X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=doc%2Fsource%2Fp-config.sgml;h=f41ec0760bdc3b01bf931923240b7427b4d37094;hp=8a337839f758854e59dfc6b0382e9f7a9d587f58;hb=706c8ab535b696ab96adbb76c17f8c94ffb56163;hpb=c83713758e9465e03ec3b0228c433e6f2d843352 diff --git a/doc/source/p-config.sgml b/doc/source/p-config.sgml index 8a337839..f41ec076 100644 --- a/doc/source/p-config.sgml +++ b/doc/source/p-config.sgml @@ -107,7 +107,7 @@ Copyright (C) 2001-2020 Privoxy Developers https://www.privoxy.org/ 4. ACCESS CONTROL AND SECURITY # 5. FORWARDING # 6. MISCELLANEOUS # - 7. TLS # + 7. HTTPS INSPECTION (EXPERIMENTAL) # 8. WINDOWS GUI OPTIONS # # ################################################################## @@ -1018,7 +1018,7 @@ actionsfile debug 1 # Log the destination for each request. See also debug 1024. debug 2 # show each connection status - debug 4 # show I/O status + debug 4 # show tagging-related messages debug 8 # show header parsing debug 16 # log all data written to the network debug 32 # debug force feature @@ -1269,7 +1269,7 @@ actionsfile They can only be used if Privoxy has been compiled with IPv6 support. If you aren't sure if your version supports it, have a look at - http://config.privoxy.org/show-status. + http://config.privoxy.org/show-status. Some operating systems will prefer IPv6 to IPv4 addresses even if the @@ -3900,8 +3900,16 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t - -TLS/SSL Inspection (Experimental) + +HTTPS Inspection (Experimental) + + + HTTPS inspection allows to filter encrypted requests. + This is only supported when Privoxy + has been built with FEATURE_HTTPS_INSPECTION. + If you aren't sure if your version supports it, have a look at + http://config.privoxy.org/show-status. + @@ -4018,7 +4026,7 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t The file can be generated with: - openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.crt -days 3650 + openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.crt -days 3650 @@ -4074,9 +4082,9 @@ forward-socks4, forward-socks4a, forward-socks5 and forward-socks5t Notes: - This directive specifies the name of the CA key file - in ".pem" format. See the ca-cert-file - for a command to generate it. + This directive specifies the name of the CA key file in ".pem" format. + The ca-cert-file section contains + a command to generate it. @@ -4353,7 +4361,7 @@ ECDHE-RSA-AES256-GCM-SHA384:\ AES128-SHA - # Use keywords instead of explicity naming the ciphers (Does not work with MbedTLS) + # Use keywords instead of explicitly naming the ciphers (Does not work with MbedTLS) cipher-list ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH @@ -4406,7 +4414,9 @@ AES128-SHA An example file can be downloaded from - https://curl.haxx.se/ca/cacert.pem. + https://curl.se/ca/cacert.pem. + If you want to create the file yourself, please see: + https://curl.se/docs/caextract.html.