X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=default.action.master;h=21a584364fbc7410f9b4eba6706e9eb73bc06c8e;hp=efb406f0eba70aaa090a282d856795680689a904;hb=4e1aa4a9c01464807e7033e9d47387f6d6bda7e7;hpb=eab47478044c68287658fcbd5d9be688bbcba880 diff --git a/default.action.master b/default.action.master index efb406f0..21a58436 100644 --- a/default.action.master +++ b/default.action.master @@ -1,25 +1,29 @@ -#MASTER# COMMENT: -#MASTER# COMMENT: Anyone adding specific rules to this file, -#MASTER# COMMENT: wherever possible please include a *full* URL -#MASTER# COMMENT: which can be used to verify the problem, and if -#MASTER# COMMENT: the problem may not always be fully obvious, a -#MASTER# COMMENT: brief explanation. Thanks. -#MASTER# COMMENT: +#MASTER# COMMENT: +#MASTER# COMMENT: Anyone adding specific rules to this file, +#MASTER# COMMENT: wherever possible please include a *full* URL +#MASTER# COMMENT: which can be used to verify the problem, and if +#MASTER# COMMENT: the problem may not always be fully obvious, a +#MASTER# COMMENT: brief explanation. Please also add tests for +#MASTER# COMMENT: Privoxy-Regression-Test so we can automatically +#MASTER# COMMENT: verify that your rules are effective. Thanks. +#MASTER# COMMENT: ###################################################################### -# +# # File : $Source: /cvsroot/ijbswa/current/default.action.master,v $ -# -# $Id: default.action.master,v 1.145 2008/08/29 14:24:45 fabiankeil Exp $ # -# Requires : This version requires Privoxy v3.0.9 or later due to +# $Id: default.action.master,v 1.181 2009/06/28 12:41:29 fabiankeil Exp $ +# +# Requires : This version requires Privoxy v3.0.11 or later due to # syntax changes. # # Purpose : Default actions file, see # http://www.privoxy.org/user-manual/actions-file.html. -# This file is subject to periodic updating. Local exceptions -# and enhancements are better placed in user.action. +# This file is subject to periodic updating. It is +# not supposed to be edited by the user. Local exceptions +# and enhancements are better placed in user.action, +# the match-all section has been moved to match-all.action. # -# Copyright : Written by and Copyright (C) 2001-2008 the +# Copyright : Written by and Copyright (C) 2001-2009 the # Privoxy team. http://www.privoxy.org/ # # Note: Updated versions of this file will be made available from time @@ -30,14 +34,14 @@ # # We value your feedback. However, to provide you with the best support, # please note: -# +# # * Use the support forum to get help: # http://sourceforge.net/tracker/?group_id=11118&atid=211118 -# * Submit feedback for this actions file only through the -# SF actions file feedback tracker: +# * Submit feedback for this actions file only through the +# SF actions file feedback tracker: # http://sourceforge.net/tracker/?group_id=11118&atid=460288 # * Submit bugs only through our bug forum: -# http://sourceforge.net/tracker/?group_id=11118&atid=111118 +# http://sourceforge.net/tracker/?group_id=11118&atid=111118 # Make sure that the bug has not already been submitted. Please try # to verify that it is a Privoxy bug, and not a browser or site # bug first. If you are using your own custom configuration, please @@ -45,22 +49,22 @@ # related bug. And if possible please try the latest CVS sources. # * Submit feature requests only through our feature request forum: # http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse -# +# # For any other issues, feel free to use the mailing lists: # http://sourceforge.net/mail/?group_id=11118 -# +# # Anyone interested in actively participating in development and related # discussions can join the appropriate mailing list here: # http://sourceforge.net/mail/?group_id=11118. Archives are available -# here too. +# here too. # -# The current development version of this file is located: +# The current development version of this file is located: # http://ijbswa.cvs.sourceforge.net/*checkout*/ijbswa/current/default.action.master -# +# ############################################################################# # Syntax ############################################################################# -# +# # A much better explanation can be found in the user manual which is # part of the distribution and can be found at http://www.privoxy.org/user-manual # @@ -75,7 +79,7 @@ ############################################################################# # Pattern Syntax ############################################################################# -# +# # 1. On Domains and Paths # ----------------------- # @@ -83,77 +87,77 @@ # and part are optional. The pattern matching