X-Git-Url: http://www.privoxy.org/gitweb/?a=blobdiff_plain;f=doc%2Fsource%2Ffaq.sgml;h=14a4d6ea8b5437e1e7678d5b3fa4f55a92df68b2;hb=61478413a02d7be37d44efb5c0c997a39a9da463;hp=250bf050d7419c08822dc1a8a80105ba96be350e;hpb=54e8052bc7d43c9a4f2022bf452bc9c38d392371;p=privoxy.git
diff --git a/doc/source/faq.sgml b/doc/source/faq.sgml
index 250bf050..14a4d6ea 100644
--- a/doc/source/faq.sgml
+++ b/doc/source/faq.sgml
@@ -8,7 +8,7 @@
-
+
@@ -21,15 +21,11 @@
Privoxy">
]>
- Copyright &my-copy; 2001-2014 by
+ Copyright &my-copy; 2001-2020 by
Privoxy Developers
-$Id: faq.sgml,v 2.123 2016/05/22 12:42:11 fabiankeil Exp $
-
@@ -491,7 +481,7 @@ warranty? Registration?
While it is partly out of date, it's still worth reading.
- Our TODO list
+ Our TODO list
may be of interest to you as well.
Please let us know if you want to work on one of the items listed.
@@ -500,7 +490,7 @@ warranty? Registration?
Would you like to donate?
Donations are welcome. Our
- TODO list
+ TODO list
is rather long and being able to pay one (or more) developers to work on Privoxy
would make a huge difference, even if it was only for a couple of weeks. Donations may
also be used for Privoxy-related travel expenses (for example to attend conferences),
@@ -509,11 +499,13 @@ warranty? Registration?
Privoxy is an associated
- project of Software
+ project of Software
in the Public Interest (SPI), which allows us to receive
- tax-deductible donations in the United States. If you want to donate through
- SPI, please use SPI's donation page
- to see what the options are.
+ tax-deductible donations in the United States.
+ You can donate via Paypal
+ and Click & Pledge.
+ For details, please have a look at
+ SPI's general donation page.
@@ -546,7 +538,59 @@ warranty? Registration?
public user mailing list or, if it's a private matter, to
Fabian Keil (Privoxy's SPI liaison)
directly.
+
+
+How can I become a sponsor and get my logo or link on privoxy.org?
+
+ We are currently offering the following sponsor levels as an experiment:
+
+
+
+ Gold (12000 USD/year)
+
+
+ Logo shown at the bottom of the
+ Privoxy homepage.
+ Logo, link and self description on the
+ sponsor page.
+
+
+
+
+ Silver (1200 USD/year)
+
+
+ Logo shown randomly at the bottom of the
+ Privoxy homepage.
+ Logo, link and self description on the
+ sponsor page.
+
+
+
+
+ Bronze (600 USD/year)
+
+
+ Logo and link on the sponsor page.
+
+
+
+
+
+ The logo sizes depend on the sponsor level. Logos are served from
+ our server, no requests are made to the sponsor website unless
+ the links are being used.
+
+
+ The details may change over time but changes will only affect new sponsors
+ (or existing sponsors that explicitly agreed to the changes).
+
+
+ If you want to become a sponsor, please contact
+ Fabian Keil.
+ New sponsors are only accepted if no developer objects.
+
@@ -635,7 +679,6 @@ special I have to do now?
details. You should also flush your browser's memory and disk
cache to get rid of any cached junk items, and remove any stored
cookies.
-
@@ -884,12 +927,10 @@ the differences?
for them in the user.action file. An example for yahoo might
look like:
- # Allow all cookies for Yahoo login:
#
{ -crunch-incoming-cookies -crunch-outgoing-cookies -session-cookies-only }
.login.yahoo.com
-
These kinds of sites are often quite complex and heavy with
Javascript and
@@ -898,13 +939,11 @@ the differences?
url="../user-manual/actions-file.html#ALIASES">alias just for such
sticky situations:
- # Gmail is a _fragile_ site:
#
{ fragile }
# Gmail is ...
mail.google.com
-
Be sure to flush your browser's caches whenever making these kinds of
changes, just to make sure the changes take.
