7 CONTENT="Modular DocBook HTML Stylesheet Version 1.60"><LINK
9 TITLE="Privoxy User Manual"
10 HREF="index.html"><LINK
13 HREF="seealso.html"><LINK
16 HREF="../p_doc.css"></HEAD
35 >Privoxy User Manual</TH
75 >14.1. Regular Expressions</A
81 > uses Perl-style <SPAN
86 HREF="actions-file.html"
90 HREF="filter-file.html"
94 HREF="http://www.pcre.org/"
99 HREF="http://www.oesterhelt.org/pcrs/"
104 > If you are reading this, you probably don't understand what <SPAN
108 > are, or what they can do. So this will be a very brief
109 introduction only. A full explanation would require a <A
110 HREF="http://www.oreilly.com/catalog/regex/"
115 > Regular expressions provide a language to describe patterns that can be
116 run against strings of characters (letter, numbers, etc), to see if they
117 match the string or not. The patterns are themselves (sometimes complex)
118 strings of literal characters, combined with wild-cards, and other special
119 characters, called meta-characters. The <SPAN
121 >"meta-characters"</SPAN
123 special meanings and are used to build complex patterns to be matched against.
124 Perl Compatible Regular Expressions are an especially convenient
128 > of the regular expression language.</P
130 > To make a simple analogy, we do something similar when we use wild-card
131 characters when listing files with the <B
138 > matches all filenames. The <SPAN
142 character here is the asterisk which matches any and all characters. We can be
143 more specific and use <TT
146 > to match just individual
149 >"dir file?.text"</SPAN
157 >, etc. We are pattern
158 matching, using a similar technique to <SPAN
160 >"regular expressions"</SPAN
163 > Regular expressions do essentially the same thing, but are much, much more
164 powerful. There are many more <SPAN
166 >"special characters"</SPAN
168 building complex patterns however. Let's look at a few of the common ones,
169 and then some examples:</P
181 > - Matches any single character, e.g. <SPAN
216 > - The preceding character or expression is matched ZERO or ONE
236 > - The preceding character or expression is matched ONE or MORE
256 > - The preceding character or expression is matched ZERO or MORE
279 > character denotes that
280 the following character should be taken literally. This is used where one of the
281 special characters (e.g. <SPAN
284 >) needs to be taken literally and
285 not as a special meta-character. Example: <SPAN
287 >"example\.com"</SPAN
289 sure the period is recognized only as a period (and not expanded to its
290 meta-character meaning of any single character).
309 > - Characters enclosed in brackets will be matched if
310 any of the enclosed characters are encountered. For instance, <SPAN
314 matches any numeric digit (zero through nine). As an example, we can combine
318 > to match any digit one of more times: <SPAN
340 > - parentheses are used to group a sub-expression,
341 or multiple sub-expressions.
363 > character works like an
367 > conditional statement. A match is successful if the
368 sub-expression on either side of <SPAN
371 > matches. As an example:
374 >"/(this|that) example/"</SPAN
375 > uses grouping and the bar character
376 and would match either <SPAN
378 >"this example"</SPAN
392 > These are just some of the ones you are likely to use when matching URLs with
396 >, and is a long way from a definitive
397 list. This is enough to get us started with a few simple examples which may
398 be more illuminating:</P
407 that uses the common combination of <SPAN
414 denote any character, zero or more times. In other words, any string at all.
