#
# File : $Source: /cvsroot/ijbswa/current/default.action.master,v $
#
-# $Id: default.action.master,v 1.60 2007/02/05 12:08:52 hal9 Exp $
+# $Id: default.action.master,v 1.88 2007/07/31 07:16:08 proactivesvcs Exp $
#
# Requires : This version requires Privoxy v3.0.7 or later due to
# syntax changes.
# Block this URL. Privoxy will ignore this URL completely, and not request
# it.
#
+# +client-header-filter{name}
+# All client headers to which this action applies are filtered on-the-fly
+# through the specified regular expression based substitutions.
+#
+# Client-header filters predefined in the supplied default.filter include:
+#
+# hide-tor-exit-notation: Removes the Tor exit node notation in Host and Referer headers
+#
# +content-type-overwrite
# Replaces the "Content-Type:" HTTP server header, so that unwanted
# download menus will not pop up, or changes the browser's rendering mode.
# be seen with View Source), not the headers. Repeat for multiple filters.
# Use with caution: filters can be very intrusive.
#
-# Filters predefined in the supplied default.action include:
+# Filters predefined in the supplied default.filter include:
#
# js-annoyances: Get rid of particularly annoying JavaScript abuse
# js-events: Kill all JS event bindings (Radically destructive! Use only on real suckers)
# yahoo: Removes text ads and other Yahoo specific improvements
# msn: Removes text ads and other MSN specific improvements
# blogspot: Cleans up Blogspot blogs
-# html-to-xml: Header filter to change the Content-Type from html to xml
-# xml-to-html: Header filter to change the Content-Type from xml to html
# no-ping: Removes non-standard ping attributes from anchor and area tags
-# hide-tor-exit-notation: Header filter to remove the Tor exit node notation in Host and Referer headers
-#
-# +filter-client-headers
-# By default, filters only apply to the document content itself. This will
-# extend those filters to include the client's headers as well.
-#
-# +filter-server-headers
-# By default, filters only apply to the document content itself. This will
-# extend those filters to include the server's headers as well.
#
# +force-text-mode
# Declares a document as plain text, even if the "Content-Type:" isn't detected
# +inspect-jpegs
# Scan jpeg headers for malformed comment blocks and correct them.
#
-# +set-image-blocker{blank}
-# +set-image-blocker{pattern}
-# +set-image-blocker{<URL>} with <url> being any valid image URL
-# Decides what to do with URLs that end up tagged with {+block +handle-as-image}.
-# There are 4 options:
-# * "-set-image-blocker" will send a HTML "blocked" page, usually
-# resulting in a "broken image" icon.
-# * "+set-image-blocker{blank}" will send a 1x1 transparent image
-# * "+set-image-blocker{pattern}" will send a 4x4 grey/white pattern
-# which is less intrusive than the logo but easier to recognize
-# than the transparent one.
-# * "+set-image-blocker{<URL>}" will send a HTTP temporary redirect
-# to the specified image URL.
-#
-#
# +limit-connect{portlist}
# The CONNECT methods exists in HTTP to allow access to secure websites
# (https:// URLs) through proxies. It works very simply: The proxy
# connects to the server on the specified port, and then short-circuits
-# its connections to the cliant and to the remote proxy.
+# its connections to the client and to the remote proxy.
# This can be a big security hole, since CONNECT-enabled proxies can
# be abused as TCP relays very easily.
# By default, i.e. in the absence of a +limit-connect action, Privoxy
# and +gif-deanimate will not work on compressed data. Will slow down
# connections to those websites, though.
#
-# +prevent-keeping-cookies
+# +server-header-filter{name}
+# All server headers to which this action applies are filtered on-the-fly
+# through the specified regular expression based substitutions.
+#
+# Server-header filters predefined in the supplied default.filter include:
+#
+# html-to-xml: Changes the Content-Type header from html to xml
+# xml-to-html: Changes the Content-Type header from xml to html
+#
# +session-cookies-only
# If the website sets cookies, make sure they are erased when you exit
# and restart your web browser. This makes profiling cookies useless,
# but won't break sites which require cookies so that you can log in
# or for transactions.
#
+# +set-image-blocker{blank}
+# +set-image-blocker{pattern}
+# +set-image-blocker{<URL>} with <url> being any valid image URL
+# Decides what to do with URLs that end up tagged with {+block +handle-as-image}.
