1 privoxy (3.0.30-1~pp-1) unstable; urgency=medium
3 * New upstream release 3.0.30.
4 * Update all patches to new version.
5 * 15_mansection8, 35_man-spelling, 39_show-status and 40_redirect-ssl
6 are now incorporated upstream.
7 * Optimize debian/rules clean to restore pristine state.
9 -- Roland Rosenfeld <roland@debian.org> Thu, 21 Jan 2021 18:52:08 +0100
11 privoxy (3.0.29-2) unstable; urgency=medium
13 * Use --enable-extended-statistics and --enable-pcre-host-patterns.
14 * 39_show-status: Add new features to show-status page.
15 * Remove 38_SOURCE_DATE_EPOCH, since upstream honors it when set.
16 * Upgrade to Standards-Version 4.5.1 (no changes).
17 * 40_redirect-ssl: Check the actual URL when https inspecting requests.
18 * Add apparmor profile usr.sbin.privoxy.
20 -- Roland Rosenfeld <roland@debian.org> Sun, 17 Jan 2021 13:10:33 +0100
22 privoxy (3.0.29-1) unstable; urgency=medium
24 * New upstream release 3.0.29.
25 * Update all patches to new version.
26 * 36_trusted-cgi-referer-example and 37_ppedit-tests403 are now
27 incorporated upstream.
28 * d/copyright: Update to new upstream version.
29 * d/copyright: use ./ prefix to upstream filenames, because orig.tar.gz
30 is build with a ./ prefix.
31 * Upgrade to debhelper v13.
32 * Rebuild privoxy-man-page.html.
33 * 38_SOURCE_DATE_EPOCH: Remove hardcoded SOURCE_DATE_EPOCH from
34 configure.in but use the date from debian/changelog.
35 * Remove 05_defaut_action since this is no longer needed.
36 * Tag all patches with Forwarded header.
37 * debian/watch: Cleanup and update to version 4.
38 * Compile --with-mbedtls to allow https-inspection.
39 * Adapt TLS/SSL settings to Debian FHS.
40 * Generate dirs with correct permissions for https-inspection.
41 * Delete https-inspection certs on purge.
42 * Expire https-inspection certs after 90 days.
43 * Compile --with-brotli to enable support for brotli decompression.
45 -- Roland Rosenfeld <roland@debian.org> Sun, 29 Nov 2020 14:22:27 +0100
47 privoxy (3.0.28-3) unstable; urgency=medium
49 * Add buildlog to salsa-ci test pipeline.
50 * d/salsa-ci.yml stripped down using pipline-jobs.yml
51 * Build-depend on debhelper-compat (= 12) instead of using d/compat.
52 * Upgrade to Standards-Version 4.5.0 (no changes).
53 * Add upstream metadata.
54 * privoxy.service: run After=network-online.target, this fixes
57 -- Roland Rosenfeld <roland@debian.org> Thu, 02 Apr 2020 18:04:44 +0200
59 privoxy (3.0.28-2) unstable; urgency=medium
61 * d/tests/privoxy-regression-test: Remove tmpdir on exit.
62 * 36_trusted-cgi-referer-example: Comment trusted-cgi-referer pointing
64 * d/maintscript: Remove orphaned /etc/privoxy/templates/show-version
66 * 37_ppedit-tests403: Update a bunch of regression tests that have to
67 expect status code 403 now.
68 * Enable enable-edit-actions in privoxy-regression-test again.
69 * Upgrade to debhelper v12.
70 * Update (minimal) upstream signing key.
71 * Add Pre-Depends: ${misc:Pre-Depends} for --skip-systemd-native.
73 -- Roland Rosenfeld <roland@debian.org> Sun, 06 Jan 2019 13:07:14 +0100
75 privoxy (3.0.28-1) unstable; urgency=medium
78 * Add es debconf translation. Thanks to Jonathan Bustillos (Closes: #903863).
79 * 38_connection_close: Don't add a "Connection" header for CONNECT requests.
82 * d/tests: Use AUTOPKGTEST_TMP instead of ADTTMP
83 * d/watch: Use https protocol
86 * d/tests: Fix leftover ADTTMP.
87 * Add salsa CI pipeline in debian/gitlab-ci.yml.
88 * New upstream version 3.0.28.
89 * Adapt all patches to new version (06_8bit_manual is implemented in a
90 better way upstream now, 36_openspopenjade is replaced by some
91 autoconf code, 37_adventofcode and 38_connection_close are included
93 * Update debian/copyright.
94 * Upgrade to Standards-Version 4.3.0 (Declare Rules-Requires-Root: no).
95 * Move PID file from /var/run to /run.
96 * Undo voodoo to remove CVS tags from configs since upstream uses git
98 * Disable enable-edit-actions in privoxy-regression-test, since the test
99 seems to be broken (does not use referrer, which is required here).
101 -- Roland Rosenfeld <roland@debian.org> Mon, 31 Dec 2018 16:52:27 +0100
103 privoxy (3.0.26-6) unstable; urgency=medium
105 * Fix typo in patch description.
106 * postinst: avoid using chown -R.
107 * Move source.lintian-overrides to soure/lintian-overrides.
108 * Add Vcs-headers pointing to salsa.
109 * Upgrade to Standards-Version 4.1.4 (no changes).
111 -- Roland Rosenfeld <roland@debian.org> Sun, 29 Apr 2018 11:57:47 +0200
113 privoxy (3.0.26-5) unstable; urgency=medium
115 * Add ru debconf translation. Thanks to Lev Lamberov (Closes: #883110).
116 * Optimize patches for gbp pq.
117 * Upgrade to Standards-Version 4.1.3 (no changes).
118 * Upgrade to debhelper v11 (remove systemd from dh call).
120 -- Roland Rosenfeld <roland@debian.org> Sat, 20 Jan 2018 12:49:42 +0100
122 privoxy (3.0.26-4) unstable; urgency=medium
124 * Add pt debconf translation. Thanks to Rui Branco (Closes: #858743).
125 * Add description to 36_openspopenjade.patch.
126 * Upgrade to debhelper v10 and remove dh-systemd build dependency.
127 * debhelper v10 replaces autotools-dev.
128 * Remove Testsuite header, since this is automatically added.