415 So we start with a literal forward slash, then our regular expression pattern
419 >) another literal forward slash, the string
423 >, another forward slash, and lastly another
428 a directory path here. This will match any file with the path that has a
429 directory named <SPAN
436 any characters, and this could conceivably be more forward slashes, so it
437 might expand into a much longer looking path. For example, this could match:
440 >"/eye/hate/spammers/banners/annoy_me_please.gif"</SPAN
444 >"/banners/annoying.html"</SPAN
445 >, or almost an infinite number of other
446 possible combinations, just so it has <SPAN
452 > A now something a little more complex:</P
458 >/.*/adv((er)?ts?|ertis(ing|ements?))?/</TT
461 We have several literal forward slashes again (<SPAN
465 building another expression that is a file path statement. We have another
469 >, so we are matching against any conceivable sub-path, just so
470 it matches our expression. The only true literal that <I
474 > our pattern is <SPAN
478 the forward slashes. What comes after the <SPAN
482 interesting part. </P
487 > means the preceding expression (either a
488 literal character or anything grouped with <SPAN
492 can exist or not, since this means either zero or one match. So
495 >"((er)?ts?|ertis(ing|ements?))"</SPAN
496 > is optional, as are the
497 individual sub-expressions: <SPAN
503 >"(ing|ements?)"</SPAN
514 >. We have two of those. For instance,
517 >"(ing|ements?)"</SPAN
518 >, can expand to match either <SPAN
528 >. What is being done here, is an
529 attempt at matching as many variations of <SPAN
531 >"advertisement"</SPAN
533 similar, as possible. So this would expand to match just <SPAN
549 >"advertisement"</SPAN
553 >"advertisements"</SPAN
554 >. You get the idea. But it would not match
557 >"advertizements"</SPAN
561 >). We could fix that by
562 changing our regular expression to:
565 >"/.*/adv((er)?ts?|erti(s|z)(ing|ements?))?/"</SPAN
566 >, which would then match
573 >/.*/advert[0-9]+\.(gif|jpe?g)</TT
576 another path statement with forward slashes. Anything in the square brackets
580 > can be matched. This is using <SPAN
584 shorthand expression to mean any digit one through nine. It is the same as
588 >. So any digit matches. The <SPAN
592 means one or more of the preceding expression must be included. The preceding
593 expression here is what is in the square brackets -- in this case, any digit
594 one through nine. Then, at the end, we have a grouping: <SPAN
598 This includes a <SPAN
601 >, so this needs to match the expression on
602 either side of that bar character also. A simple <SPAN
605 > on one side, and the other
606 side will in turn match either <SPAN
616 > means the letter <SPAN
620 can be matched once or not at all. So we are building an expression here to
621 match image GIF or JPEG type image file. It must include the literal
625 >, then one or more digits, and a <SPAN
629 (which is now a literal, and not a special character, since it is escaped
633 >), and lastly either <SPAN
643 >. Some possible matches would
646 >"//advert1.jpg"</SPAN
650 >"/nasty/ads/advert1234.gif"</SPAN
654 >"/banners/from/hell/advert99.jpg"</SPAN
655 >. It would not match
659 > (no leading slash), or
662 >"/adverts232.jpg"</SPAN
663 > (the expression does not include an
669 >"/advert1.jsp"</SPAN
674 in the expression anywhere).</P
676 > We are barely scratching the surface of regular expressions here so that you
677 can understand the default <SPAN
681 configuration files, and maybe use this knowledge to customize your own
682 installation. There is much, much more that can be done with regular
683 expressions. Now that you know enough to get started, you can learn more on
686 > More reading on Perl Compatible Regular expressions:
688 HREF="http://www.perldoc.com/perl5.6/pod/perlre.html"
690 >http://www.perldoc.com/perl5.6/pod/perlre.html</A
693 > For information on regular expression based substititions and their applications
694 in filters, please see the <A
695 HREF="filter-file.html"
696 >filter file tutorial</A
709 >'s Internal Pages</A
715 > proxies each requested
716 web page, it is easy for <SPAN
720 trap certain special URLs. In this way, we can talk directly to
725 configured, see how our rules are being applied, change these
726 rules and other configuration options, and even turn
730 > filtering off, all with
731 a web browser. </P
733 > The URLs listed below are the special ones that allow direct access
