X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=doc%2Fwebserver%2Fman-page%2Fprivoxy-man-page.html;h=bed7a128950ef02a1d80a6c392aec18d75ec25a4;hp=c874d0bd1d18536a790046e1c387703f18002486;hb=ae6beecce49ef10b169c4b843580985430bc698b;hpb=32afa0f9b900e01f035940d8fd344f7869894d5c diff --git a/doc/webserver/man-page/privoxy-man-page.html b/doc/webserver/man-page/privoxy-man-page.html index c874d0bd..bed7a128 100644 --- a/doc/webserver/man-page/privoxy-man-page.html +++ b/doc/webserver/man-page/privoxy-man-page.html @@ -2,7 +2,7 @@ Manpage of PRIVOXY

PRIVOXY

-Section: (1)
Updated: 14 May 2002
Index +Section: (1)
Updated: 21 September 2006
Index

@@ -13,10 +13,7 @@ privoxy - Privacy Enhancing Proxy

SYNOPSIS

-privoxy [--help] [--version] [--no-daemon] [--pidfile pidfile] [--user user[.group]] [configfile] (UNIX) -

-privoxy.exe [configfile] (Windows) +privoxy [--help ] [--version ] [--no-daemon ] [--pidfile pidfile ] [--user user[.group] ] [--chroot ] [configfile ]

OPTIONS

@@ -36,7 +33,7 @@ leader, don't detach from controlling tty, and do all logging there.

--pidfile pidfile

On startup, write the process ID to pidfile. Delete the pidfile on exit. -Failiure to create or delete the pidfile +Failure to create or delete the pidfile is non-fatal. If no --pidfile option is given, no PID file will be used.

--user user[.group]

After (optionally) writing the PID file, assume the user ID of @@ -45,13 +42,19 @@ After (optionally) writing the PID file, assume the user ID of group was not given, the default group of user. Exit if the privileges are not sufficient to do so. +

--chroot

+Before changing to the user ID given in the --user option, chroot to +that user's home directory, i.e. make the kernel pretend to the +Privoxy process that the directory tree starts +there. If set up carefully, this can limit the impact of possible +vulnerabilities in Privoxy to the files contained in +that hierarchy.

If the configfile is not specified on the command line, Privoxy will look for a file named -config in the current directory (except on Win32 where -it will try config.txt). If no +config in the current directory . If no configfile is found, Privoxy will fail to start. @@ -59,17 +62,18 @@ fail to start.

-Privoxy is a web proxy with advanced filtering -capabilities for protecting privacy, filtering web page content, managing -cookies, controlling access, and removing ads, banners, pop-ups and other -obnoxious Internet junk. Privoxy has a very -flexible configuration and can be customized to suit individual needs and -tastes. Privoxy has application for both -stand-alone systems and multi-user networks. +Privoxy is a +web proxy +with advanced filtering capabilities for protecting +privacy, modifying web page data, managing +cookies, +controlling access, and removing ads, banners, pop-ups and other obnoxious +Internet junk. Privoxy has a very flexible configuration and can be +customized to suit individual needs and tastes. Privoxy has application for +both stand-alone systems and multi-user networks.

-Privoxy is based on Internet -Junkbuster (tm). +Privoxy is based on Internet Junkbuster (tm).

INSTALLATION AND USAGE

@@ -84,13 +88,22 @@ and Mozilla, go through: Edit; View.

+For Firefox, go through: Tools; +Options; General; +Connection Settings; +Manual Proxy Configuration. +

+ For Internet Explorer, go through: Tools; Internet Properties; Connections; LAN Settings.

The Secure (SSL) Proxy should also be set to the same values, otherwise -https: URLs will not be proxied. +https: URLs will not be proxied. Note: Privoxy can only +proxy HTTP and HTTPS traffic. Do not try it with FTP or other protocols. +HTTPS presents some limitations, and not all features will work with HTTPS +connections.

For other browsers, check the documentation. @@ -104,25 +117,31 @@ files. The default configuration files are: config, default.filter, and default.action. user.action should be used for locally defined exceptions to the default rules of -default.action These are all well commented. On Unix +default.action, and user.filter for +locally defined filters. These are well commented. On Unix and Unix-like systems, these are located in -/etc/privoxy/ by default. On Windows, OS/2 and AmigaOS, -these files are in the same directory as the Privoxy -executable. +/etc/privoxy/ by default.