syntax is different for # each. If you only specify a domain part, the "/" can be left out, but it is # required for the path part. -# -# www.example.com +# +# www.example.com # is a domain-only pattern and will match any request to www.example.com -# +# # www.example.com/ # means exactly the same (but is slightly less efficient) -# +# # www.example.com/index.html # matches only the document /index.html on www.example.com -# +# # /index.html # matches the document /index.html, regardless of the domain -# +# # index.html # matches nothing, since it would be interpreted as a domain name and # there is no top-level domain called ".html". -# +# # 2. Domain Syntax # ---------------- -# +# # The matching of the domain part offers some flexible options: If the # domain starts or ends with a dot, it becomes unanchored at that end: -# +# # www.example.com # matches only www.example.com -# +# # .example.com # matches any domain that ENDS in .example.com -# +# # www. # matches any domain that STARTS with www. # # .example. # matches any domain that CONTAINS example # -# +# # Additionally, there are wildcards that you can use in the domain names # themselves. They work pretty similar to shell wildcards: "*" stands for # zero or more arbitrary characters, "?" stands for one, and you can define # character classes in square brackets and they can be freely mixed: -# +# # ad*.example.com # matches adserver.example.com, ads.example.com, etc but not sfads.example.com -# +# # *ad*.example.com # matches all of the above -# +# # .?pix.com # matches www.ipix.com, pictures.epix.com, a.b.c.d.e.upix.com etc -# +# # www[1-9a-ez].example.com -# matches www1.example.com, www4.example.com, wwwd.example.com, +# matches www1.example.com, www4.example.com, wwwd.example.com, # wwwz.example.com etc, but not wwww.example.com -# +# # You get the idea? -# +# # 2. Path Syntax # -------------- -# +# # Paths are specified as full regular expressions, and are more flexible than # the domain syntax above. A comprehensive discussion of regular expressions # wouldn't fit here. -# +# # Perl compatible regular expressions are used. See the pcre/docs/ direcory or # man perlre (also available at http://perldoc.perl.org/perlre.html) for # details. The appendix to our User Manual also has some detail. -# +# # Please note that matching in the path is CASE INSENSITIVE by default, but # you can switch to case sensitive by starting the pattern with the "(?-i)" # switch: -# +# # www.example.com/(?-i)PaTtErN.* # will match only documents whose path starts with PaTtErN in exactly this # capitalization. @@ -161,7 +165,7 @@ # Partially case-sensitive and partially case-insensitive patterns are # possible, but the rules about splitting them up are extremely complex # - see the PCRE documentation for more information. -# +# ############################################################################# # Action Syntax ############################################################################# @@ -184,7 +188,7 @@ # The default (if you don't specify anything in this file) is not to take # any actions - i.e completely disabled, so Privoxy will just be a # normal, non-blocking, non-anonymizing proxy. You must specifically -# enable the privacy and blocking features you need (although the +# enable the privacy and blocking features you need (although the # provided default actions file will do that for you). # # Later actions always override earlier ones. For multi-valued actions, @@ -239,21 +243,21 @@ # download menus will not pop up, or changes the browser's rendering mode. # # +crunch-client-header{string} -# Deletes every header sent by the client that contains the string the -# user supplied as parameter. -# +# Deletes every header sent by the client that contains the string the +# user supplied as parameter. +# # +crunch-if-none-match -# Deletes the "If-None-Match:" HTTP client header. +# Deletes the "If-None-Match:" HTTP client header. # # +crunch-server-header{string} -# Deletes every header sent by the server that contains the string the -# user supplied as a parameter. -# +# Deletes every header sent by the server that contains the string the +# user supplied as a parameter. +# # +deanimate-gifs{last} # +deanimate-gifs{first} # Deanimate all animated GIF images, i.e. reduce them to their last # frame. This will also shrink the images considerably. (In bytes, -# not pixels!) +# not pixels!) # If the option "first" is given, the first frame of the animation # is used as the replacement. If "last" is given, the last frame of # the animation is used instead, which propably makes more sense for @@ -270,7 +274,7 @@ # Many sites, like yahoo.com, don't just link to other sites. # Instead, they will link to some script on their own server, # giving the destination as a parameter, which will then redirect -# you to the final target. +# you to the final target. # # URLs resulting from this scheme typically look like: # http://some.place/some_script?http://some.where-else @@ -282,8 +286,8 @@ # time is wasted, while your browser asks the server for one redirect # after the other. Plus, it feeds the advertisers. # -# The +fast-redirects{check-decoded-url} option enables interception of -# these requests by Privoxy, who will cut off all but the last valid URL +# The +fast-redirects{check-decoded-url} option enables interception of +# these requests by Privoxy, who will cut off all but the last valid URL # in the request and send a local redirect back to your browser without # contacting the intermediate sites. NOTE: Syntax change as of v.3.0.4. # @@ -296,7 +300,7 @@ # filtering works only on the raw document content itself (that which can # be seen with View Source), not the headers. Repeat for multiple filters. # Use with caution: filters can be very intrusive. -# +# # Filters predefined in the supplied default.filter include: # # js-annoyances: Get rid of particularly annoying JavaScript abuse. @@ -327,8 +331,8 @@ # blogspot: Cleans up some Blogspot blogs. Read the fine print before using this. # # +force-text-mode -# Declares a document as plain text, even if the "Content-Type:" isn't detected -# as such. +# Declares a document as plain text, even if the "Content-Type:" isn't detected +# as such. # # +forward-override{forward .} # +forward-override{forward 127.0.0.1:8123} @@ -336,7 +340,7 @@ # +forward-override{forward-socks4a 127.0.0.1:9050 proxy.example.org:8000} # +forward-override{forward-socks5 127.0.0.1:9050 .} # +forward-override{forward-socks5 127.0.0.1:9050 proxy.example.org:8000} -# This action overrules the forward directives in the configuration file. +# This action overrules the forward directives in the configuration file. # # +handle-as-empty-document # This action alone doesn't do anything noticeable. It just marks URLs. If @@ -356,22 +360,19 @@ # # +hide-content-disposition{block} # +hide-content-disposition{string} -# Deletes or replaces the "Content-Disposition:" HTTP header set by some -# servers. This can be used to prevent download menus for content you +# Deletes or replaces the "Content-Disposition:" HTTP header set by some +# servers. This can be used to prevent download menus for content you # prefer to view inside the browser, for example. # -# +hide-forwarded-for-headers -# Block any existing X-Forwarded-for header. -# # +hide-from-header{block} # +hide-from-header{spam@sittingduck.xqq} -# If the browser sends a "From:" header containing your e-mail address, +# If the browser sends a "From:" header containing your e-mail address, # either completely removes the header ("block"), or change it to the # specified e-mail address. # # +hide-if-modified-since{block} # +hide-if-modified-since{-60} -# Deletes the "If-Modified-Since:" HTTP client header or modifies its +# Deletes the "If-Modified-Since:" HTTP client header or modifies its # value, preventing another way to track users. # # +hide-referer{block} @@ -384,8 +385,8 @@ # # +hide-referrer{...} # Alternative spelling of +hide-referer. Has the same parameters, -# and can be freely mixed with, "+hide-referer". ("referrer" is the -# correct English spelling, however the HTTP specification has a +# and can be freely mixed with, "+hide-referer". ("referrer" is the +# correct English spelling, however the HTTP specification has a # bug - it requires it to be spelt "referer"). # # +hide-user-agent{browser-type} @@ -398,22 +399,24 @@ # (Don't change the version number from 1.0 - after all, why tell them?) # # +limit-connect{portlist} -# The CONNECT methods exists in HTTP to allow access to secure websites -# (https:// URLs) through proxies. It works very simply: The proxy -# connects to the server on the specified port, and then short-circuits -# its connections to the client and to the remote proxy. -# This can be a big security hole, since CONNECT-enabled proxies can -# be abused as TCP relays very easily. -# By default, i.e. in the absence of a +limit-connect action, Privoxy -# will only allow CONNECT requests to port 443, which is the standard port -# for https. -# If you want to allow CONNECT for more ports than that, or want to forbid -# CONNECT altogether, you can specify a comma separated list of ports and port -# ranges (the latter using dashes, with the minimum defaulting