepted requests</A
+>.</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="OUTLOOK"
-></A
->3.19. How can I configure Privoxy for use with Outlook
- Express?</H3
+>3.21. How can I configure Privoxy for use with Outlook?</A
+></H3
><P
-> <SPAN
+> Versions of <SPAN
CLASS="APPLICATION"
->Outlook Express</SPAN
-> uses <SPAN
+>Outlook</SPAN
+> prior to Office 2007, use
+ <SPAN
CLASS="APPLICATION"
>Internet Explorer</SPAN
->
- components to both render HTML, and fetch any HTTP requests that may be embedded in an HTML email.
- So however you have <SPAN
+> components to both render HTML,
+ and fetch any HTTP requests that may be embedded in an HTML email. So however
+ you have <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> configured to work
- with IE, this configuration should automatically be shared.</P
+> configured to work with IE, this
+ configuration should automatically be shared, at least with older version of
+ Internet Explorer.</P
+><P
+> Starting with Office 2007, Microsoft is instead using the MS-Word rendering
+ engine with Outlook. It is unknown whether this can be configured to use a
+ proxy.
+ </P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="OUTLOOK-MORE"
-></A
->3.20. How can I have separate rules just for HTML mail?</H3
+>3.22. How can I have separate rules just for HTML mail?</A
+></H3
><P
> The short answer is, you can't. <SPAN
CLASS="APPLICATION"
case of <SPAN
CLASS="APPLICATION"
>Outlook Express</SPAN
-> (see above), OE uses
+> (see above), OE uses
IE anyway, and there is no way for <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> to ever
+> to ever
be able to distinguish between them (nor could any other proxy type application for
that matter).</P
><P
-> For a good discussion of some of the issues involved (including privacy and
- security issues), see
+> For a good discussion of some of the issues involved (including privacy and
+ security issues), see
<A
-HREF="http://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118"
+HREF="https://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118"
TARGET="_top"
->http://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118</A
+>https://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118</A
>.</P
></DIV
><DIV
CLASS="SECT2"
><A
NAME="SNEAKY-COOKIES"
-></A
->3.21. I sometimes notice cookies sneaking through. How?</H3
+>3.23. I sometimes notice cookies sneaking through. How?</A
+></H3
><P
> <A
HREF="http://en.wikipedia.org/wiki/Browser_cookie"
TARGET="_top"
>Cookies</A
-> can be
- set in several ways. The classic method is via the
+> can be
+ set in several ways. The classic method is via the
<TT
CLASS="LITERAL"
>Set-Cookie</TT
easy one to manipulate, such as the <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> concept of
+> concept of
<A
HREF="../user-manual/actions-file.html#SESSION-COOKIES-ONLY"
TARGET="_top"
>session-cookies-only</A
>.
- There is also the possibility of using
+ There is also the possibility of using
<A
HREF="http://en.wikipedia.org/wiki/Javascript"
TARGET="_top"
CLASS="SECT2"
><A
NAME="EVIL-COOKIES"
-></A
->3.22. Are all cookies bad? Why?</H3
+>3.24. Are all cookies bad? Why?</A
+></H3
><P
-> No, in fact there are many beneficial uses of
+> No, in fact there are many beneficial uses of
<A
HREF="http://en.wikipedia.org/wiki/Browser_cookie"
TARGET="_top"
method that browsers can use to store data between pages, or between browser
sessions. Sometimes there is a good reason for this, and the user's life is a
bit easier as a result. But there is a long history of some websites taking
- advantage of this layer of trust, and using the data they glean from you and
+ advantage of this layer of trust, and using the data they glean from you and
your browsing habits for their own purposes, and maybe to your potential
detriment. Such sites are using you and storing their data on your system.