129 * Upgrade to Standards-Version 4.1.1
130 - change copyrights-format to https.
132 -- Roland Rosenfeld <roland@debian.org> Wed, 01 Nov 2017 10:45:49 +0100
134 privoxy (3.0.26-3) unstable; urgency=medium
136 * Add da debconf translation. Thanks to Joe Dalton (Closes: #850876).
137 * 37_adventofcode: unlock adventofcode.com (Closes: #848211).
139 -- Roland Rosenfeld <roland@debian.org> Wed, 11 Jan 2017 22:24:55 +0100
141 privoxy (3.0.26-2) unstable; urgency=medium
143 * Add db_stop to postinst, since upgrade fails otherwise in some
144 situations (Closes: #835409).
145 * Replace sp and jade with opensp and openjade. Thanks to Neil Roeth
146 for providing a patch (Closes: #837207).
148 -- Roland Rosenfeld <roland@debian.org> Sat, 10 Sep 2016 08:48:35 +0200
150 privoxy (3.0.26-1) unstable; urgency=medium
152 * New upstream version 3.0.26.
153 * This includes 36_listen-nohost.patch.
154 * Updated all patches to new version.
156 -- Roland Rosenfeld <roland@debian.org> Sat, 27 Aug 2016 22:28:32 +0200
158 privoxy (3.0.25-2) unstable; urgency=medium
160 * Add pt_BR debconf translation. Thanks to Adriano Rafael Gomes
162 * Symlink p_doc.css to user-manual.
163 * Install regression-tests.action.
164 * Enable autopkgtest and run privoxy-regression-test.pl.
165 * Install privoxy-regression-test and man page to binary package.
166 * Updated debian/copyright to catch all copyright variants.
167 * Remove outdated stuff from README.Debian.
168 * 36_listen-nohost: Fix crashes with "listen-addr :8118" (Closes: #834941).
170 -- Roland Rosenfeld <roland@debian.org> Tue, 23 Aug 2016 09:27:34 +0200
172 privoxy (3.0.25-1) unstable; urgency=medium
174 * New upstream version 3.0.25 (beta).
175 * Adapt all patches to new upstream version.
176 * Update debian/copyright to new privoxy home.
177 * Add sv debconf translation. Thanks to Jonatan Nyberg (Closes: #824913).
178 * Add fr debconf translation. Thanks to Steve Petruzzello (Closes: #825478).
179 * Add nl debconf translation. Thanks to Frans Spiesschaert (Closes: #825691).
180 * privoxy.service: Run after network.target (Closes: #825358).
182 -- Roland Rosenfeld <roland@debian.org> Sat, 28 May 2016 23:13:56 +0200
184 privoxy (3.0.24-2) unstable; urgency=medium
186 * Upgrade Standards-Version to 3.9.8 (no changes).
187 * Add -p to QUILT_DIFF_OPTS.
188 * Add Documentation key to privoxy.service.
189 * 35_man-spelling: Fix spelling error in privoxy-log-parser(1).
190 * Add debconf and ucf support to make listen-address configurable.
191 Thanks to James Valleroy for providing the code (Closes: #798219).
192 * Remove 28_listen_localhost, but listen on 127.0.0.1:8118 and
193 [::1]:8118 by default, since otherwise privoxy listens only on IPv6
194 (Closes: #518010, #557443).
195 * Change several URLs from http to https.
197 -- Roland Rosenfeld <roland@debian.org> Sun, 01 May 2016 14:21:22 +0200
199 privoxy (3.0.24-1) unstable; urgency=medium
201 * New upstream version 3.0.24.
202 * This fixes CVE-2016-1982 and CVE-2016-1983.
203 * Adapt all patches to new upstream version.
205 -- Roland Rosenfeld <roland@debian.org> Fri, 22 Jan 2016 16:08:05 +0100
207 privoxy (3.0.23-5) unstable; urgency=medium
209 * Remove /lib/init/vars.sh from init script since it is no longer used.
210 As a consequence remove initscripts dependency (Closes: #804961).
211 * --enable-external-filters (Closes: #805296).
213 -- Roland Rosenfeld <roland@debian.org> Mon, 16 Nov 2015 21:05:41 +0100
215 privoxy (3.0.23-4) unstable; urgency=medium
217 * Add rotate option to init.d script.
218 * Change logrotate to use rotate option (Closes: #783399).
219 * privoxy.service: define SuccessExitStatus=15.
220 * Set locales to C.UTF-8 for doc generation to make build reproducible.
222 * 34_system-docbook2man: Use Debian docbook2man-spec.pl (from
223 docbook-utils) instead of local copy, to make package reproducible.
224 * Stop runing "make man2html", since this overrides "make man", which
225 should work reproducible.
227 -- Roland Rosenfeld <roland@debian.org> Sat, 19 Sep 2015 15:05:41 +0200
229 privoxy (3.0.23-3) unstable; urgency=medium
231 * Since there are no new bugs found, this goes to unstable now.
232 * Depend on perl-base instead of full perl.
234 -- Roland Rosenfeld <roland@debian.org> Sun, 26 Apr 2015 11:01:08 +0200
236 privoxy (3.0.23-2) experimental; urgency=low
238 * Fix cleanup to allow build twice in a row.
239 * Preserve auto build configuration from source package.
240 * This version checks and fails if the config file has erros
242 * init script is no longer silent (Closes: #543811).
244 -- Roland Rosenfeld <roland@debian.org> Sat, 31 Jan 2015 12:31:26 +0100
246 privoxy (3.0.23-1) experimental; urgency=low
248 * New upstream version 3.0.23-stable.
249 * Update all patches.
251 -- Roland Rosenfeld <roland@debian.org> Mon, 26 Jan 2015 14:15:47 +0100
253 privoxy (3.0.22-1) unstable; urgency=low
255 * New upstream version 3.0.22-stable.
256 * Update all patches.
257 * Upgrade to Standards-Version 3.9.5 (no changes).
258 * Add upstream GPG signature check.
259 * Convert debian/copyright to DEP5.
261 -- Roland Rosenfeld <roland@debian.org> Sun, 16 Nov 2014 18:38:40 +0100
263 privoxy (3.0.21-7+deb8u1) jessie-security; urgency=high
265 * 40_CVE-2016-1982: Prevent invalid reads in case of corrupt
266 chunk-encoded content.