+# There are 4 options:
+# * "-set-image-blocker" will send a HTML "blocked" page, usually
+# resulting in a "broken image" icon.
+# * "+set-image-blocker{blank}" will send a 1x1 transparent image
+# * "+set-image-blocker{pattern}" will send a 4x4 grey/white pattern
+# which is less intrusive than the logo but easier to recognize
+# than the transparent one.
+# * "+set-image-blocker{<URL>}" will send a HTTP temporary redirect
+# to the specified image URL.
+#
+#
# +crunch-outgoing-cookies
# Prevent the website from reading cookies
#
# equivalent.
#
# +redirect{<URL>}
+# +redirect{<pcrs command>}
# Convinces the browser that the requested document has been moved to
# another location and the browser should get it from the specified
# URL.
{ \
-add-header \
-block \
+-client-header-filter{hide-tor-exit-notation} \
-content-type-overwrite \
-crunch-client-header \
-crunch-if-none-match \
-filter{yahoo} \
-filter{msn} \
-filter{blogspot} \
--filter{xml-to-html} \
--filter{html-to-xml} \
-filter{no-ping} \
--filter{hide-tor-exit-notation} \
--filter-client-headers \
--filter-server-headers \
-force-text-mode \
-handle-as-empty-document \
-handle-as-image \
-redirect \
-send-vanilla-wafer \
-send-wafer \
+-server-header-filter{xml-to-html} \
+-server-header-filter{html-to-xml} \
-session-cookies-only \
+set-image-blocker{pattern} \
-treat-forbidden-connects-like-blocks \
#############################################################################
{-block}
#MASTER# DONT-VERIFY (generic)
-/.*ad(sl|v(i[cs]|o|an|ertencia|ent|.*search)) # advice/advisories/advan*/advertencia (spanish)
+/.*ad(sl|v(i[cs]|o|an|ertencia|ent|.*search|erse)) # advice/advisories/advan*/advertencia (spanish) adverse
/.*(lo|thre|he|d|gr|l|ro|re|squ|class(ified)?)ads
/.*account
support./(.*/)?track
/(.*/)?ad(se?rv|click|stream|image|log|farm|script)
#MASTER# PROBLEM URL: http://www.torrentportal.com/topad.html
#MASTER# REMARKS: Action tracker 1637648 and a bit of imagination. Added 2007-01-20.
-/.*(top|bottom|left|right)_?ad
+#MASTER# REMARKS: Added "text" 20070730 as per http://www.pcworld.com/textad?Keywords=System Resources Tune-Up.&type=pcworld_downloads_search&count=3&ord=906010128&serveUrl=http%3A%2F%2Fwww.pcworld.com%2Fdownloads%2Ffile%2Ffid%2C7661-order%2C1-page%2C1-c%2Csystemresourcestuneup%2Fdescription.html Adam Piggott
+/.*(top|bottom|left|right|text)_?ad
#############################################################################
# Site-specific block patterns;
#MASTER# REMARKS: Domain squatting onload pop-ups
#MASTER# BLOCK-REFERRER: http://www.memtest.com/
/(t|search)\.php\?uid=ws[a-z0-9]+\.[a-z0-9]+
+#MASTER# BLOCK-REFERRER: via Yahoo groups
+#MASTER# REMARKS: Actionsfile tracker 1645513 2007-01-26
+.adinterax.com/(?!(.*)\.(js|gif|jpg))
