1 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN""http://www.w3.org/TR/html4/loose.dtd">
5 >What's New in this Release</TITLE
8 CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
10 TITLE="Privoxy 3.0.17 User Manual"
11 HREF="index.html"><LINK
14 HREF="installation.html"><LINK
16 TITLE="Quickstart to Using Privoxy"
17 HREF="quickstart.html"><LINK
20 HREF="../p_doc.css"><META
21 HTTP-EQUIV="Content-Type"
24 <LINK REL="STYLESHEET" TYPE="text/css" HREF="p_doc.css">
36 SUMMARY="Header navigation table"
45 >Privoxy 3.0.17 User Manual</TH
53 HREF="installation.html"
67 HREF="quickstart.html"
82 >3. What's New in this Release</A
88 > is a stable release.
89 The changes since 3.0.15 beta are:</P
96 > Fixed last-chunk-detection for responses where the content was small
97 enough to be read with the body, causing Privoxy to wait for the
98 end of the content until the server closed the connection.
99 Reported by "Karsten" in #3028326.
104 > Responses with status code 204 weren't properly detected as body-less
105 like RFC2616 mandates. Like the previous bug, this caused Privoxy
106 to wait for the end of the content until the server closed the connection.
107 Fixes #3022042 and #3025553, reported by a user with no visible name.
108 Most likely also fixes a bunch of other AJAX-related problem reports
109 that got closed in the past due to insufficient information and lack
115 > Fixed an ACL bug that made it impossible to build a blacklist.
116 Usually the ACL directives are used in a whitelist, which worked
117 as expected, but blacklisting is still useful for public proxies
118 where one only needs to deny known abusers access.
123 > Added LOG_LEVEL_RECEIVED to log the not-yet-parsed data read from the
124 network. This should make debugging various parsing issues a lot easier.
129 > The IPv6 code is enabled by default on Windows versions that support it.
130 Patch submitted by oCameLo in #2942729.
135 > In mingw32 versions, the user.filter file is reachable through the
136 GUI, just like default.filter is. Feature request 3040263.
141 > Added the configure option --enable-large-file-support to set a few
142 defines that are required by platforms like GNU/Linux to support files
143 larger then 2GB. Mainly interesting for users without proper logfile
149 > Logging with "debug 16" no longer stops at the first nul byte which is
150 pretty useless. Non-printable characters are replaced with their hex value
151 so the result can't span multiple lines making parsing them harder then
157 > Privoxy logs when reading an action, filter or trust file.
162 > Fixed incorrect regression test markup which caused a test in
163 3.0.16 to fail while Privoxy itself was working correctly.
164 While Privoxy accepts hide-referer, too, the action name is actually
165 hide-referrer which is also the name used one the final results page,
166 where the test expected the alias.
171 > CGI interface improvements:
177 > In finish_http_response(), continue to add the 'Connection: close'
178 header if the client connection will not be kept alive.
179 Anonymously pointed out in #2987454.
184 > Apostrophes in block messages no longer cause parse errors
185 when the blocked page is viewed with JavaScript enabled.
186 Reported by dg1727 in #3062296.
191 > Fix a bunch of anchors that used underscores instead of dashes.
196 > Allow to keep the client connection alive after crunching the previous request.
197 Already opened server connections can be kept alive, too.
202 > In cgi_show_url_info(), don't forget to prefix URLs that only contain http:// or https:// in the path.
203 Fixes #2975765 reported by Adam Piggott.
208 > Show the 404 CGI page if cgi_send_user_manual() is called while
209 local user manual delivery is disabled.
218 > Action file improvements:
224 > Enable user.filter by default. Suggested by David White in #3001830.
229 > Block .sitestat.com/. Reported by johnd16 in #3002725.
234 > Block .atemda.com/. Reported by johnd16 in #3002723.
239 > Block js.adlink.net/. Reported by johnd16 in #3002720.
244 > Block .analytics.yahoo.com/. Reported by johnd16 in #3002713.
249 > Block sb.scorecardresearch.com, too. Reported by dg1727 in #2992652.
254 > Fix problems noticed on Yahoo mail and news pages.
259 > Remove the too broad yahoo section, only keeping the
260 fast-redirects exception as discussed on ijbswa-devel@.
265 > Don't block adesklets.sourceforge.net. Reported in #2974204.
270 > Block chartbeat ping tracking. Reported in #2975895.
275 > Tag CSS and image requests with cautious and medium settings, too.
280 > Don't handle view.atdmt.com as image. It's used for click-throughs
281 so users should be able to "go there anyway".
282 Reported by Adam Piggott in #2975927.
287 > Also let the refresh-tags filter remove invalid refresh tags where
288 the 'url=' part is missing. Anonymously reported in #2986382.
289 While at it, update the description to mention the fact that only
290 refresh tags with refresh times above 9 seconds are covered.
295 > javascript needs to be blocked with +handle-as-empty-document to
296 work around Firefox bug 492459. So move .js blockers from
297 +block{Might be a web-bug.} -handle-as-empty-document
299 +block{Might be a web-bug.} +handle-as-empty-document
304 > ijbswa-Feature Requests-3006719 - Block 160x578 Banners.
309 > Block another omniture tracking domain
314 > Added a range-requests tagger.