267 * 41_CVE-2016-1983: Remove empty Host headers in client requests.
268 Previously they would result in invalid reads.
270 -- Roland Rosenfeld <roland@debian.org> Fri, 22 Jan 2016 17:09:48 +0100
272 privoxy (3.0.21-7) unstable; urgency=medium
274 * 37_CVE-2015-1380: denial of service.
275 * 38_CVE-2015-1381: multiple segmentation faults and memory leaks in the
277 * 39_CVE-2015-1382: invalid read.
278 * These 3 patches Closes: #776490.
280 -- Roland Rosenfeld <roland@debian.org> Wed, 28 Jan 2015 19:46:42 +0100
282 privoxy (3.0.21-5) unstable; urgency=low
284 * 34_CVE-2015-1030: Fix memory leak in rfc2553_connect_to(). CID 66382
285 * 35_CVE-2015-1031-CID66394: unmap(): Prevent use-after-free if the map
286 only consists of one item. CID 66394.
287 * 36_CVE-2015-1031-CID66376: pcrs_execute(): Consistently set *result to
288 NULL in case of errors. Should make use-after-free in the caller less
289 likely. CID 66391, CID 66376.
290 * These 3 patches Closes: #775167.
292 -- Roland Rosenfeld <roland@debian.org> Mon, 12 Jan 2015 08:44:23 +0100
294 privoxy (3.0.21-4) unstable; urgency=low
296 * Enable hardening=+all
297 * Hardcode PIDFile in privoxy.service, since this isn't allowed as
298 variable (Closes: #746262).
300 -- Roland Rosenfeld <roland@debian.org> Sat, 10 May 2014 14:19:03 +0200
302 privoxy (3.0.21-3) unstable; urgency=low
304 * When starting via systemd, do not run daemon as root, and honour log
305 file configuration. Thanks to Carlos Maddela for providing a patch
308 -- Roland Rosenfeld <roland@debian.org> Mon, 21 Apr 2014 17:24:01 +0200
310 privoxy (3.0.21-2) unstable; urgency=low
312 * Use autotools-dev for arm64 compatibility (Closes: #727948).
313 * Depend on initscripts >= 2.87dsf-8, (Closes: #564563).
314 * Add systemd support (Thanks to Michael Stapelberg) (Closes: #639635).
315 * Upgrade to Standards-Version 3.9.5 (no changes).
317 -- Roland Rosenfeld <roland@debian.org> Sat, 12 Apr 2014 12:54:58 +0200
319 privoxy (3.0.21-1) unstable; urgency=low
321 * New upstream version 3.0.21-stable.
322 * This fixes CVE-2013-2503 (Closes: #702896).
323 * Update all patches.
324 * Upgrade to Standards-Version 3.9.4 (no changes).
326 -- Roland Rosenfeld <roland@debian.org> Fri, 05 Jul 2013 14:46:54 +0200
328 privoxy (3.0.20-1) unstable; urgency=low
330 * New upstream version 3.0.20-beta.
331 * Update all patches.
332 * Remove 29_typos, which is incorporated upstream now.
333 * 33_manpage_hyphen: Replace all -- in man page by \-\- to make lintian
336 -- Roland Rosenfeld <roland@debian.org> Thu, 24 Jan 2013 17:40:51 +0100
338 privoxy (3.0.19-2+deb7u4) oldstable; urgency=high
340 * 42_CVE-2013-2503: Proxy authentication headers are removed unless the
341 new directive enable-proxy-authentication-forwarding is used.
342 Forwarding the headers potentionally allows malicious sites to trick
343 the user into providing it with login information (Closes: #702896).
345 -- Roland Rosenfeld <roland@debian.org> Tue, 08 Mar 2016 08:52:26 +0100
347 privoxy (3.0.19-2+deb7u3) wheezy-security; urgency=high
349 * 40_CVE-2016-1982: Prevent invalid reads in case of corrupt
350 chunk-encoded content.
351 * 41_CVE-2016-1983: Remove empty Host headers in client requests.
352 Previously they would result in invalid reads.
354 -- Roland Rosenfeld <roland@debian.org> Fri, 22 Jan 2016 17:51:41 +0100
356 privoxy (3.0.19-2+deb7u2) wheezy-security; urgency=medium
358 * 38_CVE-2015-1381: multiple segmentation faults and memory leaks in the
360 * 39_CVE-2015-1382: invalid read.
361 * These 2 patches Closes: #776490 in wheezy.
363 -- Roland Rosenfeld <roland@debian.org> Wed, 28 Jan 2015 20:33:47 +0100
365 privoxy (3.0.19-2+deb7u1) stable-security; urgency=medium
367 * 35_CVE-2015-1031-CID66394: unmap(): Prevent use-after-free if the map
368 only consists of one item. CID 66394.
369 * 36_CVE-2015-1031-CID66376: pcrs_execute(): Consistently set *result to
370 NULL in case of errors. Should make use-after-free in the caller less
371 likely. CID 66391, CID 66376.
372 * These 2 patches Closes: #775167.
374 -- Roland Rosenfeld <roland@debian.org> Sat, 17 Jan 2015 17:20:15 +0100
376 privoxy (3.0.19-2) unstable; urgency=low
378 * Migrate from dpatch to 3.0 (quilt) format.
379 * Reformat all patches.
380 * Change build depenency from dpatch to debhelper (>= 9).
381 * Change debian/compat to "9".
382 * Complete rewrite of debian/rules.
383 * Now uses hardening via debhelper.
384 * Remove README.source.
385 * Update to Standards-Version 3.9.3 (no changes).
387 -- Roland Rosenfeld <roland@debian.org> Fri, 18 May 2012 21:24:55 +0200
389 privoxy (3.0.19-1) unstable; urgency=low
391 * New upstream version 3.0.19-stable.
392 * Adapt all patches to new version.
394 -- Roland Rosenfeld <roland@debian.org> Tue, 27 Dec 2011 11:19:53 +0100
396 privoxy (3.0.18-1) unstable; urgency=low
398 * New upstream version 3.0.18-stable.
399 * Adapt all patches to new version.
400 * Add build-targets build-arch and build-indep.