to 0 and max to 65K): -# -# +limit-connect{443} # This is the default and need no be specified. -# +limit-connect{80,443} # Ports 80 and 443 are OK. -# +limit-connect{-3, 7, 20-100, 500-} # Port less than 3, 7, 20 to 100, and above 500 are OK. +# +# By default, i.e. if no limit-connect action applies, Privoxy +# allows HTTP CONNECT requests to all ports. Use limit-connect +# if fine-grained control is desired for some or all destinations. +# The CONNECT methods exists in HTTP to allow access to secure websites +# ("https://" URLs) through proxies. It works very simply: the proxy +# connects to the server on the specified port, and then short-circuits +# its connections to the client and to the remote server. This means +# CONNECT-enabled proxies can be used as TCP relays very easily. Privoxy +# relays HTTPS traffic without seeing the decoded content. Websites can +# leverage this limitation to circumvent Privoxy's filters. By specifying +# an invalid port range you can disable HTTPS entirely. +# +# +limit-connect{443} # Only port 443 is OK. +# +limit-connect{80,443} # Ports 80 and 443 are OK. +# +limit-connect{-3, 7, 20-100, 500-} # Ports less than 3, 7, 20 to 100 and above 500 are OK. +# +limit-connect{-} # All ports are OK +# +limit-connect{,} # No HTTPS/SSL traffic is allowed # # +overwrite-last-modified{block} # +overwrite-last-modified{reset-to-request-time} @@ -431,8 +434,8 @@ # # "reset-to-request-time" overwrites the value of the "Last-Modified:" # header with the current time. You could use this option together with -# hided-if-modified-since to further customize your random range. -# +# hide-if-modified-since to further customize your random range. +# # +prevent-compression # Prevent the website from compressing the data. Some websites do # that, which is a problem for Privoxy when built without zlib support, @@ -457,7 +460,7 @@ # is used as a tag. Server-header taggers are executed before all other # header actions that modify server headers. Their tags can be used to # control all of the other server-header actions, the content filters and -# the crunch actions (redirect and block). +# the crunch actions (redirect and block). # # Server-header taggers predefined in the supplied default.filter include: # @@ -505,7 +508,7 @@ {{settings}} ############################################################################# #MASTER# COMMENT: The minimum Privoxy version: -for-privoxy-version=3.0.9 +for-privoxy-version=3.0.11 ############################################################################# # Aliases @@ -523,18 +526,18 @@ for-privoxy-version=3.0.9 # # Alias names are not case sensitive. # -# Aliases beginning with '+' or '-' may be used for system action names -# in future releases - so try to avoid alias names like this. (e.g. +# Aliases beginning with '+' or '-' may be used for system action names +# in future releases - so try to avoid alias names like this. (e.g. # "+crunch-all-cookies" below is not a good name) # # Aliases must be defined before they are used. -# +# # These aliases just save typing later: # +crunch-all-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies -crunch-all-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies - allow-all-cookies = -crunch-all-cookies -session-cookies-only + allow-all-cookies = -crunch-all-cookies -session-cookies-only allow-popups = -filter{all-popups} -filter{unsolicited-popups} +block-as-image = +block{Blocked image request.} +handle-as-image -block-as-image = -block @@ -554,15 +557,75 @@ myfilters = +filter{html-annoyances} +filter{js-annoyances} +filter{all-popups # allow-ads = -block -filter{banners-by-size} -filter{banners-by-link} -############################################################################# -# Defaults -############################################################################# +################ +# +# Cautious settings -- safe for all sites, but offer little privacy protection +# { \ +change-x-forwarded-for{block} \ +hide-from-header{block} \ +set-image-blocker{pattern} \ } -/ # Match all URLs +standard.Cautious + +################ +# +# Medium settings -- safe for most sites, with reasonable protection/damage tradeoff +# +{ \ ++change-x-forwarded-for{block} \ ++deanimate-gifs{last} \ ++filter{refresh-tags} \ ++filter{img-reorder} \ ++filter{banners-by-size} \ ++filter{webbugs} \ ++filter{jumping-windows} \ ++filter{ie-exploits} \ ++hide-from-header{block} \ ++hide-referrer{conditional-block} \ ++session-cookies-only \ ++set-image-blocker{pattern} \ +} +standard.Medium + +################ +# +# Advanced settings -- reasonable privacy protection but +# require some exceptions for trusted sites, most likely +# because of cookies or SSL. Also testing ground for +# new options. +# +# CAUTION: These settings can still be subverted by a +# misconfigured client that executes code from untrusted +# sources. +# +{ \ ++change-x-forwarded-for{block} \ ++client-header-tagger{css-requests} \ ++client-header-tagger{image-requests} \ ++crunch-if-none-match \ ++crunch-outgoing-cookies \ ++crunch-incoming-cookies \ ++deanimate-gifs{last} \ ++fast-redirects{check-decoded-url} \ ++filter{html-annoyances} \ ++filter{content-cookies} \ ++filter{refresh-tags} \ ++filter{img-reorder} \ ++filter{banners-by-size} \ ++filter{banners-by-link} \ ++filter{webbugs} \ ++filter{jumping-windows} \ ++filter{frameset-borders} \ ++filter{quicktime-kioskmode} \ ++hide-if-modified-since{-60} \ ++hide-from-header{block} \ ++hide-referrer{conditional-block} \ ++limit-connect{,} \ ++overwrite-last-modified{randomize} \ ++set-image-blocker{pattern} \ +} +standard.Advanced ############################################################################# # These extensions belong to images: @@ -654,7 +717,7 @@ support./(.*/)?track .uni-*.de .tu-*.de .gov -.hs-*.de +.hs-*.de .fh-*.de #MASTER# REMARKS: Try to avoid harmless names in non-commercial organizations. Added 10/24/06 # URL = http://www.gnu.org/graphics/gnu-head-banner.png @@ -677,11 +740,24 @@ support./(.*/)?track ############################################################################# # Site-specific block patterns; ############################################################################# +{+block{Domain parking site}} +#MASTER# BLOCK-REFERRER: http://www.inetcat.org +# Blocked URL = http://www.sedoparking.com/www.inetcat.org +.sedoparking.com/ +# Blocked URL = http://landing.trafficz.com/index.php?domain=www.inetcat.org +landing.trafficz.com/ +# Blocked URL = http://www.searchnut.com/?domain=www.inetcat.org +.searchnut.com/\?domain +#MASTER# REMARKS: Verizon should know better +#MASTER# BLOCK-REFERRER: http://www.qwetyhjkl.com +# Blocked URL = http://wwwz.websearch.verizon.net/search?qo=www.qwetyhjkl.com +wwwz.websearch.verizon.net/search\?qo= + {+block{Site-specific block pattern matches.}} #MASTER# BLOCK-REFERRER: http://www.brooksbrothers.com/ 10/18/06 #MASTER# BLOCK-REFERRER: http://www.autodesk.com/ # Blocked URL = http://www.hitbox.com/foobar -.hitbox.com +.hitbox.com #MASTER# BLOCK-REFERRER: http://www.the-gadgeteer.com/palmos.html 10/18/06 # Blocked URL = http://www..the-gadgeteer.com/cgi-bin/getimage.cgi/ .the-gadgeteer.com/cgi-bin/getimage.cgi/ @@ -701,7 +777,7 @@ rcm.amazon.com #MASTER# BLOCK-REFERRER: http://www.sharereactor.com/ 10/19/06 #MASTER# BLOCK-REFERRER: http://www.popupad.net/ #www.popupad.net/ats/ -.adtrak.net +.adtrak.net .elitemediagroup.net .popuptraffic.com #MASTER# BLOCK-REFERRER: http://www.famousbabes.com/gabrielleR/grpics1.htm 10/19/06 @@ -820,6 +896,13 @@ static.lycos-europe.net #MASTER# BLOCK-REFERRER: http://www.networkworld.com/resourcelibrary/?tid=4&type=special%20report # Blocked URL = http://clk.atdmt.com/ .atdmt.com/ +#MASTER# REMARKS: Actionsfile feedback item #2723873 2009-04-01 +#MASTER# BLOCK-REFERRER: http://www.news.software.coop/paralysed-perl-package-problem/602/ +# Blocked URL = http://www.awin1.com/cread.php?s=123049&v=1983&q=80970&r=79561 +.awin1.com +#MASTER# BLOCK-REFERRER: http://crooksandliars.com/ +# Blocked URL = http://rotator.adjuggler.com/servlet/ajrotator/616245/0/vh?z=csm&dim=616028 +.adjuggler.com/servlet/ajrotator/ #---------------------------------------------------------------------------- @@ -909,6 +992,8 @@ stats.reinvigorate.net/ #MASTER# COMMENT: user tracking, and assorted 'junk' #MASTER# BLOCK-REFERRER: http://infoworld.com 2007-11-12 .quantserve.com +# Blocked URL = http://media.adrevolver.com/adrevolver/trace?sip=123&cpy=123 +media.adrevolver.com/ #---------------------------------------------------------------------------- # JavaScripts and Texts for ad and popup generation @@ -943,6 +1028,14 @@ js.adsonar. #MASTER# REMARKS: Actionsfile feedback item #1736879 2007-06-13, sponsored links. 2007-08-02, more hosts using this scheme, broadening scope. #bwp.zdnet. bwp. +# Blocked URL = http://us.mc123.mail.yahoo.com/mc/stampNonJs +.yahoo.com/mc/stampNonJs +# Blocked URL = http://richmedia.yimg.com/js/123/personnals_banners/PER_happy_sara1_4_425x600/ad.js?q=123 +/.*/ad\.js\? +# Blocked URL = http://i.cmpnet.com/shared/omniture/s_code_remote.js +#MASTER# BLOCK-REFERRER: http://www.informationweek.de/ +/.*omniture.