privoxy for Debian
==================
-- enable-edit-actions, enable-remote-toggle, and
- enable-remote-http-toggle are disabled in the Debian package for
- security reasons, because these options allow every user of your
- privoxy to change its configuration. Except this there exist
- exploits using Java and/or JavaScript that tell your browser to send
- out requests for disabling the proxy or the filtering, which may
- compromise your anonymity. If you still want to use these features,
- you can enable them in /etc/privoxy/config and do a
- "/etc/init.d/privoxy restart".
-
-- Experimental IPv6 support was added to the package.
-
-- The global default for all URLs (/) is now set in match-all.action
- in contrast to versions up to 3.0.10, where a Debian only patch
- configured them in global.action.
-
- Since 3.0.5 the upstream package uses the Cautious default settings
instead of Medium (like 3.0.3 did). To avoid problems on upgrades
of old packages, the Debian package still uses the Medium settings.
to change the owner of default.action to "privoxy" and the file is
editable again.
+- Debian package comes with an apparmor profile
+ /etc/apparmor.d/usr.sbin.privoxy, which restricts access to the
+ default paths. If you change something like the access rights of
+ default.action above, you may have to adapt the apparmor profile
+ accordingly and reload the new profile using
+ apparmor_parser -r /etc/apparmor.d/usr.sbin.privoxy
+ If you intend to run multiple instances of privoxy, you should place
+ all configuration in /etc/privoxy and use something matching
+ /run/privoxy*.pid as your PID file.
+
+
Roland Rosenfeld <roland@debian.org>
-$Id: README.Debian,v 1.8 2009-02-22 21:07:20 roland Exp $
projects / privoxy.git / blobdiff