401 * Upgrade to Standards-Version 3.9.2 (no changes).
402 * 29_typo: most old typos are fixed now, but lintian found new ones.
404 -- Roland Rosenfeld <roland@debian.org> Mon, 21 Nov 2011 19:29:06 +0100
406 privoxy (3.0.17-1) unstable; urgency=low
408 * New upstream version 3.0.17-stable (Closes: #611016).
409 * Adapt all patches to the new version.
410 * Add debian/source/format (1.0).
411 * 29_typos: fix spelling of resource in privoxy-log-parser(1) man page.
412 * Upgrade to Standards-Version 3.9.1 (no changes).
413 * Add $named to Required-Start/Stop in init script. Thanks to Nikolaus
414 Schulz <microschulz@web.de> (Closes: #539405, #582710)
415 * Install /etc/privoxy/user.filter
417 -- Roland Rosenfeld <roland@debian.org> Tue, 01 Mar 2011 21:10:26 +0100
419 privoxy (3.0.16-1+deb6u2) squeeze-lts; urgency=high
421 * Non-maintainer upload by the Squeeze LTS Team.
423 Prevent invalid reads in case of corrupt chunk-encoded content
425 Remove empty Host headers in client requests; resulting in
428 -- Thorsten Alteholz <debian@alteholz.de> Fri, 22 Jan 2016 18:03:02 +0100
430 privoxy (3.0.16-1+deb6u1) squeeze-lts; urgency=medium
432 * Non-maintainer upload by the Squeeze LTS team.
433 * Thanks to Roland Rosenfeld for maintaining privoxy and preparing these
435 - 35_CVE-2015-1031-CID66394: unmap(): Prevent use-after-free if the map
436 only consists of one item. CID 66394.
437 - 36_CVE-2015-1031-CID66376: pcrs_execute(): Consistently set *result to
438 NULL in case of errors. Should make use-after-free in the caller less
439 likely. CID 66391, CID 66376.
440 - 38_CVE-2015-1381: multiple segmentation faults and memory leaks in the
442 - 39_CVE-2015-1382: invalid read.
444 -- Holger Levsen <holger@debian.org> Wed, 28 Jan 2015 19:44:30 +0100
446 privoxy (3.0.16-1) unstable; urgency=low
448 * New upstream version 3.0.16-stable.
449 * Adapt all patches to the new version.
450 * 30_localhost_fixup: removed, since this should no longer be necessary.
451 * 31_handle-as-empty-doc-returns-ok: now included upstream.
452 * 32_bind_fixup: Work around bind problems on startup (Closes: #534735).
454 -- Roland Rosenfeld <roland@debian.org> Tue, 18 May 2010 10:14:18 +0200
456 privoxy (3.0.15-3) unstable; urgency=low
458 * Add Build-Dependency on docbook because docbook-xml which may be
459 chained via docbook-dsssl as an alternative to docbook may not be
460 enough on a unclean build environment. This should now also build on
462 * 31_handle-as-empty-doc-returns-ok: Patch from SourceForge that work2
463 around Firefox bug to wait forever if proxy returns a failure status
464 code in response to the CONNECT (Closes: #561126).
466 -- Roland Rosenfeld <roland@debian.org> Fri, 25 Dec 2009 11:30:29 +0100
468 privoxy (3.0.15-2) unstable; urgency=low
470 * 30_localhost_fixup: Remove workaround for "localhost" listen-address,
471 which should solve all problems with privoxy not starting.
474 -- Roland Rosenfeld <roland@debian.org> Sun, 13 Dec 2009 10:09:11 +0100
476 privoxy (3.0.15-1) unstable; urgency=low
478 * New upstream version 3.0.15-beta.
479 * Adapted all patches to the new upstream version.
480 * Added debian/README.source (from dpatch package) to explain how dpatch
482 * Upgrade to Standards-Version 3.8.3 (no changes).
483 * 29_typos: fix some common typos.
485 -- Roland Rosenfeld <roland@debian.org> Sat, 14 Nov 2009 14:22:31 +0100
487 privoxy (3.0.14-1) unstable; urgency=low
489 * New upstream version 3.0.14-beta.
490 * Adapted all patches to the new upstream version.
491 * --enable-no-gifs (uses PNG instead of GIF in replacement files).
493 -- Roland Rosenfeld <roland@debian.org> Sun, 26 Jul 2009 12:06:00 +0200
495 privoxy (3.0.13-1) unstable; urgency=low
497 * New upstream version 3.0.13-beta.
498 * Adapted all patches to the new upstream version.
499 * Removed 03_ipv6, because IPv6 is now supported upstream.
500 * Upgrade to Standards-Version 3.8.1 (no changes)
501 * Fix matcha-all.action typo in debian/postinst (Closes: #534270).
503 -- Roland Rosenfeld <roland@debian.org> Tue, 23 Jun 2009 15:09:08 +0200
505 privoxy (3.0.12-2) unstable; urgency=low
507 * 03_ipv6: Use s6_addr instead of in6_u, which is not portable.
509 -- Roland Rosenfeld <roland@debian.org> Wed, 25 Mar 2009 21:41:20 +0100
511 privoxy (3.0.12-1) unstable; urgency=low
513 * New upstream version 3.0.12-stable.
514 * Adapt all patches to new upstream version.
515 * Remove 30_quiet_start, because this is provided upstream now.
517 -- Roland Rosenfeld <roland@debian.org> Wed, 25 Mar 2009 13:27:30 +0100
519 privoxy (3.0.11-1) unstable; urgency=low
521 * New upstream version 3.0.11-stable.
522 * 19_manpage_fixup incorporated upstream now.
523 * 24_global_action is incorporated upstream in a similar way.
524 * postinst: try to make removal of standards.action and global.action
525 and new file match-all.action smooth to a user who does not want to
526 modify his config file.
527 * 30_quiet_start: Suppress INFO log messages on stderr at program startup.
528 * Stop redirecting stderr to errorlog file but print all config file
529 errors to stderr at startup. This closes the stderr filehandle since
530 upstream fixed the behavior in jcc.c 1.153.
531 This also solves the problem, that syntax errors in config file
532 weren't noticed, cause they are written to the console on start now
534 * Modify init.d script to be more lsb compliant.