-The name and number of configuration files has changed from previous -versions, and is subject to change as development progresses. In fact, the -configuration itself is changed and much more sophisticated. See the -user-manual for a -complete explanation of all configuration options and general usage. +Privoxy uses the concept of actions +in order to manipulate the data stream between the browser and remote sites. +There are various actions available with specific functions for such things +as blocking web sites, managing cookies, etc. These actions can be invoked +individually or combined, and used against individual URLs, or groups of URLs +that can be defined using wildcards and regular expressions. The result is +that the user has greatly enhanced control and freedom.

The actions list (ad blocks, etc) can also be configured with your -web browser at http://config.privoxy.org/. +web browser at http://config.privoxy.org/. Privoxy's configuration parameters can also be viewed at the same page. In addition, Privoxy can be toggled on/off. -This is an internal page. +This is an internal page, and does not require Internet access. +

+ +See the User Manual for a detailed +explanation of installation, general usage, all configuration options, new +features and notes on upgrading.

SAMPLE CONFIGURATION

@@ -135,59 +154,98 @@ configuration might look like: # Define a few useful custom aliases for later use {{alias}} - # Useful aliases + # Useful aliases that combine more than one action +crunch-cookies = +crunch-incoming-cookies +crunch-outgoing-cookies -crunch-cookies = -crunch-incoming-cookies -crunch-outgoing-cookies - +imageblock = +block +handle-as-image + +block-as-image = +block +handle-as-image # Fragile sites should have the minimum changes fragile = -block -deanimate-gifs -fast-redirects -filter \ -hide-referer -prevent-cookies -kill-popups ## Turn some actions on ################################ - { \ - -add-header \ - -block \ - +deanimate-gifs{last} \ - -downgrade-http-version \ - -fast-redirects \ - +filter{html-annoyances} \ - +filter{js-annoyances} \ - +filter{content-cookies} \ - +filter{webbugs} \ - +filter{banners-by-size} \ - +hide-forwarded-for-headers \ - +hide-from-header{block} \ - +hide-referrer{forge} \ - -hide-user-agent \ - -handle-as-image \ - +set-image-blocker{pattern} \ - -limit-connect \ - +prevent-compression \ - +session-cookies-only \ - -crunch-cookies \ - -kill-popups \ - } - / # '/' Matches *all* URL patterns + ## NOTE: Actions are off by default, unless explictily turned on + ## otherwise with the '+' operator. + +{ \ +-add-header \ +-block \ +-content-type-overwrite \ +-crunch-client-header \ +-crunch-if-none-match \ +-crunch-outgoing-cookies \ +-crunch-incoming-cookies \ +-crunch-server-header \ ++deanimate-gifs{last} \ +-downgrade-http-version \ +-fast-redirects \ +-filter{js-annoyances} \ +-filter{js-events} \ +-filter{html-annoyances} \ +-filter{content-cookies} \ ++filter{refresh-tags} \ +-filter{unsolicited-popups} \ +-filter{all-popups} \ ++filter{img-reorder} \ ++filter{banners-by-size} \ +-filter{banners-by-link} \ ++filter{webbugs} \ +-filter{tiny-textforms} \ ++filter{jumping-windows} \ +-filter{frameset-borders} \ +-filter{demoronizer} \ +-filter{shockwave-flash} \ +-filter{quicktime-kioskmode} \ +-filter{fun} \ +-filter{crude-parental} \ ++filter{ie-exploits} \ +-filter{site-specifics} \ +-filter-client-headers \ +-filter-server-headers \ +-force-text-mode \ +-handle-as-empty-document +-handle-as-image \ +-hide-accept-language \ +-hide-content-disposition \ +-hide-if-modified-since \ ++hide-forwarded-for-headers \ ++hide-from-header{block} \ ++hide-referrer{forge} \ +-hide-user-agent \ +-inspect-jpegs \ +-kill-popups \ +-limit-connect \ +-overwrite-last-modified \ +-redirect \ ++prevent-compression \ +-send-vanilla-wafer \ +-send-wafer \ ++session-cookies-only \ ++set-image-blocker{pattern} \ +-treat-forbidden-connects-like-blocks \ +} +/ # '/' Match *all* URL patterns + # Block, and treat these URL patterns as if they were 'images'. # We would expect these to be ads. - {+imageblock} + { +block-as-image } .ad.doubleclick.net .a[0-9].yimg.com/(?:(?!/i/).)*$ ad.*.doubleclick.net - # Block any URLs that match these patterns - {+block} + # Block all URLs that match these patterns + { +block } ad*. .*ads. banner?. /.*count(er)?\.(pl|cgi|exe|dll|asp|php[34]?) .hitbox.com + media./.*(ads|banner) # Make exceptions for these harmless ones that would be # caught by our +block patterns just above. - {-block} + { -block } adsl. advice. .*downloads. @@ -207,22 +265,27 @@ narrowly defined exceptions: # Set personal exceptions to the policies in default.action ####### - # Sites where we want persistant cookies, so allow *all* cookies - {-crunch-cookies -session-cookies-only} + # Sites where we want persistent cookies, so allow *all* cookies + { -crunch-cookies -session-cookies-only } .redhat.com .sun.com .msdn.microsoft.com - # This site breaks easily. - {-block -fast-redirects} + # These sites breaks easily. Use our "fragile" alias here. + { fragile } .forbes.com + mybank.example.com + + # Replace example.com's style sheet with one of my choosing + { +redirect{http://localhost/css-replacements/example.com.css} } + example.com/stylesheet.css