+#MASTER# BLOCK-REFERRER: http://www.weilpod.com
+#MASTER# REMARKS: Actionsfile feedback item #1710951 2007-05-02
+img.bluehost.com
+#MASTER# BLOCK-REFERRER: http://www.linuxinsider.com/story/57759.html
+#MASTER# REMARKS: Actionsfile feedback item #1736213 at 2007-06-12
+linuxinsider.com/images/sda/
+#MASTER# REMARKS: 20070711 Adam Piggott Actionsfile feedback #1700692
+#MASTER# REMARKS: Tracking JavaScript
+#MASTER# BLOCK-REFERRER: http://www.hants.gov.uk/record-office/
+[a-z].clickdensity.com
#----------------------------------------------------------------------------
# Misc Web-bugs, JS and just plain Junk. Images here aren't normal images.
dw.com.com/clear/
#----------------------------------------------------------------------------
-# JavaScripts for ad and popup generation
+# JavaScripts and Texts for ad and popup generation
#----------------------------------------------------------------------------
#MASTER# BLOCK-REFERRER: http://www.chip.de/artikel/c_artikelunterseite_10423683.html
pagead*.googlesyndication./.*\.js
/t\.php\?cat=.*&kw=.*&sc=
#MASTER# BLOCK-REFERRER: http://floodle.net 2007-01-21 SF tracker
scripts.chitika.net/.*\.js
+#MASTER# REMARKS: Actionsfile tracker #1674363 2007-03-05, text ads
+#MASTER# BLOCK-REFERRER: http://www.securityfocus.com/archive/1/461489/30/0/threaded
+jlinks.industrybrains.com/
+#MASTER# BLOCK-REFERRER: via Yahoo groups
+#MASTER# REMARKS: Actionsfile tracker 1645513 2007-01-26
+.adinterax.com/.*\.js
+#MASTER# BLOCK-REFERRER: http://dictionary.reference.com/search?q=privacy&db=*
+#MASTER# REMARKS: Actionsfile tracker 1650798 2007-02-02
+.googleadservices.com/gampad/.*\.js
+#MASTER# BLOCK-REFERRER: http://www.linuxworld.com/news/2007/061307-brian-aker-interview.html
+#MASTER# REMARKS: Actionsfile feedback item #1736794 2007-06-13
+js.adsonar.
+#MASTER# BLOCK-REFERRER: http://news.zdnet.co.uk/software/0,1000000121,39209666,00.htm
+#MASTER# REMARKS: Actionsfile feedback item #1736879 2007-06-13, sponsored
+links. 2007-08-02, more hosts using this scheme, broadening scope.
+#bwp.zdnet.
+bwp.
#############################################################################
# Generic block-as-image patterns:
#MASTER# BLOCK-REFERRER: http://discussion.brighthand.com/forumdisplay.php?s=fee44a5b2a6fc2e9e79d6472bc8fbe94&forumid=197 10/19/06
*[0-9].tribalfusion.com/
#MASTER# REMARKS: Actions file tracker 1547656 09/02/06
-img.mediaplex.com
+#MASTER# REMARKS: Update pattern: Actionsfile feedback item #1698822, was opened at 2007-04-11 to catch https://secure.img-cdn.mediaplex.com/0....
+img*.mediaplex.com
#MASTER# BLOCK-REFERRER: http://www.tomshardware.com/ 09/28/06
#MASTER# REMARKS: There is adfarm and altfarm.mediaplex
-a*farm.mediaplex.com
+#MASTER# REMARKS: 20070711 Actionsfile feedback #1749013 /ad/fm/ appended, as click-throughs were being blocked. Could only find adverts being served from /ad/fm/
+a*farm.mediaplex.com/ad/fm/
#MASTER# REMARKS: Support request 1312362 09/08/06
#MASTER# DUPLICATED: adserver.itsfogo.com
-#MASTER# BLOCK-REFERRER: http://www.multiproxy.org/anon_proxy.htm 09/10/06
-view.atdmt.com
#MASTER# REMARKS: Actionsfile feedback 09/11/06 http://matrix.mediavantage.de/mx.one? p=210&pa=1060&pb=1906&pd=10944&aid=399&x=120&y=240&ts=2005.06.27.21.38.08
#MASTER# BLOCK-REFERRER: http://www.heise.de/newsticker/meldung/61067
matrix.mediavantage.
#MASTER# BLOCK-REFERRER: http://www.multimap.com/ (sporadic)
#MASTER# REMARKS: Actionsfile feedback item #1665682 2007-02-21
.akamai.net/.*\.adtech\.de/.*\.(gif|png)
+#MASTER# BLOCK-REFERRER: via Yahoo groups
+#MASTER# REMARKS: Actionsfile tracker 1645513 2007-01-26
+.adinterax.com/.*\.(gif|jpg)
+#MASTER# BLOCK-REFERRER: http://www.wotzon.com/profilepage.html?comp_id=1002310&CatID=2
+#MASTER# REMARKS: Ad generator per Actionsfile feedback item #1749870 2007-07-08
+img.directtrack.com
#----------------------------------------------------------------------------
# Cross-site user tracking
spinbox.versiontracker.com/.*\.(gif|jpg)
#MASTER# BLOCK-REFERRER: http://mycroft.mozdev.org/ 10/07/06
stat.onestat.com
-#MASTER# BLOCK-REFERRER: http://www.global.net.uk/ 10/07/06
-.[a-vx-z]*.tradedoubler.com
+#MASTER# BLOCK-REFERRER: http://www.meparecebien.com/noticias/discograficas/sinnamon-records/sinnamon-records-libera-a-sus-artistas-nacionales-para-el-mercado-digital-401/
+#MASTER# REMARKS: Actionsfile feedback item #1644583 2007-03-05
+imp*.tradedoubler.com
#MASTER# BLOCK-REFERRER: http://www.sharepoint.boo.pl/
#MASTER# REMARKS: Not found, but left 10/07/06
stat.webmedia.