535 Depends on lsb-base (>= 3.2-13)
536 * Allow disabling privoxy via RUN_DAEMON=no in /etc/default/privoxy.
538 * Update README.Debian to fit all changes.
540 -- Roland Rosenfeld <roland@debian.org> Sun, 22 Feb 2009 22:07:08 +0100
542 privoxy (3.0.10-2) unstable; urgency=low
544 * IPv6 patch added again: 03_ipv6: privoxy-3.0.10-ipv6-all-6.diff by
545 Petr Písař (Closes: #179461).
546 It seems that the old bugs #391600 and #393605, which appeared with
547 the previous version, are fixed now.
548 * 28_listen_localhost: Listen on localhost:8118 instead of 127.0.0.1:8118,
549 because this is independent from localhost IP (127.0.0.1 vs. 127.0.1.1)
550 and also supports IPv6 (Closes: #512888).
551 * 05_default_action: unblock qa.debian.org/popcon-graph.php (Closes: #479525)
552 * Create log dir in init script, if it does not exist (Closes: #491423).
554 -- Roland Rosenfeld <roland@debian.org> Sun, 15 Feb 2009 13:39:10 +0100
556 privoxy (3.0.10-1) UNRELEASED; urgency=low
558 * Not released to Debian but only on sourceforge.net.
559 * New upstream version 3.0.10-stable (Closes: #499324).
560 * Install privoxy-log-parser into /usr/bin.
561 * Add lintian-override for libtool warnings according pcre, because we
562 do not use this version of pcre but the one from libpcre3-dev.
564 -- Roland Rosenfeld <roland@debian.org> Sat, 20 Sep 2008 17:33:30 +0200
566 privoxy (3.0.9-1) unstable; urgency=low
568 * New upstream version 3.0.9-beta.
569 * Upgrade all patches to new version:
570 - 20_makefile_fixup included upstream.
571 * The new version doesn't support PDF documentation any more, so remove
572 it from the Debian package.
573 -> Stop Build-Depending on htmldoc.
574 * The new version doesn't support text/plain documentation any more, so
575 remove it from the Debian package.
576 * Upgrade to Standards-Version 3.8.0 (no changes)
577 * Move documentation from doc-base section Apps/Net to Network/Web Browsing.
578 * chown user:group instead of user.group in postinst to be more compatible.
579 * 05_defaut_action: unblock qa.debian.org/popcon.php (Closes: #479525).
581 -- Roland Rosenfeld <roland@debian.org> Mon, 07 Jul 2008 22:35:17 +0200
583 privoxy (3.0.8-1) unstable; urgency=low
585 * New upstream release 3.0.8-stable.
586 * Upgrade all patches to new version.
588 -- Roland Rosenfeld <roland@debian.org> Sun, 20 Jan 2008 22:19:02 +0100
590 privoxy (3.0.7-2) unstable; urgency=low
592 * Remove trailing space from debian/patches/00list to make lintian happy.
593 * postinst: On upgrade from 3.0.6 and below the config file format
594 changed: actionsfile now needs filename.action as parameter instead of
595 filename. Fix this config file change in postinst if necessary.
597 * Upgrade to Standards-Version 3.7.3 (no changes).
598 * 19_manpage_fixup: Replace "ö" by "\[:o]" in privoxy.8.
600 -- Roland Rosenfeld <roland@debian.org> Sat, 12 Jan 2008 16:02:14 +0100
602 privoxy (3.0.7-1) unstable; urgency=low
604 * New upstream version 3.0.7-beta.
605 * Adapt all patches to new version.
606 * Enable new zlib feature (Closes: #368448):
607 - build-depend on zlib1g-dev
608 - disable prevent-compression in 25_standard_medium.dpatch
609 * Remove 28_pcre_returncode.dpatch, which is now applied upstream.
610 * Remove 23_fix_faq_id.dpatch, which is now applied upstream.
611 * Fix Homepage header in control file.
612 * 05_defaut_action: disable filter{js-annoyances} for
613 http://www.memo.de/ (Closes: #441256).
614 * Update debian/watch file based on an idea of Raphael Geissert.
617 -- Roland Rosenfeld <roland@debian.org> Tue, 11 Dec 2007 19:34:35 +0100
619 privoxy (3.0.6-4) unstable; urgency=low
621 * Set "enable-remote-http-toggle 0" by default because otherwise
622 requests may be able to bypass filtering by setting "X-Filter: No"
623 headers using some strange javascript code.
624 * Disable default logging of every GET/POST/CONNECT request to protect
625 your privacy a bit more.
626 * 05_defaut_action: Stop blocking Andorra ccTLD (.ad) (Closes: #445461).
627 * Run make clean/distclean only if GNUmakefile exists in debian/rules.
629 -- Roland Rosenfeld <roland@debian.org> Sun, 21 Oct 2007 12:47:51 +0200
631 privoxy (3.0.6-3) unstable; urgency=low
633 * According to http://wiki.debian.org/AccountHandlingInMaintainerScripts
634 removing system users in postrm isn't a good idea. So the removal of
635 user privoxy in postrm was disabled and deluser/adduser of existing
636 user in postinst was also removed. This should avoid problems with
637 purging privoxy if passwd package isn't installed (Closes: #417015).
639 -- Roland Rosenfeld <roland@debian.org> Sat, 19 May 2007 21:22:42 +0200
641 privoxy (3.0.6-2) unstable; urgency=medium
643 * 28_pcre_returncode: Don't crash if pcre returns an error code that
644 pcrs didn't expect (Closes: #404284).
646 -- Roland Rosenfeld <roland@debian.org> Sat, 23 Dec 2006 21:47:12 +0100
648 privoxy (3.0.6-1) unstable; urgency=low
650 * New upstream release 3.0.6.
651 - remove 28_usermanual_slash.dpatch, which is already included
653 * README.Debian: mention that privoxy has to be used as HTTP proxy to
654 access http://p.p/ URLs (Closes: #398162).
656 -- Roland Rosenfeld <roland@debian.org> Mon, 20 Nov 2006 19:29:27 +0100
658 privoxy (3.0.5-beta-3) unstable; urgency=medium
660 * Disable the IPv6 patch, because this is seems to have too many bugs
661 for a release right now.
