X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=trust;h=ab5eb003f71d7b67b276fc4065f983e0eccd8c8a;hp=d68ce7e2306833774e37a81a2be7850001cb74dc;hb=08ad8304651556ba3168d4b99b5cd7ef53446ae4;hpb=4227f2dd87235443c2edc60a8f5a7ebda013da08 diff --git a/trust b/trust index d68ce7e2..ab5eb003 100644 --- a/trust +++ b/trust @@ -2,10 +2,10 @@ # # File : $Source: /cvsroot/ijbswa/current/trust,v $ # -# $Id: trust,v 1.2.2.1 2002/10/01 04:57:15 hal9 Exp $ +# $Id: trust,v 1.5 2007/02/14 17:15:36 fabiankeil Exp $ # -# Purpose : Trustfiles are an experimental feature used for -# building "whitelists" (versus the usual "blacklists" +# Purpose : Trustfiles are an experimental feature and can be used +# to build "whitelists" (versus the usual "blacklists" # techniques). # # Copyright : Written by and Copyright @@ -23,12 +23,12 @@ # * Submit bugs only thru our bug forum: # http://sourceforge.net/tracker/?group_id=11118&atid=111118 # Make sure that the bug has not already been submitted. Please try -# to verify that it is a Junkbuster bug, and not a browser or site +# to verify that it is a Privoxy bug, and not a browser or site # bug first. If you are using your own custom configuration, please # try the stock configs to see if the problem is a configuration # related bug. And if not using the latest development snapshot, # please try the latest one. Or even better, CVS sources. -# * Submit feature requests only thru our feature request forum: +# * Submit feature requests only thru our feature request tracker: # http://sourceforge.net/tracker/?atid=361118&group_id=11118&func=browse # # For any other issues, feel free to use the mailing lists: @@ -44,7 +44,7 @@ # Sample Trustfile for Privoxy # For this file to have any effect, the line in the main config file beginning -# "trustfile" must be uncommented, with the name of this file following the +# with "trustfile" must be uncommented, with the name of this file following the # word "trustfile". # Trustfiles are an experimental feature used for building "whitelists" @@ -52,24 +52,34 @@ # detail, see http://www.privoxy.org/user-manual/config.html#TRUSTFILE. # List trusted domains here. The default is to block any URL that is NOT -# referenced. Access to trusted domains, includes all paths within that -# domain. Preceding a domain with a '+' character, will designate that domain -# as a "trusted referrer", meaning any pages linked from that site will be -# allowed, and then added dynamically to this file. Thus, this builds a -# "white-list" of safe places to browse. Note this means that the file will -# grow with use! +# referenced. Access to trusted domains includes all paths within that +# domain. + +# Preceding a domain with a '+' character will designate that domain +# as a "trusted referrer", meaning any requests whose HTTP "Referer" headers +# contain an URL from that domain will be allowed, and the previously untrusted +# host will be dynamically added to this file. Thus, this builds a "white-list" +# of hosts the user is allowed to visit. + +# Note this means that the file will grow with use! + +# Also note that you can only trust referrers if you control the user's +# system and make sure that there are no programs available that allow +# to set arbitrary headers. # Preceding the domain with '~' character allows access to that domain only -# (including all paths within that domain). But does not allow access to links +# (including all paths within that domain), but does not allow access to links # to other, outside domains. Sites that are added dynamically by trusted -# referrers, will include the '~' character, as thus do not become trusted +# referrers will include the '~' character, and thus do not become trusted # referrers themselves. -# Example: to allow example.com and links that come from example.com, -# uncomment this line: +# Example: to allow example.com and to white-list domains that appear to +# be reached through links from example.com, uncomment this line: -# +example.com +# +example.com -# and comment the last line (* alone), which would unblock everything: +# The next two lines make sure that the user can access Privoxy's +# CGI pages, without automatically trusting their links. -# * +~config.privoxy.org +~p.p