@@ -1055,10 +1094,8 @@ with a browser? Does that not raise security issues?
should look like:
-
listen-address 192.168.1.1:8118
-
Save the file, and restart Privoxy. Configure
@@ -1070,10 +1107,8 @@ with a browser? Does that not raise security issues?
all available interfaces:
-
listen-address :8118
-
And then use Privoxy's
@@ -1169,7 +1204,7 @@ on Win2K/NT/XP?
Windows service
- functionality. See
+ functionality. See
the User Manual for details on how to install and configure
Privoxy as a service.
@@ -1302,7 +1337,8 @@ and thus avoid individual browser configuration?
amount of guesswork. It is not realistic to catch all of these short of
disabling Javascript, which would break many sites. And lastly, if the
cookies are embedded in a HTTPS/SSL secure session via Javascript, they are beyond
- Privoxy's reach.
+ Privoxy's reach unless you enable
+ https-inspection.
All in all, &my-app; can help manage cookies in general, can help minimize
@@ -1346,11 +1382,9 @@ and thus avoid individual browser configuration?
To disable all cookie actions, so that cookies are allowed unrestricted,
both in and out, for example.com:
-
{ -crunch-incoming-cookies -crunch-outgoing-cookies -session-cookies-only -filter{content-cookies} }
.example.com
-
Place the above in user.action. Note that some of these may
be off by default anyway, so this might be redundant, but there is no harm
@@ -1441,16 +1475,13 @@ and thus avoid individual browser configuration?
can very easily over-ride all blocking with the
following very simple rule in your user.action:
-
# Unblock everybody, everywhere
{ -block }
/ # UN-Block *all* URLs
-
Or even a more comprehensive reversing of various ad related actions:
-
# Unblock everybody, everywhere, and turn off appropriate filtering, etc
{ -block \
@@ -1459,7 +1490,6 @@ and thus avoid individual browser configuration?
allow-popups \
}
/ # UN-Block *all* URLs and allow ads
-
This last action in this compound statement,
allow-popups, is an
during upgrades. You can, however, create completely new templates,
place them in another directory and specify the alternate path in the main
config. For details, have a look at the templdir option.
+ url="../user-manual/config.html#TEMPLDIR">templdir option.
@@ -1500,10 +1530,8 @@ the BLOCKED page?
available as compile-time options. You should
configure the sources as follows:
-
./configure --disable-toggle --disable-editor --disable-force
-
This will create an executable with hard-coded security features so that
&my-app; does not allow easy bypassing of blocked sites, or changing the
@@ -1804,11 +1832,9 @@ us help you. Your efforts are not wasted, and we do appreciate them.
forwarding section
and uncomment the line:
-
# forward-socks5t / 127.0.0.1:9050 .
-
-
+
Note that if you got Tor through one of the bundles, you may
have to change the port from 9050 to 9150 (or even another one).
@@ -1821,13 +1847,11 @@ us help you. Your efforts are not wasted, and we do appreciate them.
uncomment the following forward rules, to make sure your local network is still
reachable through Privoxy:
-
# forward 192.168.*.*/ .
# forward 10.*.*.*/ .
# forward 127.*.*.*/ .
-
-
+
Unencrypted connections to systems in these address ranges will
be as (un)secure as the local network is, but the alternative is
@@ -1841,11 +1865,9 @@ us help you. Your efforts are not wasted, and we do appreciate them.
network by using their names, you will need additional exceptions
that look like this:
-
# forward localhost/ .
-
-
+
Save the modified configuration file and open
http://config.privoxy.org/show-status
@@ -1971,9 +1993,17 @@ ads used to be. Why?
How can Privoxy filter Secure (HTTPS) URLs?