662 - This reopens #179461.
663 - This solves the problem, that "listen-address :8118" listens on
664 localhost only (Closes: #391600).
665 - This solves the problem, that regex pattern at front of hostname
666 is ignored (Closes: #393605).
667 * Use /usr/share/dpatch/dpatch.make in debian/rules instead of adding
669 * Extended version of 26_edit_only_writable.dpatch by Fabian Keil. Now
670 shows a message, that the file is write protected. See SF#1564026.
672 -- Roland Rosenfeld <roland@debian.org> Sun, 22 Oct 2006 11:53:02 +0200
674 privoxy (3.0.5-beta-2) unstable; urgency=low
676 * 27_remove_nsl.dpatch: Remove unnecessary linking against libnsl.
677 * 28_usermanual_slash.dpatch: Redirect http://p.p/user-manual (without
678 trailing slash) to http://p.p/user-manual/ (with trailing slash),
679 otherwise the links will be broken (Closes: #244931).
681 -- Roland Rosenfeld <roland@debian.org> Sat, 7 Oct 2006 13:12:13 +0200
683 privoxy (3.0.5-beta-1) unstable; urgency=low
685 * New upstream version 3.0.5-beta.
686 * hide-referrer{foo} now allows everything as a forged referrer not
687 only http/https URLs and ignoring invalid URLs (Closes: #258193).
688 * Fixes the name of the filter from "popups" to "all-popups" in
689 user.action. (Closes: #385886).
690 * Block http://www.google-analytics.com/urchin.js because this is used
691 for cross site user tracking according to
692 http://www.google.com/analytics/ (Closes: #340913).
693 * Adapted all patches to this version.
694 * The following patches are incorporated upstream now, so they are no
695 longer needed: 01_local_usermanual.dpatch, 04_nomultiproxy.dpatch,
696 07_typos.dpatch, 08_log_pthread.dpatch, 09_no_identity.dpatch,
697 12_multiple-filters.dpatch, 13_memory.dpatch, 18_dns_retry.dpatch.
698 * 20_makefile_fixup.dpatch: Fix a syntax error in the GNUmakefile.in.
699 * 05_default_action.dpatch: main parts are incorporated upstream now.
700 * 05_default_action.dpatch: disable filter ie-eploits for amazon.de,
701 cause they use %01 and %02 as delimiters for multipage results
703 * 03_ipv6.dpatch: Add IPv6 support (Closes: #179461).
704 * 23_fix_faq_id.dpatch: Fix value of id attribute in <sect2> tag (no
705 underscore allowed) of faq.sgml.
706 * 24_global_action.dpatch: Move the global default for all pages (/)
707 from default.action to global.action to make updates with local
708 configurations easier.
709 * 25_standard_medium.dpatch: Change the global default from
710 standard.Cautious to standard.Medium, which is similar to the old
711 3.0.3 behavior and doesn't change too much (only
712 filter{js-annoyances}, filter{html-annoyances} and
713 filter{unsolicited-popups} are switched off now additionally because
714 they often cause trouble by using very much CPU time).
715 * 26_edit_only_writable.dpatch: Hide the edit button on
716 http://p.p/show-status if action file can not be written by the
718 * default.action and standard.action are no longer owned by privoxy but
719 by root to show that these files are maintained upstream while users
720 should maintain their local changes in global.action and user.action.
721 * Add LSB compliance to init.d script (INIT INFO and status).
723 -- Roland Rosenfeld <roland@debian.org> Sat, 23 Sep 2006 23:37:03 +0200
725 privoxy (3.0.3-2-2) unstable; urgency=low
727 * Upgrade to Standards-Version 3.7.2 (no changes).
728 * 17_502_no_such_domain.dpatch: Changes the 404 HTTP status code of the
729 "No such Domain" template to 502 Bad Gateway, which seems to be more
730 correct according to http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html
732 * Disable filter{js-annoyances} and filter{unsolicited-popups} for
733 .cnrs.fr and blogs.msdn.com, because these sites consume very much CPU
734 time otherwise (Closes: #377843).
735 * 18_dns_retry.dpatch by Fabian Keil <fk@fabiankeil.de>: 10 retries
736 before giving up DNS lookup. This hopefully Closes: #335660.
737 * 19_manpage_fixup.dpatch:
738 - Convert Latin-1 char á to groff equivalent in man page.
739 - Quote minus signs to differentiate them from hyphens.
740 * Do not filter{banners-by-size} on .w3.org pages, because these often
741 contain validator icons (Closes: #319025).
743 -- Roland Rosenfeld <roland@debian.org> Sat, 5 Aug 2006 15:15:17 +0200
745 privoxy (3.0.3-2-1) unstable; urgency=low
747 * New upstream version 3.0.3-2.
748 * Add debian/watch file.
749 * Remove parts of 13_memory.dpatch, which seems to free too much
750 memory (Closes: #353110, #354611).
752 -- Roland Rosenfeld <roland@debian.org> Mon, 27 Feb 2006 23:28:52 +0100
754 privoxy (3.0.3-6) unstable; urgency=low
756 * Now hopefully really redirect all output of logrotate to /dev/null
758 * Migrate all patches to dpatch mechanism.
759 * Upgrade to debhelper 5.
760 * Call htmldoc with parameter --no-embedfonts to keep PDF files small.
761 * Build-Depends on htmldoc (>= 1.8.25-1), because older versions caused
762 broken PDF documentation on 64bit systems.
763 * Fix some typos in user-manual.
764 * Add multiple filter file support (from CVS) (Closes: #201177).
765 * Fix some memory leaks, mallocs, double frees (from CVS).
766 * Remove CVS $-tags from config files to make it easier for users to
767 keep the configuration in a VCS (Closes: #350799).
768 * Remove trailing spaces from all config files now.
769 * Build man page (and HTML version of it) at build time.
771 -- Roland Rosenfeld <roland@debian.org> Sat, 11 Feb 2006 21:27:14 +0100
773 privoxy (3.0.3-5) unstable; urgency=low
775 * Redirect output of restart script in logrotate to /dev/null
777 * Upgrade to Standards-Version 3.6.2:
778 - Recommends: doc-base
779 * Build-Depends on autotools-dev and copy config.guess and config.sub
780 from there on every build (Closes: #332767).