741 > must be running to access these. If
742 not, you will get a friendly error message. Internet access is not
761 HREF="http://config.privoxy.org/"
763 >http://config.privoxy.org/</A
768 > There is a shortcut: <A
773 doesn't provide a fallback to a real page, in case the request is not
783 Show information about the current configuration, including viewing and
784 editing of actions files:
794 HREF="http://config.privoxy.org/show-status"
796 >http://config.privoxy.org/show-status</A
804 Show the source code version numbers:
814 HREF="http://config.privoxy.org/show-version"
816 >http://config.privoxy.org/show-version</A
824 Show the browser's request headers:
834 HREF="http://config.privoxy.org/show-request"
836 >http://config.privoxy.org/show-request</A
844 Show which actions apply to a URL and why:
854 HREF="http://config.privoxy.org/show-url-info"
856 >http://config.privoxy.org/show-url-info</A
864 Toggle Privoxy on or off. In this case, <SPAN
868 to run, but only as a pass-through proxy, with no actions taking place:
878 HREF="http://config.privoxy.org/toggle"
880 >http://config.privoxy.org/toggle</A
885 > Short cuts. Turn off, then on:
895 HREF="http://config.privoxy.org/toggle?set=disable"
897 >http://config.privoxy.org/toggle?set=disable</A
909 HREF="http://config.privoxy.org/toggle?set=enable"
911 >http://config.privoxy.org/toggle?set=enable</A
919 > These may be bookmarked for quick reference. See next. </P
926 >14.2.1. Bookmarklets</A
929 > Below are some <SPAN
931 >"bookmarklets"</SPAN
932 > to allow you to easily access a
936 > version of some of <SPAN
940 special pages. They are designed for MS Internet Explorer, but should work
941 equally well in Netscape, Mozilla, and other browsers which support
942 JavaScript. They are designed to run directly from your bookmarks - not by
943 clicking the links below (although that should work for testing).</P
945 > To save them, right-click the link and choose <SPAN
947 >"Add to Favorites"</SPAN
951 >"Add Bookmark"</SPAN
952 > (Netscape). You will get a warning that
955 >"may not be safe"</SPAN
956 > - just click OK. Then you can run the
957 Bookmarklet directly from your favorites/bookmarks. For even faster access,
958 you can put them on the <SPAN
961 > bar (IE) or the <SPAN
965 > (Netscape), and run them with a single click. </P
973 HREF="javascript:void(window.open('http://config.privoxy.org/toggle?mini=y&set=enabled','ijbstatus','width=250,height=100,resizable=yes,scrollbars=no,toolbar=no,location=no,directories=no,status=no,menubar=no,copyhistory=no').focus());"
982 HREF="javascript:void(window.open('http://config.privoxy.org/toggle?mini=y&set=disabled','ijbstatus','width=250,height=100,resizable=yes,scrollbars=no,toolbar=no,location=no,directories=no,status=no,menubar=no,copyhistory=no').focus());"
984 >Privoxy - Disable</A
991 HREF="javascript:void(window.open('http://config.privoxy.org/toggle?mini=y&set=toggle','ijbstatus','width=250,height=100,resizable=yes,scrollbars=no,toolbar=no,location=no,directories=no,status=no,menubar=no,copyhistory=no').focus());"
993 >Privoxy - Toggle Privoxy</A
994 > (Toggles between enabled and disabled)
1000 HREF="javascript:void(window.open('http://config.privoxy.org/toggle?mini=y','ijbstatus','width=250,height=2,resizable=yes,scrollbars=no,toolbar=no,location=no,directories=no,status=no,menubar=no,copyhistory=no').focus());"
1002 >Privoxy- View Status</A
1009 HREF="javascript:w=Math.floor(screen.width/2);h=Math.floor(screen.height*0.9);void(window.open('http://www.privoxy.org/actions/index.php?url='+escape(location.href),'Feedback','screenx='+w+',width='+w+',height='+h+',scrollbars=yes,toolbar=no,location=no,directories=no,status=no,menubar=no,copyhistory=no').focus());"
1011 >Privoxy - Submit Actions File Feedback</A
1018 > Credit: The site which gave us the general idea for these bookmarklets is
1020 HREF="http://www.bookmarklets.com"
1022 >www.bookmarklets.com</A
1024 have more information about bookmarklets. </P
1033 >14.3. Chain of Events</A
1036 > Let's take a quick look at the basic sequence of events when a web page is
1037 requested by your browser and <SPAN
1047 > First, your web browser requests a web page. The browser knows to send
1048 the request to <SPAN
1051 >, which will in turn,
1052 relay the request to the remote web server after passing the following
1061 > traps any request for its own internal CGI
1062 pages (e.g http://p.p/) and sends the CGI page back to the browser.