See the comments in the configuration files themselves, or the -user-manual -for explanations of the above syntax, and other Privoxy +User Manual +for full explanations of the above syntax, and other Privoxy configuration options.

FILES

@@ -236,6 +299,7 @@ configuration options. /etc/privoxy/standard.action /etc/privoxy/user.action /etc/privoxy/default.filter + /etc/privoxy/user.filter /etc/privoxy/trust /etc/privoxy/templates/* /var/log/privoxy/logfile @@ -244,7 +308,7 @@ configuration options.

Various other files should be included, but may vary depending on platform -and build configuration. More documentation should be included in the local +and build configuration. Additional documentation should be included in the local documentation directory.

SIGNALS

@@ -263,12 +327,12 @@ automatically.

-This is a beta version of Privoxy. Not +This is a BETA version of Privoxy. Not all features are well tested.

-Please see the user-manual on how to contact the -developers for feature requests, reporting problems, and other questions. +Please see the User Manual on how to contact the +developers, for feature requests, reporting problems, and other questions.

DEVELOPMENT TEAM

- Jon Foster
- Andreas Oesterhelt
- Stefan Waldherr
- Thomas Steudten
- Rodney Stromlund
- Rodrigo Barbosa (RPM specfiles)
- Hal Burgiss (docs)
- Alexander Lazic
- Gábor Lipták
- Guy
- Haroon Rafique
- David Schmidt (OS/2, Mac OSX ports)
- Joerg Strohmayer
- Sarantis Paskalis
+ Fabian Keil, developer
+ David Schmidt, developer
+ 
+ Hal Burgiss
+ Ian Cummings
+ Félix Rauch
+ Roland Rosenfeld

@@ -329,7 +400,7 @@ may work in some situations where the first does not.

Some source code is based on code Copyright (C) 1997 by Anonymous Coders @@ -350,14 +421,14 @@ This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for -more details, which is available from the Free Software Foundation, Inc, 59 -Temple Place - Suite 330, Boston, MA 02111-1307, USA. +more details, which is available from the Free Software Foundation, Inc, +51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA

You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software -Foundation, Inc. 59 Temple Place - Suite 330 -Boston, MA 02111-1307 +Foundation, Inc. 51 Franklin Street, Fifth Floor +Boston, MA 02110-1301 USA

@@ -386,6 +457,6 @@ USA This document was created by man2html, using the manual pages.
-Time: 00:10:58 GMT, May 15, 2002 +Time: 01:21:32 GMT, September 22, 2006