- Since secure HTTP connections are encrypted SSL sessions between your browser
- and the secure site, and are meant to be reliably secure,
- there is little that Privoxy can do but hand the raw
+ If you enable
+ https-inspection
+ Privoxy will impersonate the destination
+ server and can thus filter encrypted requests and responses as well.
+
+
+ Without
+ https-inspection
+ secure HTTP connections are encrypted SSL sessions between your
+ browser and the secure site, and there is little
+ that Privoxy can do but hand the raw
gibberish data though from one end to the other unprocessed.
@@ -2000,6 +2030,21 @@ ads used to be. Why?
+
+Does Privoxy support HTTP/2?
+
+ Privoxy currently doesn't parse HTTP/2 but applications
+ can tunnel HTTP/2 through Privoxy if Privoxy is configured
+ to allow CONNECT requests (default) which are also used
+ for HTTPS.
+
+
+ Adding HTTP/2 support is on the
+ TODO
+ list but currently nobody is known to work on it.
+
+
+
Privoxy runs as a server. How
secure is it? Do I need to take any special precautions?
@@ -2072,7 +2117,7 @@ out of the picture?
My logs show Privoxy crunches
ads, but also its own internal CGI pages. What is a crunch?
- A crunch simply means Privoxy intercepted
+ A crunch means Privoxy intercepted
something, nothing more. Often this is indeed ads or
banners, but Privoxy uses the same mechanism for
trapping requests for its own internal pages. For instance, a request for
@@ -2176,14 +2221,12 @@ altered it! Yikes, what is wrong!
your hosts list is neglected by Privoxy's
configuration, consider adding your list to your user.action file:
-
{ +block }
www.ad.example1.com
ad.example2.com
ads.galore.example.com
etc.example.com
-
@@ -2279,7 +2322,6 @@ and related issues?
There are several possibilities:
-Privoxy is not running. Solution: verify
@@ -2299,7 +2341,6 @@ and related issues?
try disabling or removing the firewall as a simple test.
-
@@ -2352,7 +2393,6 @@ still getting through. How?
our job a little easier. &my-app; has crunched (meaning caught
and BLOCKED) quite a few items in this example, but perhaps missed a few as well.
-
-
Despite 12 out of 32 requests being blocked, the page looked, and seemed to
behave perfectly normal (minus some ads, of course).
@@ -2850,14 +2889,12 @@ browsing has slowed to a crawl. What gives?
To do that, enable logging to figure out which requests get blocked by
&my-app; and add the hosts (no path patterns) to a section like this:
-
-
Additionally you have to configure your browser to contact
127.0.0.1:0 directly (instead of through &my-app;).
@@ -2968,12 +3005,54 @@ browsing has slowed to a crawl. What gives?
this is not considered a Privoxy bug.
- To prevent the crashes you can rewrite your filter to use less ressources,
+ To prevent the crashes you can rewrite your filter to use less resources,
increase the relevant memory limit or recompile pcre to use less stack space.
For details please see the
pcrestack man page
and the documentation of your operating system.
+
+
+
+What to do if editing the config file of privoxy is access denied?
+
+ Your userid probably isn't allowed to edit the file.
+
+ On Windows you can use the windows equivalent of sudo:
+
+ runas /user:administrator "notepad \privoxy\config.txt"
+
+
+ or fix the file permissions:
+
+C:\Privoxy>icacls config.txt
+config.txt BUILTIN\Administrators:(I)(F)
+ NT AUTHORITY\SYSTEM:(I)(F)
+ BUILTIN\Users:(I)(RX)
+ NT AUTHORITY\Authenticated Users:(I)(M)
+
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy>icacls config.txt /grant Lee:F
+processed file: config.txt
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy>icacls config.txt
+config.txt I3668\Lee:(F)
+ BUILTIN\Administrators:(I)(F)
+ NT AUTHORITY\SYSTEM:(I)(F)
+ BUILTIN\Users:(I)(RX)
+ NT AUTHORITY\Authenticated Users:(I)(M)
+
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy>
+
+
+ or try to point-n-click your way through adjusting the file
+ permissions in windows explorer.
+
+