<!entity history SYSTEM "history.sgml">
<!entity copyright SYSTEM "copyright.sgml">
<!entity license SYSTEM "license.sgml">
-<!entity p-version "3.0.25">
-<!entity p-status "beta">
-<!entity % p-not-stable "INCLUDE">
-<!entity % p-stable "IGNORE">
+<!entity p-version "3.0.32">
+<!entity p-status "stable">
+<!entity % p-not-stable "IGNORE">
+<!entity % p-stable "INCLUDE">
<!entity % p-text "IGNORE"> <!-- define we are not a text only doc -->
<!entity % p-doc "INCLUDE"> <!-- and we are a formal doc -->
<!entity % p-supp-userman "INCLUDE"> <!-- Include all from supported.sgml -->
<!entity my-app "<application>Privoxy</application>">
]>
<!--
- File : $Source: /cvsroot/ijbswa/current/doc/source/faq.sgml,v $
+ File : doc/source/faq.sgml
Purpose : FAQ
- This file belongs into
- ijbswa.sourceforge.net:/home/groups/i/ij/ijbswa/htdocs/
- $Id: faq.sgml,v 2.126 2016/07/26 10:45:39 fabiankeil Exp $
-
- Copyright (C) 2001-2014 Privoxy Developers https://www.privoxy.org/
+ Copyright (C) 2001-2020 Privoxy Developers https://www.privoxy.org/
See LICENSE.
Based partially on the Internet Junkbuster FAQ originally written by and
<subscript>
<!-- Completely the wrong markup, but very little is allowed -->
<!-- in this part of an article. FIXME -->
- <link linkend="copyright">Copyright</link> &my-copy; 2001-2014 by
+ <link linkend="copyright">Copyright</link> &my-copy; 2001-2020 by
<ulink url="https://www.privoxy.org/">Privoxy Developers</ulink>
</subscript>
</pubdate>
-<pubdate>$Id: faq.sgml,v 2.126 2016/07/26 10:45:39 fabiankeil Exp $</pubdate>
-
<!--
Note: this should generate a separate page, and a live link to it.
<ulink url="https://www.privoxy.org/">Privoxy</ulink>.
It is not a substitute for the
<ulink url="../user-manual/index.html"><citetitle>Privoxy User Manual</citetitle></ulink>.
-<!--
- This works, at least in some situtations:
- Test: <ulink url="privoxy-user-manual.pdf"><citetitle>User Manual</citetitle></ulink>.
--->
</para>
<!-- Include privoxy.sgml boilerplate: -->
strengths is that it is highly configurable giving you the ability to
completely personalize your installation. Being familiar with, or at least
having an interest in learning about <ulink
- url="http://en.wikipedia.org/wiki/Http">HTTP</ulink> and other networking
- protocols, <ulink url="http://en.wikipedia.org/wiki/Html">HTML</ulink>, and
- <ulink url="http://en.wikipedia.org/wiki/Regular_expressions"><quote>Regular
+ url="https://en.wikipedia.org/wiki/Http">HTTP</ulink> and other networking
+ protocols, <ulink url="https://en.wikipedia.org/wiki/Html">HTML</ulink>, and
+ <ulink url="https://en.wikipedia.org/wiki/Regular_expressions"><quote>Regular
Expressions</quote></ulink>
will be a big plus and will help you get the most out of &my-app;.
A new installation just includes a very basic configuration. The user
</para>
<para>
Much of <application>Privoxy's</application> configuration can be done
- with a <ulink url="http://en.wikipedia.org/wiki/Web_browser">Web browser</ulink>.
+ with a <ulink url="https://en.wikipedia.org/wiki/Web_browser">Web browser</ulink>.
But there are areas where configuration is done using a
- <ulink url="http://en.wikipedia.org/wiki/Text_editors">text editor</ulink>
+ <ulink url="https://en.wikipedia.org/wiki/Text_editors">text editor</ulink>
to edit configuration files. Also note that the web-based action editor
doesn't use authentication and should only be enabled in environments
where all clients with access to &my-app; listening port can be trusted.
<sect2 renderas="sect3" id="proxymoron"><title>What is a <quote>proxy</quote>? How does
Privoxy work? </title>
<para>
- A <ulink url="http://en.wikipedia.org/wiki/Proxy_server">web proxy</ulink>
+ A <ulink url="https://en.wikipedia.org/wiki/Proxy_server">web proxy</ulink>
is a service, based on a software such as &my-app;, that clients
(i.e. browsers) can use instead of connecting to web servers directly.
The clients then ask the proxy to request objects (web pages, images, movies etc)
on their behalf and to forward the data to the clients.
It is a <quote>go-between</quote>. For details, see
- <ulink url="http://en.wikipedia.org/wiki/Proxy_server">Wikipedia's proxy definition</ulink>.
+ <ulink url="https://en.wikipedia.org/wiki/Proxy_server">Wikipedia's proxy definition</ulink>.
</para>
<para>
There are many reasons to use web proxies, such as security (firewalling),
<application>Junkbuster</application> left off.
<application>Privoxy</application> still blocks ads and banners,
still manages <ulink
- url="http://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>, and still
+ url="https://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>, and still
helps protect your privacy. But, most of these features have been enhanced,
and many new ones have been added, all in the same vein.
</para>
<sect2 renderas="sect3" id="license"><title>Is there is a license or fee? What about a
warranty? Registration?</title>
<para>
- <application>Privoxy</application> is free software and licensed under the <ulink
- url="http://www.gnu.org/licenses/old-licenses/gpl-2.0.html">GNU General Public License (GPL) version 2</ulink>.