*\.js + ############################################################################# # Generic block-as-image patterns: @@ -973,6 +1066,8 @@ bwp. # Blocked URL = http://icons-aa.wunderground.com/ads/images/TripAdvisor-Blinky.gif # URL = http://icons-aa.wunderground.com/ads/images/TripAdvisor-Blinky.gif /(.*/)?ads/images/ +# Blocked URL = http://ad.yieldmanager.com/st?ad_type=iframe&ad_size=728x90&site=123§ion_code=123 +/.*\?ad_(type|size)= ############################################################################# # Site-specific block-as-image patterns: @@ -985,7 +1080,7 @@ bwp. #MASTER# COMMENT: There are at least ar.atwola and pr.atwola. 10/01/06 # Blocked URL = http://ar.atwola.com/ # Blocked URL = http://pr.atwola.com/ -?r.atwola.com +?r.atwola.com #MASTER# BLOCK-REFERRER: http://www.altavista.com/ #MASTER# BLOCK-REFERRER: http://www.tecchannel.de/ #MASTER# BLOCK-REFERRER: http://www.whowhere.lycos.com/ @@ -1011,7 +1106,7 @@ bs*.einets.com #MASTER# REMARKS: (Actionsfile feedback item #1888197) [abd-vx-z]*.atdmt.com/ #MASTER# BLOCK-REFERRER: http://www.exactaudiocopy.de/ 09/11/06 -#MASTER# BLOCK-REFERRER: http://stanford.facebook.com/home.php +#MASTER# BLOCK-REFERRER: http://stanford.facebook.com/home.php # URL = http://www.fastclick.net/ .fastclick.net #MASTER# BLOCK-REFERRER: http://www.math.com/school/subject2/lessons/S2U3L6DP.html 09/11/06 @@ -1036,7 +1131,7 @@ a.tribalfusion.com/ #MASTER# REMARKS: Pointdexter .ru4.com/ #MASTER# BLOCK-REFERRER: http://www.boursorama.com/infos/actualites/detail_actu_marches.phtml?news=1510287 -www.smartadserver.com/ +.smartadserver.com/ #MASTER# BLOCK-REFERRER: http://www.chez.tiscali.fr/ 10/07/06 admedia. #MASTER# REMARKS: Bannerfarm used by Morpheus file sharing software @@ -1087,7 +1182,7 @@ matrix.mediavantage. #MASTER# BLOCK-REFERRER: http://groups.yahoo.com/group/louisianaandmardigra/messages/1?viscount=100 .belnk.com .euros4click. -#MASTER# BLOCK-REFERRER: http://www.planet3dnow.de/cgi-bin/newspub/viewnews.cgi?id=1129904195 +#MASTER# BLOCK-REFERRER: http://www.planet3dnow.de/cgi-bin/newspub/viewnews.cgi?id=1129904195 ads-*.quarterserver. #MASTER# BLOCK-REFERRER: http://adrian.adrian.org/ 10/07/06 searchportal.information.com/ @@ -1112,6 +1207,20 @@ img.directtrack.com #MASTER# BLOCK-REFERRER: http://www.thinkbroadband.com/news/3621-complaint-about-orange-broadband-advertising-upheld.html # URL = http://eas.apm.emediate.eu/media.5/1/1228/19193/ACT1215_120x600_v3.gif .emediate.eu/ +# URL = http://feedads.googleadservices.com/~a/dPlpGU767u4D4kVO8EGuUlnf1Q0/i +# URL = http://feedads.googleadservices.com/~at/EpX-FnAXxwdaBSq-GRze37-rG0M/i +.googleadservices.com/~ +#MASTER# REMARKS: Block yahoo email & ygroups banner ad +# URL = http://ts.richmedia.yahoo.com/...hummingbird.jpg?adxq=NNN +.richmedia.yahoo.com/.*\.(gif|jpe?g)\?ad +# Blocked URL = http://this.content.served.by.adshuffle.com/p/a=/view.pxl +.served.by.adshuffle.com/ +# Blocked URL = http://newsletter.adsonar.com/nwrss/imgs/nwr_123.PNG?placementId=123&plid=123&rotation=1&type=2&&url=NA +.adsonar.com/.*/imgs/ +# Blocked URL = http://rtb.pclick.yahoo.com/images/nojs.gif?p=3 +.pclick.yahoo.com/images/ +# Blocked URL = http://rover.ebay.com/ar/1/2/3?mpt=123&adtype=1&size=728x90 +/.*\&adtype= #---------------------------------------------------------------------------- # Cross-site user tracking @@ -1140,7 +1249,7 @@ log*.hit-parade.com/ www.xml.eshop.msn.com/tracksponsorimpression.asp #MASTER# BLOCK-REFERRER: http://www.planetgamecube.com/ 10/07/06 .imrworldwide.com -#MASTER# REMARKS: Actionsfile feedback 1555719 09/10/06, and Debian Bug report +#MASTER# REMARKS: Actionsfile feedback 1555719 09/10/06, and Debian Bug report #MASTER# BLOCK-REFERRER: http://www.nrc.nl/ 09/12/06 .clicktracks.com #MASTER# REMARK: Actionsfile tracker 1159072 09/12/06 @@ -1171,7 +1280,7 @@ stats.indextools.com tra*.measuremap.com .eurekster.com/sidebar tra*.mybloglog.com -#MASTER# BLOCK-REFERRER: http://www.polymervision.com/ +#MASTER# BLOCK-REFERRER: http://www.polymervision.com/ #MASTER# REMARKS: Actionsfile feedback item #1629370 01/16/07 .guesttrace. #MASTER# BLOCK-REFERRER: http://dictionary.com @@ -1196,6 +1305,8 @@ rss.slashdot.org/~r/Slashdot/slashdot/~4/ # Blocked URL = http://feeds.feedburner.com/~r/PCLoadLetter/~4/270448381 #MASTER# REMAKRKS: This seem to be a common pattern for web bugs in feedburner feeds. feeds.feedburner.com/~r/.*/~4/ +# Blocked URL = http://feedproxy.google.com/~r/DilbertDailyStrip/~4/y_kXD1z1HO0 +feedproxy.google.com/~r/.*/~4/ # Blocked URL = http://feeds.feedburner.com/~a/DilbertDailyStrip?a=Ebzxel #MASTER# REMAKRKS: This looks like a pattern as well, maybe we should block feeds.feedburner.com/~a/ here. feeds.feedburner.com/~a/DilbertDailyStrip\? @@ -1260,7 +1371,7 @@ smartad.