1070 > checks to see if the URL
1072 HREF="actions-file.html#BLOCK"
1078 so, the URL is then blocked, and the remote web server will not be contacted.
1080 HREF="actions-file.html#HANDLE-AS-IMAGE"
1083 >"+handle-as-image"</SPAN
1086 is then checked and if it does not match, an
1090 > page is sent back. Otherwise, if it does match,
1091 an image is returned. The type of image depends on the setting of <A
1092 HREF="actions-file.html#SET-IMAGE-BLOCKER"
1095 >"+set-image-blocker"</SPAN
1098 (blank, checkerboard pattern, or an HTTP redirect to an image elsewhere).
1103 > Untrusted URLs are blocked. If URLs are being added to the
1107 > file, then that is done.
1112 > If the URL pattern matches the <A
1113 HREF="actions-file.html#FAST-REDIRECTS"
1116 >"+fast-redirects"</SPAN
1119 it is then processed. Unwanted parts of the requested URL are stripped.
1124 > Now the rest of the client browser's request headers are processed. If any
1125 of these match any of the relevant actions (e.g. <A
1126 HREF="actions-file.html#HIDE-USER-AGENT"
1129 >"+hide-user-agent"</SPAN
1132 etc.), headers are suppressed or forged as determined by these actions and
1138 > Now the web server starts sending its response back (i.e. typically a web page and related
1144 > First, the server headers are read and processed to determine, among other
1145 things, the MIME type (document type) and encoding. The headers are then
1146 filtered as deterimed by the
1148 HREF="actions-file.html#CRUNCH-INCOMING-COOKIES"
1151 >"+crunch-incoming-cookies"</SPAN
1155 HREF="actions-file.html#SESSION-COOKIES-ONLY"
1158 >"+session-cookies-only"</SPAN
1162 HREF="actions-file.html#DOWNGRADE-HTTP-VERSION"
1165 >"+downgrade-http-version"</SPAN
1174 HREF="actions-file.html#KILL-POPUPS"
1177 >"+kill-popups"</SPAN
1180 action applies, and it is an HTML or JavaScript document, the popup-code in the
1181 response is filtered on-the-fly as it is received.
1187 HREF="actions-file.html#FILTER"
1194 HREF="actions-file.html#DEANIMATE-GIFS"
1197 >"+deanimate-gifs"</SPAN
1200 action applies (and the document type fits the action), the rest of the page is
1201 read into memory (up to a configurable limit). Then the filter rules (from
1205 >) are processed against the buffered
1206 content. Filters are applied in the order they are specified in the
1210 > file. Animated GIFs, if present, are
1211 reduced to either the first or last frame, depending on the action
1212 setting.The entire page, which is now filtered, is then sent by
1216 > back to your browser.
1220 HREF="actions-file.html#FILTER"
1227 HREF="actions-file.html#DEANIMATE-GIFS"
1230 >"+deanimate-gifs"</SPAN
1236 > passes the raw data through
1237 to the client browser as it becomes available.
1242 > As the browser receives the now (probably filtered) page content, it
1243 reads and then requests any URLs that may be embedded within the page
1244 source, e.g. ad images, stylesheets, JavaScript, other HTML documents (e.g.
1245 frames), sounds, etc. For each of these objects, the browser issues a new
1246 request. And each such request is in turn processed as above. Note that a
1247 complex web page may have many such embedded URLs.