- That is why the security conscious watch from whom those cookies come, and why
+ That is why the privacy conscious watch from whom those cookies come, and why
they really <SPAN
CLASS="emphasis"
><I
></SPAN
> to be there.</P
><P
-> See the
+> See the
<A
HREF="http://en.wikipedia.org/wiki/Browser_cookie"
TARGET="_top"
CLASS="SECT2"
><A
NAME="ALLOW-COOKIES"
-></A
->3.23. How can I allow permanent cookies for my trusted sites?</H3
+>3.25. How can I allow permanent cookies for my trusted sites?</A
+></H3
><P
-> There are several actions that relate to cookies. The default behavior is to
+> There are several actions that relate to cookies. The default behavior is to
allow only <SPAN
CLASS="QUOTE"
>"session cookies"</SPAN
>, which means the cookies only last
- for the current browser session. This eliminates most kinds of abuse related
- to cookies. But there may be cases where we want cookies to last.</P
+ for the current browser session. This eliminates most kinds of abuse related
+ to cookies. But there may be cases where you want cookies to last.</P
><P
> To disable all cookie actions, so that cookies are allowed unrestricted,
both in and out, for <TT
CLASS="LITERAL"
>example.com</TT
->: </P
-><P
-> <TABLE
+>:</P
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
></TD
></TR
></TABLE
-></P
><P
> Place the above in <TT
CLASS="FILENAME"
>user.action</TT
->. Note some of these may
+>. Note that some of these may
be off by default anyway, so this might be redundant, but there is no harm
being explicit in what you want to happen. <TT
CLASS="FILENAME"
CLASS="SECT2"
><A
NAME="MULTIPLES"
-></A
->3.24. Can I have separate configurations for different users?</H3
+>3.26. Can I have separate configurations for different users?</A
+></H3
><P
> Each instance of <SPAN
CLASS="APPLICATION"
What you can do is run multiple instances of <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
->, each with
- a unique <TT
-CLASS="LITERAL"
->listen-address</TT
-> and configuration path, and then
+>, each with
+ a unique
+ <A
+HREF="../user-manual/config.html#LISTEN-ADDRESS"
+TARGET="_top"
+>listen-address</A
+>
+ configuration setting, and configuration path, and then
each of these can have their own configurations. Think of it as per-port
configuration.</P
><P
->
- Simple enough for a few users, but for large installations, consider having
+> Simple enough for a few users, but for large installations, consider having
groups of users that might share like configurations.</P
></DIV
><DIV
CLASS="SECT2"
><A
NAME="WHITELISTS"
-></A
->3.25. Can I set-up Privoxy as a whitelist of
+>3.27. Can I set-up Privoxy as a whitelist of
<SPAN
CLASS="QUOTE"
>"good"</SPAN
-> sites?</H3
+> sites?</A
+></H3
><P
-> Sure. There are a couple of things you can do for simple whitelisting.
+> Sure. There are a couple of things you can do for simple white-listing.
Here's one real easy one:</P
><TABLE
BORDER="0"
>+block</A
> }
/ # Block *all* URLs
-
+
############################################################
# Whitelist
############################################################
></TR
></TABLE
><P
-> This allows access to only those three sites by first blocking all URLs, and
+> This allows access to only those three sites by first blocking all URLs, and
then subsequently allowing three specific exceptions.</P
><P
-> A more interesting approach is <SPAN
+> Another approach is <SPAN
CLASS="APPLICATION"
>Privoxy's</SPAN
->
+>
<TT
CLASS="LITERAL"
>trustfile</TT
-> concept, which incorporates the notion of
+> concept, which incorporates the notion of
<SPAN
CLASS="QUOTE"
>"trusted referrers"</SPAN
>. See the <A
HREF="../user-manual/config.html#TRUSTFILE"
TARGET="_top"
->User Manual Trust</A
+>Trust documentation</A
>
- documentation.</P
+ for details.</P
><P
> These are fairly simple approaches and are not completely foolproof. There
are various other configuration options that should be disabled (described
>the User Manual</A
>)
so that users can't modify their own configuration and easily circumvent the
- whitelist. </P
+ whitelist.</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="NO-ADBLOCK"
-></A
->3.26. How can I turn off ad-blocking?</H3
+>3.28. How can I turn off ad-blocking?</A
+></H3
><P
-> Ad blocking is hard-coded into the default configuration files. It has been
- assumed that everyone using <SPAN
+> Ad blocking is achieved through a complex application of various <SPAN
+CLASS="APPLICATION"
+>Privoxy</SPAN
+>
+ <A
+HREF="../user-manual/actions-file.html"
+TARGET="_top"
+>actions</A
+>. These
+ actions are deployed against simple images, banners, flash animations,
+ text pages, JavaScript, pop-ups and pop-unders, etc., so its not as simple as
+ just turning one or two actions off. The various actions that make up
+ <SPAN
+CLASS="APPLICATION"
+>Privoxy</SPAN
+> ad blocking are hard-coded into the default configuration files. It
+ has been assumed that everyone using <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> is interested in this feature. If you want
- to do without this, there are several approaches you can take: You can
- manually undo the many block rules in <TT
+> is interested in this
+ particular feature.
+ </P
+><P
+> If you want to do without this, there are several approaches you can take:
+ You can manually undo the many block rules in
+ <TT
CLASS="FILENAME"
>default.action</TT
->. Or
- even easier, just create your own <TT
+>. Or even easier, just create your own
+ <TT
CLASS="FILENAME"
>default.action</TT
-> file
- from scratch without the many ad blocking rules, and corresponding exceptions.