*.*.* #MASTER# REMARKS: Actionsfile feedback item #1764161 2007-07-31 #MASTER# BLOCK-REFERRER: http://www.webster.com/dictionary/revering .google.com/afsonline - + ############################################################################# # Site-specific unblockers: ############################################################################# @@ -1404,11 +1515,11 @@ adbusters.org/ #MASTER# REMARKS: New home? http://adiumx.cachefly.net/Adium_1.0.5.dmg adium*.*. #MASTER# UNBLOCK-REFERRER: http://google.com 10/01/06 -#MASTER# REMARKS: This allows many (but not all) Google "Sponsored Links" to function. +#MASTER# REMARKS: This allows many (but not all) Google "Sponsored Links" to function. #MASTER# REMARKS: Presumably if someone clicks these they want to go there. .googleadservices./pagead/adclick #MASTER# UNBLOCK-REFERRER: http://www.garaget.org -#MASTER# REMARKS: These are "ads" from individuals selling cars per tracker. 10/06/06 +#MASTER# REMARKS: These are "ads" from individuals selling cars per tracker. 10/06/06 .garaget.org/annonser/ #MASTER# UNBLOCK-REFERRER: http://www.macworld.com/ 10/07/06 #MASTER# REMARKS: Without the unblock, the page layout is horribly broken 10/08/06 @@ -1419,7 +1530,7 @@ edge.macworld.com #MASTER# UNBLOCK-REFERRER: http://dawn.com #MASTER# REMARKS: SF Actionsfile tracker 10/19/06. These images are not ads. .dawn.com/.*/(9690dina|aurora_award)\. -#MASTER# UNBLOCK-REFERRER: http://google.com/reader/ +#MASTER# UNBLOCK-REFERRER: http://google.com/reader/ #MASTER# REMARKS: Initial page does not load, per Support request 10/27/06 .google.com/reader/ #MASTER# REMARKS: Actionsfile Tracker 1587079 10/30/06 @@ -1464,6 +1575,9 @@ switch.atdmt.com/action/ .wikimedia.org/ # URL = http://en.wikipedia.org/wiki/Advertisement .wikipedia.org/ +#MASTER# REMARKS Actionsfile feedback item #2299717 2008-11-16 +# URL = http://en.wiktionary.org/wiki/advertisement +.wiktionary.org/ # URL = http://curl.haxx.se/docs/adv_20070710.html .haxx.se/docs/adv_ # URL = http://www.google.com/adsense/ @@ -1495,6 +1609,45 @@ fritz.box/ #MASTER# REMARKS: Actionsfile feedback item #2043327 2008-08-08 # URL = http://kb.adobe.com/selfservice/viewContent.do?externalId=kb402747&sliceId=1 .adobe.com +# URL = http://qa.debian.org/popcon.php +qa.debian.org/popcon\.php +#MASTER# REMARKS: Support Requests item #2432535 2008-12-16 +# URL = http://www.mta.info/bandt/traffic/advmain.htm +.mta.info/.*advmain.htm$ +#MASTER# REMARKS: We also use this as a light character class test, therefore the additional URL directives. +# URL = http://www.proaurum.de/bannerA2/image/pro_master_r3_01_04.gif +# URL = http://www.proaurum.de/bannerA1/image/limitorder2.gif +# URL = http://www.proaurum.de/bannerA3/image/pro_master_r5_banken_01_01+.gif +# URL = http://www.proaurum.de/bannerB2/image/pro_banner_mitte.gif +# URL = http://www.proaurum.de/bannerB1_/image/pro_banner_links.gif +# URL = http://www.proaurum.de/bannerC1/image/partner1.png +.proaurum.de/banner[ABC]\d_?/ +# URL = http://www.goldmoney.com/en/images/home/banner_r4_c1.gif +.goldmoney.com/ +#MASTER# REMARKS: Actionsfile feedback item #2017126 2008-07-13 +#MASTER# REMARKS: The dutch newspaper site of Algemeen Dagblad (http://www.ad.nl) is blocked +# URL = http://www.ad.nl/ +.ad.nl/ +#MASTER# REMARKS: yahoo groups self-promotion - and the page is uglier without it +# URL = http://us.i1.yimg.com/us.yimg.com/i/yg/img/ads/bestofygroups.jpg +.yimg.com/.*/ads/bestofygroups.jpg$ +#MASTER# REMARKS: NYT home page is messed up because .css files are blocked +#MASTER# UNBLOCK-REFERRER: http://www.nytimes.com/ +# URL = http://graphics8.nytimes.com/css/0.1/screen/common/ads.css +# URL = http://graphics8.nytimes.com/css/0.1/screen/homepage/ads.css +.nytimes.com/.*/ads\.css$ +#MASTER# REMARKS: All hosted videos seemingly require this file. +#MASTER# UNBLOCK-REFERRER: http://www.cnn.com/video/#/video/showbiz/2009/04/14/dcl.boyle.british.talent.show.cnn +# URL = http://i.cdn.turner.com/cnn/.element/js/2.0/video/xmp/AdServiceAdapter.swf +.turner.com/cnn/.*/AdServiceAdapter.swf +#MASTER# REMARKS: Tracker 2786745 : MySpace music player doesn't work +#MASTER# UNBLOCK-REFERRER: www.myspace.com/bandofskulls +# URL = http://lads.myspacecdn.com/videos/musicPlayerAssets.swf +lads.myspacecdn.com/ +#MASTER# REMARKS: AF#2789653 iTunes download blocked +# URL = http://a957.phobos.apple.com/us/r1000/000/Music/ad/47/56/mzi.gnjsyarh.aac.a.m4p +.phobos.apple.com/ + ############################################################################# # Site-specific special rules: @@ -1584,7 +1737,7 @@ i.cnn.net/cnn/.