319 > Added two sections to get Flickr's Ajax interface working with
320 default pre-settings. If you change the configuration to block
321 cookies by default, you'll need additional exceptions.
322 Reported by Mathias Homann in #3101419 and by Patrick on ijbswa-users@
331 > Documentation improvements:
337 > Explicitly mention how to match all URLs.
342 > Consistently recommend socks5 in the Tor FAQ entry and mention
343 its advantage compared to socks4a. Reported by David in #2960129.
348 > Slightly improve the explanation of why filtering may appear
354 > Grammar fixes for the ACL section.
363 > Privoxy-Log-Parser improvements:
369 > Also gather statistics for blocked and redirected requests.
374 > Provide the percentage of keep-alive offers the client accepted.
379 > Add a --url-statistics-threshold option.
384 > Also gather statistics for ressources, methods, and HTTP versions
390 > Add a --host-statistics-threshold option to also gather
391 statistics about how many request where made per host.
396 > Fix a bug in handle_loglevel_header() where a 'scan: ' got lost.
401 > Add a --shorten-thread-ids option to replace the thread id with
407 > Accept and ignore: Looks like we got the last chunk together
408 with the server headers. We better stop reading.
413 > Accept and ignore: Continue hack in da house.
418 > Accept and higlight: Rejecting connection from 10.0.0.2.
419 Maximum number of connections reached.
424 > Accept and highlight: Loading actions file: /usr/local/etc/privoxy/default.action
429 > Accept and highlight: Loading filter file: /usr/local/etc/privoxy/default.filter
434 > Accept and highlight: Killed all-caps Host header line: HOST: bestproxydb.com
439 > Accept and highlight: Reducing expected bytes to 0. Marking
440 the server socket tainted after throwing 4 bytes away.
445 > Accept: Merged multiple header lines to: 'X-FORWARDED-PROTO: http X-HOST: 127.0.0.1'
460 > Remove the next member from the client_state struct. Only the main
461 thread needs access to all client states so give it its own struct.
466 > Garbage-collect request_contains_null_bytes().
471 > Ditch redundant code in unload_configfile().
476 > Ditch LogGetURLUnderCursor() which doesn't seem to be used anywhere.
481 > In write_socket(), remove the write-only variable write_len in
482 an ifdef __OS2__ block. Spotted by cppcheck.
487 > In connect_to(), don't declare the variable 'flags' on OS/2 where
488 it isn't used. Spotted by cppcheck.
493 > Limit the scope of various variables. Spotted by cppcheck.
498 > In add_to_iob(), turn an interestingly looking for loop into a
504 > Code cleanup in preparation for external filters.
509 > In listen_loop(), mention the socket on which we accepted the
510 connection, not just the source IP address.
515 > In write_socket(), also log the socket we're writing to.
520 > In log_error(), assert that escaped characters get logged
521 completely or not at all.
526 > In log_error(), assert that ival and sval have reasonable values.
527 There's no reason not to abort() if they don't.
532 > Remove an incorrect cgi_error_unknown() call in a
533 cannnot-happen-situation in send_crunch_response().
538 > Clean up white-space in http_response definition and
539 move the crunch_reason to the beginning.
544 > Turn http_response.reason into an enum and rename it
545 to http_response.crunch_reason.
550 > Silence a 'gcc (Debian 4.3.2-1.1) 4.3.2' warning on i686 GNU/Linux.
559 > GNUmakefile improvements:
565 > Use $(SSH) instead of ssh, so one only needs to specify a username once.
570 > Removed references to the action feedback thingy that hasn't been
576 > Consistently use shell.sourceforge.net instead of shell.sf.net so
577 one doesn't need to check server fingerprints twice.
582 > Removed GNUisms in the webserver and webactions targets so they
583 work with standard tar.
598 >3.1. Note to Upgraders</A
601 > A quick list of things to be aware of before upgrading from earlier
612 > The recommended way to upgrade <SPAN
615 > is to backup your old
616 configuration files, install the new ones, verify that <SPAN
620 is working correctly and finally merge back your changes using
630 > There are a number of new features in each <SPAN
634 most of them have to be explicitly enabled in the configuration
635 files. Old configuration files obviously don't do that and due
636 to syntax changes using old configuration files with a new
640 > isn't always possible anyway.
646 Note that some installers remove earlier versions completely,
647 including configuration files, therefore you should really save
648 any important configuration files!
654 On the other hand, other installers don't overwrite existing configuration
655 files, thinking you will want to do that yourself.
664 > has been merged into
673 > In the default configuration only fatal errors are logged now.
674 You can change that in the <A
675 HREF="config.html#DEBUG"
678 of the configuration file. You may also want to enable more verbose
679 logging until you verified that the new <SPAN
688 > Three other config file settings are now off by default:
690 HREF="config.html#ENABLE-REMOTE-TOGGLE"
691 >enable-remote-toggle</A
694 HREF="config.html#ENABLE-REMOTE-HTTP-TOGGLE"
695 >enable-remote-http-toggle</A
698 HREF="config.html#ENABLE-EDIT-ACTIONS"
699 >enable-edit-actions</A
701 If you use or want these, you will need to explicitly enable them, and
702 be aware of the security issues involved.
714 SUMMARY="Footer navigation table"
725 HREF="installation.html"
743 HREF="quickstart.html"
763 >Quickstart to Using Privoxy</TD