#MASTER# BLOCK-REFERRER: http://www.unitedairlines.com
#MASTER# REMARKS: Actionsfile feedback item #1650797 2007-02-05
.insightfirst.com
+#MASTER# BLOCK-REFERRER: http://rss.slashdot.org/Slashdot/slashdot
+#MASTER# PROBLEM URL: rss.slashdot.org/~a/Slashdot/slashdot?i=ofbWqX
+rss.slashdot.org/~a/Slashdot/slashdot\?
+#MASTER# PROBLEM URL: rss.slashdot.org/~r/Slashdot/slashdot/~4/102113044
+rss.slashdot.org/~r/Slashdot/slashdot/~4/
#----------------------------------------------------------------------------
# Specific counters (see above for generic patterns)
/RealMedia/ads/
#MASTER# BLOCK-REFERRER: http://www.powerdvd.com 12/28/06 per SF tracker
/top\.php\?d=.*\.[a-z]{2,5}
-
+#MASTER# REMARKS: Actionsfile feedback item #1764161 2007-07-31
+#MASTER# BLOCK-REFERRER: http://www.webster.com/dictionary/revering
+.google.com/afsonline
+
#############################################################################
# Site-specific unblockers:
#############################################################################
.freebsd.org
.fsf.org
.gnu.org
-#MASTER# REMARKS: SF tracker 09/15/06
-adiumx.com
+#MASTER# REMARKS: SF tracker 09/15/06, and #1750779 2007-07-09
+#MASTER# REMARKS: New home? http://adiumx.cachefly.net/Adium_1.0.5.dmg
+adium*.*.
#MASTER# UNBLOCK-REFERRER: http://google.com 10/01/06
#MASTER# REMARKS: This allows many (but not all) Google "Sponsored Links" to function.
#MASTER# REMARKS: Presumably if someone clicks these they want to go there.
#MASTER# UNBLOCK-REFERRER: http://yahoo.com 2007-01-27
#MASTER# REMARKS: Actionsfile Tracker #1645501, this is a UI page element.
.yimg.com/.*/themes/ad/
-
+#MASTER# UNBLOCK-REFERRER: http://mozilla.hongo.wide.ad.jp/pub/mozilla.org//thunderbird/releases/
+#MASTER# REMARKS: Actionsfile feedback item #1672918 2007-03-03
+.ad.*/pub/mozilla.org/
+#MASTER# UNBLOCK-REFERRER: http://lads.myspace.com/mini/mini.swf?b=NDgwNzU1ODE=&o=NjQwNzIzMA==&d=MTE3NDI4ODcwNg==&i=MA==&a=VHJ1ZQ==
+#MASTER# UNBLOCK-REFERRER: http://profile.myspace.com/index.cfm?fuseaction=user.viewprofile&friendid=5282733
+#MASTER# UNBLOCK-REFERRER: http://lads.myspace.com/videos/vplayer.swf
+#MASTER# REMARKS: MySpace videos caught by .*ads. The above profile.myspace.com link grabs the vplayer.swf file (which does not work when directly fetched)
+lads.myspace.com
+#MASTER# REMARKS: 20070402 Adam Piggott first-party tracking. 20070411 Moved from generic unblockers by path to site-specific unblockers.
+#MASTER# UNBLOCK-REFERRER: http://www.shockwave.com/servlet/DownloadEcommTracker?sku=fizzball-pc&promoCode=SiteShockwaveLandingPage
+.shockwave.com/servlet/DownloadEcommTracker
+#MASTER# UNBLOCK-REFERRER: http://www.fish4.co.uk/iad/lettings/advert?adId=12389712&src=nestoria
+#MASTER# REMARKS: 20070411 Adam Piggott fish4.co.uk is a popular UK advertising site for cars, properties and jobs and uses ad/advert all over the place, understandably.