- Or lastly, if you are not concerned about the additional blocks that are
- done for privacy reasons, you can very easily over-ride
- <SPAN
+> file from scratch without the many ad
+ blocking rules, and corresponding exceptions. Or lastly, if you are not
+ concerned about the additional blocks that are done for privacy reasons, you
+ can very easily over-ride <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>all</I
></SPAN
-> blocking with the following very simple rule in
- <TT
+> blocking with the
+ following very simple rule in your <TT
CLASS="FILENAME"
>user.action</TT
->:
+>:
</P
-><P
-> <TABLE
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
TARGET="_top"
>-block</A
> }
- / # UN-Block *all* URLs
- </PRE
+ / # UN-Block *all* URLs</PRE
></TD
></TR
></TABLE
-></P
><P
->
- Or even a more comprehensive reversing of various ad related actions:</P
-><P
-> <TABLE
+> Or even a more comprehensive reversing of various ad related actions:</P
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
>-filter{banners-by-size}</A
> \
<A
-HREF="../user-manual/actions-file.html#FILTER-BANNERS-BY-SIZE"
+HREF="../user-manual/actions-file.html#FILTER-BANNERS-BY-LINK"
TARGET="_top"
>-filter{banners-by-link}</A
> \
>allow-popups</TT
> \
}
- / # UN-Block *all* URLs and allow ads
- </PRE
+ / # UN-Block *all* URLs and allow ads</PRE
></TD
></TR
></TABLE
-></P
><P
> This last <SPAN
CLASS="QUOTE"
CLASS="SECT2"
><A
NAME="TEMPLATES"
-></A
->3.27. How can I have custom template pages, like the
+>3.29. How can I have custom template pages, like the
<SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>BLOCKED</I
></SPAN
-> page?</H3
+> page?</A
+></H3
><P
-> All the template pages are installed in a sub-directory appropriately named:
- <TT
-CLASS="FILENAME"
->templates</TT
->. These are specialized text files utilized
- by <SPAN
+> <SPAN
+CLASS="APPLICATION"
+>Privoxy</SPAN
+> <SPAN
+CLASS="QUOTE"
+>"templates"</SPAN
+> are specialized text files utilized by
+ <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> and can easily be modified using any text editor. Knowing something
- about HTML will of course be helpful. You cannot rename any of these files,
- or create completely new templates, that is not possible. But you can change
- the page content to whatever you like. Be forewarned that these files are
- subject to being overwritten during upgrades, so be sure to save any
- customizations.</P
+> for various purposes and can easily be modified using any text
+ editor. All the template pages are installed in a sub-directory appropriately
+ named: <TT
+CLASS="FILENAME"
+>templates</TT
+>. Knowing something about HTML syntax
+ will of course be helpful.</P
+><P
+> Be forewarned that the default templates are subject to being overwritten
+ during upgrades. You can, however, create completely new templates,
+ place them in another directory and specify the alternate path in the main
+ <TT
+CLASS="FILENAME"
+>config</TT
+>. For details, have a look at the <A
+HREF="../user-manual/config.html#templdir"
+TARGET="_top"
+>templdir</A
+> option.</P
></DIV
><DIV
CLASS="SECT2"
CLASS="SECT2"
><A
NAME="BLOCKALL"
-></A
->3.28. How can I remove the <SPAN
+>3.30. How can I remove the <SPAN
CLASS="QUOTE"
>"Go There Anyway"</SPAN
-> link from
+> link from
the <SPAN
CLASS="emphasis"
><I
CLASS="EMPHASIS"
>BLOCKED</I
></SPAN
-> page?</H3
+> page?</A
+></H3
><P
-> Editing the template page (see above) may dissuade some users, but this
- method is easily circumvented. Where you want this level of control, you should
- build <SPAN
+> There is more than one way to do it (although Perl is not involved).</P
+><P
+> Editing the BLOCKED template page (see above) may dissuade some users, but
+ this method is easily circumvented. Where you need this level of control, you
+ might want to build <SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> from source, and enable various features that are
- available as compile-time options. You should use
+> from source, and disable various features that are
+ available as compile-time options. You should
<B
CLASS="COMMAND"
>configure</B
-> as follows:</P
-><P
-> <TABLE
+> the sources as follows:</P
+><TABLE
BORDER="0"
BGCOLOR="#E0E0E0"
WIDTH="100%"
><TD
><PRE
CLASS="SCREEN"
-> ./configure --disable-toggle --disable-editor --disable-force
- </PRE
+> ./configure --disable-toggle --disable-editor --disable-force</PRE
></TD
></TR
></TABLE
-></P
><P
> This will create an executable with hard-coded security features so that
<SPAN
CLASS="APPLICATION"
>Privoxy</SPAN
-> does not allow easy bypassing of blocks or changing the current
- configuration. Some of these features can also by toggled on/off via options
- in <SPAN
+> does not allow easy bypassing of blocked sites, or changing the
+ current configuration via any connected user's web browser.</P
+><P
+> Finally, all of these features can also be toggled on/off via options in
+ <SPAN
CLASS="APPLICATION"
>Privoxy's</SPAN
-> main
- <A
+> main <A
HREF="../user-manual/config.html#ACCESS-CONTROL"
TARGET="_top"
>config</A
-> file. But
- compiled-in compliance is a much better method of ensuring that a block is
- really a block. </P
-><P
-> Default builds of <SPAN
-CLASS="APPLICATION"
->Privoxy</SPAN
-> are typically built with these features
- disabled.</P
+> file which
+ means you don't have to recompile anything.</P
></DIV
></DIV
><DIV
projects / privoxy.git / blobdiff