781 * After dechunking remove the "chunked"-header instead of replacing it
782 by an d"identity" header. Thanks to Michael Shields for reporting this
784 * Update address of FSF in copyright file.
786 -- Roland Rosenfeld <roland@debian.org> Sun, 9 Oct 2005 13:44:55 +0200
788 privoxy (3.0.3-4) unstable; urgency=low
790 * Stop converting entities to 8bit chars in the documentation
792 * Fix typos ('persistant' and 'Januar') in man page and man page sources
794 * Restart privoxy in logrotate script instead of sendig a kill -HUP, to
795 triggering reopen of log files (Closes: #285059).
796 * Apply patch by Jindrich Makovicka to fix race conditions in log
797 writing functions (Closes: #299662).
798 * Stop hiding referrer for www.petitiononline.com/mod_perl/signed.cgi,
799 because this site does not work otherwise (Closes: #250407).
801 -- Roland Rosenfeld <roland@debian.org> Sun, 15 May 2005 15:28:56 +0200
803 privoxy (3.0.3-3) unstable; urgency=low
805 * Now really remove multiproxy.org from all documentation, not only from
806 the config file (Closes: #198953).
808 -- Roland Rosenfeld <roland@debian.org> Sun, 15 Feb 2004 23:11:29 +0100
810 privoxy (3.0.3-2) unstable; urgency=low
812 * no banners-by-side on "/valid-" images, because that's usually from
813 validator.w3.org (Closes: #221009).
814 * Upgrade to Standards-Version 3.6.1 (no changes).
815 * Add Homepage URL to the package description.
816 * If the privoxy user is already existing as a non-system user in
817 postinst, this no longer fails, but deletes the non-system user before
818 adding it again as a system user (Closes: #232724).
819 * Use deluser instead of userdel in postrm.
820 * Redirect stderr of privoxy to /var/log/privoxy/errfile to avoid
821 problems with kept open file descriptors (Closes: #200712).
822 * Remove comment from config file, which points to list of open proxies
823 at multiproxy.org (Closes: #198953).
825 -- Roland Rosenfeld <roland@debian.org> Sun, 15 Feb 2004 15:13:27 +0100
827 privoxy (3.0.3-1) unstable; urgency=low
829 * New upstream version 3.0.3.
830 - This introduces workarounds for server (PHP <4.2.3) bugs including
831 the "blank page" problem (Closes: #215231).
832 - Avoid the conversion of "open" in scripts to "PrivoxyWindowOpen"
834 - "advocancy" is no longer blocked (Closes: #202042).
835 - Fixed yet another two memory leaks (Closes: #215911).
836 * Stop backup of pdf directory, because it is no longer contained in the
838 * Create doc/pdf, which is missing upstream.
839 * disable filter{unsolicited-popups} for www.perl.com/language/newdocs/pod/
840 to avoid problems with "PrivoxyWindowOpen" in Perl manuals
842 * Apply patch make privoxy compilable on woody where htmldoc --version
843 doesn't exist (Closes: #216524).
845 -- Roland Rosenfeld <roland@debian.org> Sat, 31 Jan 2004 11:25:53 +0100
847 privoxy (3.0.2-5) unstable; urgency=low
849 * Merge corrections from upstream default.action 1.7.
850 - demoronizer filter (which caused trouble on non latin1 charsets) is
851 now switched off by default (Closes: #202234).
853 -- Roland Rosenfeld <roland@debian.org> Tue, 9 Sep 2003 21:31:51 +0200
855 privoxy (3.0.2-4) unstable; urgency=low
857 * Add a versioned build dependency on htmldoc (>= 1.8.20), because there
858 seem to be some options mission in the old 1.8.17 (Closes: #192457).
859 * Merge rotation of logfile and jarfile in logrotate script.
860 * Test whether /var/run/privoxy.pid is existing and don't bother when no
861 privoxy is running in logrotate script (Closes: #191838).
862 * Remove /var/run/privoxy.pid on privoxy stop in init.d script.
863 * Mention apt-get instead of dpkg in user-manual (Closes: #189239).
864 * Remove trailing whitespace from text versions of user-manual,
865 developer-manual and faq (Closes: #192566).
867 -- Roland Rosenfeld <roland@debian.org> Fri, 9 May 2003 08:21:30 +0200
869 privoxy (3.0.2-3) unstable; urgency=low
871 * Stop filtering favicon.ico, which may cause trouble (Closes: #188947).
872 * Send SIGHUP to privoxy instead of touching /etc/provoxy/config in
873 logrotate script to tell privoxy that the logfiles were rotated
875 * Remove trailing spaces from config file (Closes: #189240).
876 * Install man page as privoxy(8) instead of privoxy(1), because this is
878 * Build HTML, text, and PDF versions of the documentation from source.
879 * Fix setting of dodk in configure.in.
880 * Add option "--linkcolor #0000ff" to htmldoc call in ldp_print to be
881 independent of ~/.htmldocrc color setting.
882 * Mention PDF and text version of the documentation in doc-base files.
883 * Install PDF version of the documentation, too.
884 * Install HTML version of the man page, too.
886 -- Roland Rosenfeld <roland@debian.org> Mon, 21 Apr 2003 11:11:31 +0200
888 privoxy (3.0.2-2) unstable; urgency=low
890 * Don't apply any filters to {bugs|lists}.debian.org (Closes: #186537).
891 * Prepend "http://config.privoxy.org" before "/user-manual/" to always
892 get a correct URL for the local user-manual (also on 404 error pages).
895 -- Roland Rosenfeld <roland@debian.org> Sun, 13 Apr 2003 12:49:15 +0200
897 privoxy (3.0.2-1) unstable; urgency=low
899 * New upstream version 3.0.2.
900 * Update Standards-Version to 3.5.9 (no changes).
902 -- Roland Rosenfeld <roland@debian.org> Wed, 26 Mar 2003 19:45:07 +0100
904 privoxy (3.0.0-6) unstable; urgency=low
906 * Fixed a bug in local user-manual patch, which failed when accessing
907 http://config.privoxy.org/user-manual/ (without a file name).