+.fish4.co.uk/.*ad
+#MASTER# REMARKS: Actionsfile feedback item #1700037 2007-04-13 HB
+#MASTER# UNBLOCK-REFERRER: http://www.mp3.com.au/popup/popup.asp?id=110433
+.mp3.com.au/.*popup
+#MASTER# REMARKS Actionsfile feedback #1700915 2007-04-15
+#MASTER# UNBLOCK-REFERRER: http://www.svd.se/ego/339/http://www.e24.se/dynamiskt/reklam_media/did_15092793.asp
+#MASTER# UNBLOCK-REFERRER: http://www.e24.se/dynamiskt/reklam_media/did_15092793.asp
+/(.*/)?dynamiskt/reklam_media/did_
+#MASTER# REMARKS 20070710 Actionsfile feedback #1751020
+switch.atdmt.com/action/
+#MASTER# UNBLOCK-REFERRER: http://www.parcelforce.com/portal/pw/track?catId=7500082
+.parcelforce.com/.*track
+#MASTER# UNBLOCK-REFERRER: redirect from http://go.microsoft.com/fwlink?linkid=51093
+#MASTER# REMARKS: Actionsfile feedback item #1757121 2007-07-19
+.microsoft.com/.*/adschema/
#############################################################################
# Site-specific special rules:
#MASTER# PROBLEM-URL: http://www.fileplanet.com
download.com.com/redir\?
www.fileplanet.com/redir\.asp\?
-#MASTER# PROBLEM-URL: http://web.archive.org/web/19970715180251/http://www.gmd.de/
-web.archive.org
#MASTER# PROBLEM-URL: http://cyber.law.harvard.edu/filtering/china/test/
.edu
#MASTER# PROBLEM-URL: http://web.archive.org
+#MASTER# PROBLEM-URL: http://web.archive.org/web/19970715180251/http://www.gmd.de/
.archive.org
#MASTER# PROBLEM-URL: http://www.guenstiger.de/gt/link.asp?url=http://www.edv-supermarkt.de&source=produkt=238284&USID=00086443917155&hnr=2199&pnr=238284&ppr=158,00
www.guenstiger.de
schneegans.de/
#MASTER# PROBLEM-URL: http://config.privoxy.org/edit-actions-submit?f=user ... &redirect_mode=http%3A%2F%2Fwww.privoxy.org%2F
config.privoxy.org/
+#MASTER# PROBLEM-URL: http://users.wsj.com/lmda/do/checkLogin?mg=evo-wsj&url=http%3A%2F%2Fonline.wsj.com%2Farticle%2FSB117313867582027623.html
+.wsj.com/lmda/do/checkLogin
+#MASTER# PROBLEM-URL: http://del.icio.us/url/check\?url=http%3A%2F%2Fwww.privoxy.org
+#MASTER# REMARKS: As we already have five other PROBLEM-URLs that contain '?url=',
+#MASTER# REMARKS: it might make sense to allow '/.*?url=' in general
+del.icio.us/
#----------------------------------------------------------------------------
# No filtering for sourcecode or other automatically parsed content
{+redirect{http://config.privoxy.org/}}
.privoxy.org/config
+#MASTER# REMARKS: Privoxy's "unsafe" CGI pages check the referrer
+#MASTER# REMARKS: to make sure the user reached them intentionally.
+#MASTER# REMARKS: If the referrer is blocked, CGI editing is impossible.
+{-hide-referrer}
+p.p/
+config.privoxy.org/
+
#MASTER# REMARKS: Yahoo logout URLs need special treatment,
#MASTER# REMARKS: the URL after "done=" is no fast-redirect. 2007-01-19 fk
#MASTER# REMARKS: Reported in support request #1635354.
.yahoo./.*http://login.yahoo.com/config/login.*http://
#MASTER# set vi:nowrap
+
+#----------------------------------------------------------------------------
+# Sections that modify the action settings based on tags.
+#----------------------------------------------------------------------------
+
+#############################################################################
+# Depends on +client-header-tagger{image-requests}
+#############################################################################
+{-handle-as-empty-document \
+ +handle-as-image \
+}
+TAG:^IMAGE-REQUEST$
+
+#############################################################################
+# Depends on +client-header-tagger{css-requests}
+#############################################################################
+{+handle-as-empty-document \
+ -handle-as-image \
+}
+TAG:^CSS-REQUEST$
+