*/clickability/button #---------------------------------------------------------------------------- #MASTER# REMARKS: This section NOT checked 10/13/06 HB {-fast-redirects} -# Sticky Actions = -fast-redirects +# Sticky Actions = -fast-redirects www.ukc.ac.uk/cgi-bin/wac\.cgi\? #MASTER# PROBLEM-URL: http://www.google.com/search?q=foo .google. @@ -1662,6 +1815,14 @@ view.samurajdata.se/ps\.php\?url= #MASTER# REMARKS: While this is a redirect, the token isn't part of the URL redirected to. # URL = http://www.amazon.com/gp/redirect.html/ref=cm_plog_item_link/105-3659773-0844420?ie=UTF8&location=http%3A%2F%2Fjoltawards.com%2F2007%2F&token=A07736D870C02EF10CB13BCC8A33C302F689BBBA .amazon.com/gp/redirect.html/.*location.*&token +# URL = http://en.groundspring.org/EmailNow/pub.php?module=WebSignup&cmd=thankyou&gotoUrl=http%3A%2F%2Fwww.freebsdfoundation.org&gotoText=Return+to+Home+Page&listNames=The+FreeBSD+Foundation+Mailing+List +.groundspring.org/ +# URL = http://www1.landsend.de/pp/undefined/images/error.gif?onerr=true&ts=1227969386837&file=http%3A//s7.landsend.com/is-viewers/dhtml/include/sj_textloader.js%3Fver%3Dle.1&line=0&msg=Script%20error.&sid= +.landsend.de/ +# URL = http://www.youtube.com/swf/l.swf?swf=http%3A//s.ytimg.com/yt/swf/cps-vfl68942.swf&video_id=2cpd6rHIfyA&rel=1&showsearch=1&eurl=&iurl=http%3A//i3.ytimg.com/vi/2cpd6rHIfyA/hqdefault.jpg&sk=5E3I2RCcOLknk1qyI_JgVVnb8FKwgpHzC&use_get_video_info=1&load_modules=1&fs=1&hl=en +.youtube.com/swf/.*swf= +# URL = http://redbot.org/?uri=http%3A//apache.org/ +.redbot.org/ #---------------------------------------------------------------------------- # No filtering for sourcecode or other automatically parsed content @@ -1703,6 +1864,9 @@ webmail. .wiki*. .*wiki. /.*wiki/ +#MASTER# REMARKS Actionsfile feedback item #2299717 2008-11-16 +# URL = http://en.wiktionary.org/ +.wiktionary.org/ #MASTER# REMARKS: protect some google projects from accidental JS/HTML tampering, etc maps.google. .google.com/(calendar|reader) @@ -1801,6 +1965,8 @@ javabog.dk/ijk/ .froscon.de/ # URL = http://www.fsfe.org/en/supporters .fsfe.org/ +# URL = http://www.couchsurfing.com/mapsurf.html +.couchsurfing.com/ {-filter{banners-by-link}} # Sticky Actions = -filter{banners-by-link} @@ -1815,9 +1981,6 @@ javabog.dk/ijk/ #MASTER# REMARKS: This section NOT checked 10/18/06 HB #MASTER# REMARKS: These are movie clips, linked from http://us.imdb.com .totaleclips.com -#MASTER# REMARKS: Link to download page breaks -# URL = http://www.mandrakelinux.com/en/ftp.php3 -.mandrakelinux.com/en/ftp.php3 #MASTER# REMARKS: Actions Tracker 1313157 # URL = http://validator.w3.org/check?uri=referer validator.w3.org/check\?uri=referer @@ -1920,7 +2083,7 @@ schneegans.de/sv/\?url=referer .nasa.gov #MASTER# REMARKS: Exclude per Debian bug report #377843 # URL = http://www2.cnrs.fr/presse/communique/900.htm -.cnrs.fr +.cnrs.fr #MASTER# REMARKS: Exclude per Debian bug report #377843 # URL = http://blogs.msdn.com/wga/archive/2006/07/16/667063.aspx blogs.msdn.com @@ -1931,7 +2094,7 @@ blogs.msdn.com /.*mt.cgi$ #MASTER# REMARKS: Exclude per Debian bug report #377843 09/17/06 # URL = http://www2.cnrs.fr/presse/communique/900.htm -.cnrs.fr +.cnrs.fr #MASTER# REMARKS: Exclude per Debian bug report #377843 09/17/06 # URL = http://blogs.msdn.com/wga/archive/2006/07/16/667063.aspx blogs.msdn.com @@ -1945,7 +2108,7 @@ rds.yahoo.com/ #MASTER# COMMENTS: Verified 2007-01-19 fk #MASTER# REDIRECT-REFERRER: http://www.gamefaqs.com/computer/doswin/game/914819.html # URL = http://dw.com.com/redir?asid=0&astid=8&siteid=19&edid=107&destCat=33862&destURL=http%3A%2F%2Fdb.gamefaqs.com%2Fcomputer%2Fdoswin%2Ffile%2Fvampire_tmb_b.txt -dw.com.com/ +dw.com.com/redir\? #MASTER# REMARKS: Action tracker 1593393. Added 2007-01-20. # URL = http://wzus.bloglines.com/r?t=a&d=us&s=bl&c=blen&ti=1&ai=51060&l=dir&o=0&sv=z6f537f5b&ip=971AC44B&u=http%3A%2F%2Fwww.skweezer.net%2Fbloglines%2Fskweeze.aspx%3F%26i%3Dd%26l%3Den%26r%3Dhttp%253A%252F%252Fwww.bloglines.com%252Fmyblogs_display%253Fsub%253D29302699%2526site%253D5382440%26url%3Dhttp%253A%252F%252Fpermalink.gmane.org%252Fgmane.linux.debian.devel.changes.unstable%252F97340 .bloglines.com/r\? @@ -1981,7 +2144,7 @@ www.skweezer.net/bloglines # URL = http://www.privoxy.org/config .privoxy.org/config -#MASTER# REMARKS: Privoxy's "unsafe" CGI pages check the referrer +#MASTER# REMARKS: Privoxy's "unsafe" CGI pages check the referrer #MASTER# REMARKS: to make sure the user reached them intentionally. #MASTER# REMARKS: Disabling hide-referrer so there's a referrer left to check. #MASTER# REMARKS: Disabling fast-redirects because if CGI crunching gets