1259 >14.4. Anatomy of an Action</A
1267 HREF="actions-file.html#ACTIONS"
1270 HREF="actions-file.html#FILTER"
1273 to any given URL can be complex, and not always so
1274 easy to understand what is happening. And sometimes we need to be able to
1282 doing. Especially, if something <SPAN
1286 is causing us a problem inadvertently. It can be a little daunting to look at
1287 the actions and filters files themselves, since they tend to be filled with
1289 HREF="appendix.html#REGEX"
1290 >regular expressions</A
1291 > whose consequences are not
1292 always so obvious. </P
1294 > One quick test to see if <SPAN
1297 > is causing a problem
1298 or not, is to disable it temporarily. This should be the first troubleshooting
1300 HREF="appendix.html#BOOKMARKLETS"
1301 >the Bookmarklets</A
1302 > section on a quick
1303 and easy way to do this (be sure to flush caches afterward!).</P
1310 HREF="http://config.privoxy.org/show-url-info"
1312 >http://config.privoxy.org/show-url-info</A
1314 page that can show us very specifically how <SPAN
1318 are being applied to any given URL. This is a big help for troubleshooting.</P
1320 > First, enter one URL (or partial URL) at the prompt, and then
1325 how the current configuration will handle it. This will not
1326 help with filtering effects (i.e. the <A
1327 HREF="actions-file.html#FILTER"
1336 > file since this is handled very
1337 differently and not so easy to trap! It also will not tell you about any other
1338 URLs that may be embedded within the URL you are testing. For instance, images
1339 such as ads are expressed as URLs within the raw page source of HTML pages. So
1340 you will only get info for the actual URL that is pasted into the prompt area
1341 -- not any sub-URLs. If you want to know about embedded URLs like ads, you
1342 will have to dig those out of the HTML source. Use your browser's <SPAN
1346 > option for this. Or right click on the ad, and grab the
1349 > Let's try an example, <A
1350 HREF="http://google.com"
1354 and look at it one section at a time:</P
1364 > Matches for http://google.com:
1366 --- File standard ---
1367 (no matches in this file)
1369 --- File default ---
1371 { -add-header -block +deanimate-gifs{last} -downgrade-http-version +fast-redirects
1372 -filter{popups} -filter{fun} -filter{shockwave-flash} -filter{crude-parental}
1373 +filter{html-annoyances} +filter{js-annoyances} +filter{content-cookies}
1374 +filter{webbugs} +filter{refresh-tags} +filter{nimda} +filter{banners-by-size}
1375 +hide-forwarded-for-headers +hide-from-header{block} +hide-referer{forge}
1376 -hide-user-agent -handle-as-image +set-image-blocker{pattern} -limit-connect
1377 +prevent-compression +session-cookies-only -crunch-outgoing-cookies
1378 -crunch-incoming-cookies -kill-popups -send-vanilla-wafer -send-wafer }
1381 { -session-cookies-only }
1388 (no matches in this file) </PRE
1394 > This tells us how we have defined our
1396 HREF="actions-file.html#ACTIONS"
1402 which ones match for our example, <SPAN
1405 >. The first listing
1406 is any matches for the <TT
1408 >standard.action</TT
1413 >. Then next is <SPAN
1420 > file. The large, multi-line listing,
1421 is how the actions are set to match for all URLs, i.e. our default settings.
1422 If you look at your <SPAN
1425 > file, this would be the section
1426 just below the <SPAN
1429 > section near the top. This will apply to
1430 all URLs as signified by the single forward slash at the end of the listing
1436 > But we can define additional actions that would be exceptions to these general
1437 rules, and then list specific URLs (or patterns) that these exceptions would
1438 apply to. Last match wins. Just below this then are two explicit matches for
1441 >".google.com"</SPAN
1442 >. The first is negating our previous cookie setting,
1444 HREF="actions-file.html#SESSION-COOKIES-ONLY"
1447 >"+session-cookies-only"</SPAN
1450 (i.e. not persistent). So we will allow persistent cookies for google. The
1456 HREF="actions-file.html#FAST-REDIRECTS"
1459 >"+fast-redirects"</SPAN
1462 action, allowing this to take place unmolested. Note that there is a leading
1465 >".google.com"</SPAN
1466 >. This will match any hosts and
1467 sub-domains, in the google.com domain also, such as
1470 >"www.google.com"</SPAN
1471 >. So, apparently, we have these two actions
1472 defined somewhere in the lower part of our <TT
1479 > is referenced somewhere in these latter