909 -- Roland Rosenfeld <roland@debian.org> Sun, 2 Mar 2003 13:40:48 +0100
911 privoxy (3.0.0-5) unstable; urgency=low
913 * Stop build-depending on special versions of libc6-dev and gcc.
914 Hopefully all auto-builders run new versions which shouldn't cause
915 trouble (Closes: #182267)
917 -- Roland Rosenfeld <roland@debian.org> Mon, 24 Feb 2003 19:07:11 +0100
919 privoxy (3.0.0-4) unstable; urgency=low
921 * Set "enable-edit-actions 0" and "enable-remote-toggle 0" in config
922 file, instead of simply commenting out these two lines. Mention this
923 configuration change in README.Debian (Closes: #172965, #172966).
924 * Add new "cgi" user-manual, which sends the user manual to the client
925 and activate it in config file (Closes: #148128).
926 * Build-Depend on libc6-dev (>> 2.2.5) to avoid problems with pthread
927 (Closes: #158306, #162693).
928 * Don't search for user bsmtp in /etc/passwd before using adduser.
929 adduser handles already existing users correct.
930 * Remove /etc/provoxy on purge (Closes: #164039).
931 * Upgrade to Standards-Version 3.5.8:
932 - remove support for DEB_BUILD_OPTION "debug"
933 - add support for DEB_BUILD_OPTION "noopt"
934 * Upgrade to debhelper >=4 and use debian/compat instead of DH_COMPAT.
935 * Upgrade config.guess and config.sub (from autotools-dev 20030110.1).
936 * Remove no-pthread workaround for hppa and build-depend on gcc >=3.2.2,
937 which supports -pthread on hppa, too.
939 -- Roland Rosenfeld <roland@debian.org> Sun, 23 Feb 2003 13:34:11 +0100
941 privoxy (3.0.0-3) unstable; urgency=low
943 * Add aliases "wafer" and "vanilla-wafer" for "send-wafer" and
944 "send-vanilla-wafer" to actionlist to provide backward compatibility
945 to 2.9.14 (Closes: #154647).
947 -- Roland Rosenfeld <roland@debian.org> Sun, 8 Sep 2002 11:43:38 +0200
949 privoxy (3.0.0-2) unstable; urgency=low
951 * Recompile with libc6 from testing (instead of unstable).
953 -- Roland Rosenfeld <roland@debian.org> Fri, 6 Sep 2002 17:32:35 +0200
955 privoxy (3.0.0-1) unstable; urgency=low
957 * New upstream version (Closes: #158613).
958 * Remove version number from config file, to avoid changing it on every
959 new upstream version. Sorry, this time you will still be bothered...
961 -- Roland Rosenfeld <roland@debian.org> Sun, 1 Sep 2002 18:58:07 +0200
963 privoxy (2.9.20-1) unstable; urgency=low
965 * New upstream version.
967 -- Roland Rosenfeld <roland@debian.org> Sun, 11 Aug 2002 11:05:01 +0200
969 privoxy (2.9.18-2) unstable; urgency=low
971 * Disable docbook, we use the precompiled docs (Closes: #155989).
973 -- Roland Rosenfeld <roland@debian.org> Sat, 10 Aug 2002 09:36:58 +0200
975 privoxy (2.9.18-1) unstable; urgency=low
977 * New upstream version.
978 * Use start-stop-daemon for starting privoxy to avoid problems on start,
979 when privoxy is already running (Closes: #154882).
980 * Undo broken -Ipcre inclusion in GNUmakefile.in, which causes trouble
981 with using wrong pcreposix.h.
983 -- Roland Rosenfeld <roland@debian.org> Thu, 8 Aug 2002 21:01:48 +0200
985 privoxy (2.9.16-1) unstable; urgency=low
987 * New upstream version.
988 * Exclude CVS files from dh_installdocs (when compiling from CVS).
989 * Add user.action and standard.action to /etc/privoxy.
990 * Install images for html version of documentation.
991 * Do no longer build html and txt versions of documentation using
992 docbook, but use the converted versions which come with the upstream
994 * default.action fixed upstream: "downloads" no longer blocked
996 * default.filter fixed upstream: Made WeBugs job ungreedy (Closes: #149450).
997 * Remove the "beta" from the version number (the final release will be
998 named 3.0, so it's superfluous).
1000 -- Roland Rosenfeld <roland@debian.org> Sat, 27 Jul 2002 18:55:11 +0200
1002 privoxy (2.9.14-beta-4) unstable; urgency=low
1004 * Damn, why did I write "i386-linux" into the rules file, when I try to
1005 write a work around for hppa? Fixed now (Closes: #148227).
1007 -- Roland Rosenfeld <roland@debian.org> Sun, 26 May 2002 22:33:26 +0200
1009 privoxy (2.9.14-beta-3) unstable; urgency=low
1011 * Fix typo ('[' instead of '{') in default.action (Closes: #148122).
1012 * Disable edit-actions and remote-toggle in config file by default
1014 * Use --disable-pthread on hppa, to avoid problem with hppa gcc not
1015 supporting -pthread option (Closes: #148117).
1016 * Install p_doc.css in documentation directory.
1018 -- Roland Rosenfeld <roland@debian.org> Sun, 26 May 2002 01:40:18 +0200
1020 privoxy (2.9.14-beta-2) unstable; urgency=low
1022 * Fix debian/rules clean to really clean.
1023 * Change owner of /etc/privoxy/{*.action|trust} to privoxy in postinst,
1024 to allow modification of these files web interface (Closes: SF-552144).
1026 -- Roland Rosenfeld <roland@debian.org> Thu, 23 May 2002 18:38:27 +0200
1028 privoxy (2.9.14-beta-1) unstable; urgency=low
1030 * New upstream version.
1032 -- Roland Rosenfeld <roland@debian.org> Sat, 13 Apr 2002 18:05:26 +0200
1034 privoxy (2.9.13-beta-2) unstable; urgency=low
1036 * Create HTML and ASCII versions of the documentation using docbook now.
1038 -- Roland Rosenfeld <roland@debian.org> Sun, 31 Mar 2002 23:53:28 +0200
1040 privoxy (2.9.13-beta-1) unstable; urgency=low
1044 -- Roland Rosenfeld <roland@debian.org> Fri, 29 Mar 2002 11:52:03 +0100