1485 > file, we again have no hits.</P
1487 > And finally we pull it all together in the bottom section and summarize how
1491 > is applying all its <SPAN
1508 > Final results:
1509 -add-header -block +deanimate-gifs{last} -downgrade-http-version -fast-redirects
1510 -filter{popups} -filter{fun} -filter{shockwave-flash} -filter{crude-parental}
1511 +filter{html-annoyances} +filter{js-annoyances} +filter{content-cookies}
1512 +filter{webbugs} +filter{refresh-tags} +filter{nimda} +filter{banners-by-size}
1513 +hide-forwarded-for-headers +hide-from-header{block} +hide-referer{forge}
1514 -hide-user-agent -handle-as-image +set-image-blocker{pattern} -limit-connect
1515 +prevent-compression -session-cookies-only -crunch-outgoing-cookies
1516 -crunch-incoming-cookies -kill-popups -send-vanilla-wafer -send-wafer</PRE
1522 > Notice the only difference here to the previous listing, is to
1525 >"fast-redirects"</SPAN
1528 >"session-cookies-only"</SPAN
1531 > Now another example, <SPAN
1533 >"ad.doubleclick.net"</SPAN
1544 > { +block +handle-as-image }
1547 { +block +handle-as-image }
1550 { +block +handle-as-image }
1551 .doubleclick.net</PRE
1557 > We'll just show the interesting part here, the explicit matches. It is
1558 matched three different times. Each as an <SPAN
1560 >"+block +handle-as-image"</SPAN
1562 which is the expanded form of one of our aliases that had been defined as:
1565 >"+imageblock"</SPAN
1567 HREF="actions-file.html#ALIASES"
1573 the first section of the actions file and typically used to combine more
1574 than one action.)</P
1576 > Any one of these would have done the trick and blocked this as an unwanted
1577 image. This is unnecessarily redundant since the last case effectively
1578 would also cover the first. No point in taking chances with these guys
1579 though ;-) Note that if you want an ad or obnoxious
1580 URL to be invisible, it should be defined as <SPAN
1582 >"ad.doubleclick.net"</SPAN
1584 is done here -- as both a <A
1585 HREF="actions-file.html#BLOCK"
1596 HREF="actions-file.html#HANDLE-AS-IMAGE"
1599 >"+handle-as-image"</SPAN
1602 The custom alias <SPAN
1604 >"+imageblock"</SPAN
1605 > just simplifies the process and make
1606 it more readable.</P
1608 > One last example. Let's try <SPAN
1610 >"http://www.rhapsodyk.net/adsl/HOWTO/"</SPAN
1612 This one is giving us problems. We are getting a blank page. Hmmm...</P
1622 > Matches for http://www.rhapsodyk.net/adsl/HOWTO/:
1624 { -add-header -block +deanimate-gifs -downgrade-http-version +fast-redirects
1625 +filter{html-annoyances} +filter{js-annoyances} +filter{kill-popups}
1626 +filter{webbugs} +filter{nimda} +filter{banners-by-size} +filter{hal}
1627 +filter{fun} +hide-forwarded-for-headers +hide-from-header{block}
1628 +hide-referer{forge} -hide-user-agent -handle-as-image +set-image-blocker{blank}
1629 +prevent-compression +session-cookies-only -crunch-incoming-cookies
1630 -crunch-outgoing-cookies +kill-popups -send-vanilla-wafer -send-wafer }
1633 { +block +handle-as-image }
1647 we did not want this at all! Now we see why we get the blank page. We could
1648 now add a new action below this that explicitly does <I
1659 various ways to handle such exceptions. Example:</P
1676 > Now the page displays ;-) Be sure to flush your browser's caches when
1677 making such changes. Or, try using <TT
1682 > But now what about a situation where we get no explicit matches like
1693 > { +block +handle-as-image }
1700 > That actually was very telling and pointed us quickly to where the problem
1701 was. If you don't get this kind of match, then it means one of the default
1702 rules in the first section is causing the problem. This would require some
1703 guesswork, and maybe a little trial and error to isolate the offending rule.
1704 One likely cause would be one of the <SPAN
1708 adding the URL for the site to one of aliases that turn off <SPAN
1723 .worldpay.com # for quietpc.com
1741 >"{ -filter -session-cookies-only }"</SPAN
1743 Or you could do your own exception to negate filtering: </P
1760 > This would probably be most appropriately put in <TT
1764 for local site exceptions.</P
1769 > is an alias that disables most actions. This can be
1770 used as a last resort for problem sites. Remember to flush caches! If this
1771 still does not work, you will have to go through the remaining actions one by
1772 one to find which one(s) is causing the problem.</P
projects / privoxy.git / blob