- It is free to use, copy, modify or distribute as you wish under the terms of this
- license. Please see the <link linkend="copyright">Copyright</link> section for more
- information on the license and copyright. Or the <filename>LICENSE</filename> file
- that should be included.
+ <application>Privoxy</application> is free software.
+ It is free to use, copy, modify or distribute as you wish under the terms of its
+ license.
+ Please see the <link linkend="copyright">Copyright</link> section for more
+ information on the license and copyright.
</para>
<para>
There is <emphasis>no warranty</emphasis> of any kind, expressed, implied or otherwise.
While it is partly out of date, it's still worth reading.
</para>
<para>
- Our <ulink url="http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/TODO?view=markup">TODO list</ulink>
+ Our <ulink url="https://www.privoxy.org/gitweb/?p=privoxy.git;a=blob_plain;f=TODO;hb=HEAD">TODO list</ulink>
may be of interest to you as well.
Please let us know if you want to work on one of the items listed.
</para>
<sect3 renderas="sect4" id="donate"><title>Would you like to donate?</title>
<para>
Donations are welcome. Our
- <ulink url="http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/TODO?view=markup">TODO list</ulink>
+ <ulink url="https://www.privoxy.org/gitweb/?p=privoxy.git;a=blob_plain;f=TODO;hb=HEAD">TODO list</ulink>
is rather long and being able to pay one (or more) developers to work on Privoxy
would make a huge difference, even if it was only for a couple of weeks. Donations may
also be used for Privoxy-related travel expenses (for example to attend conferences),
<para>
<application>Privoxy</application> is an associated
- project of <ulink url="http://www.spi-inc.org/">Software
+ project of <ulink url="https://www.spi-inc.org/">Software
in the Public Interest (SPI)</ulink>, which allows us to receive
- tax-deductible donations in the United States. If you want to donate through
- SPI, please use <ulink url="http://www.spi-inc.org/donations">SPI's donation page</ulink>
- to see what the options are.
-</para>
-
-<para>
- You can also donate to Privoxy using a bank account or a "Paypal" address:
-</para>
-<literallayout>
- Name on account: <ulink url="https://www.zwiebelfreunde.de/">Zwiebelfreunde e.V.</ulink>
- IBAN: DE95430609671126825604
- BIC: GENODEM1GLS
- Bank: GLS Bank
-</literallayout>
-<literallayout>
- "Paypal" address: privoxy@zwiebelfreunde.de
-</literallayout>
-<para>
- Donations made through Zwiebelfreunde e.V. are tax-deductible in Germany
- and other countries that recognize German charitable clubs. Feel free to
- use the Subject field to provide a name to be credited and a list of TODO
- list items you are interested in the most. For example: Max Mustermann: #16, #1, #14.
-</para>
-
-<para>
- Note that donations made through Zwiebelfreunde e.V. currently can't be checked
- automatically so you may not get credited right away. The credits currently
- reflect donations received before 2016-01-14.
+ tax-deductible donations in the United States.
+ You can <ulink url="https://www.spi-inc.org/projects/privoxy/">donate via Paypal</ulink>
+ and <ulink url="https://co.clickandpledge.com/advanced/default.aspx?wid=34115">Click & Pledge</ulink>.
+ For details, please have a look at
+ <ulink url="https://www.spi-inc.org/donations">SPI's general donation page</ulink>.
</para>
<para>
</para>
<variablelist>
<varlistentry>
- <term>Gold (10000 EUR/year)</term>
+ <term>Gold (12000 USD/year)</term>
<listitem>
<para>
- Logo shown at the bottom of the
+ Logo or text link shown at the bottom of the
<ulink url="https://www.privoxy.org/">Privoxy homepage</ulink>.
Logo, link and self description on the
<ulink url="https://www.privoxy.org/sponsors/">sponsor page</ulink>.
</listitem>
</varlistentry>
<varlistentry>
- <term>Silver (1000 EUR/year)</term>
+ <term>Silver (1200 USD/year)</term>
<listitem>
<para>
- Logo shown randomly at the bottom of the
+ Logo or text link shown at the bottom of the
<ulink url="https://www.privoxy.org/">Privoxy homepage</ulink>.
Logo, link and self description on the
<ulink url="https://www.privoxy.org/sponsors/">sponsor page</ulink>.
</listitem>
</varlistentry>
<varlistentry>
- <term>Bronze (500 EUR/year)</term>
+ <term>Bronze (600 USD/year)</term>
<listitem>
<para>
Logo and link on the <ulink url="https://www.privoxy.org/sponsors/">sponsor page</ulink>.
</varlistentry>
</variablelist>
<para>
- The logo sizes depend on the sponsor level.
+ The logo sizes depend on the sponsor level. Logos are served from
+ our server, no requests are made to the sponsor website unless
+ the links are being used.
+</para>
+<para>
+ Link targets are without path (<quote>https://www.example.org/</quote>
+ not <quote>https://www.example.org/seo/keyword/spam/</quote>).
</para>
<para>
The details may change over time but changes will only affect new sponsors
</para>
<para>
If you want to become a sponsor, please contact
- <ulink url="mailto:fk@fabiankeil.de">Fabian Keil</ulink>.
- New sponsors are only accepted if no developer objects.
+ <ulink url="mailto:fk@fabiankeil.de">Fabian Keil</ulink>
+ and include the link target in the mail.
+ New sponsors are only accepted if no
+ <ulink url="../user-manual/copyright.html#AUTHORS">Privoxy team</ulink>
+ member objects.
</para>
</sect2>
<ulink url="../user-manual/startup.html">the User Manual for more
details</ulink>. You should also flush your browser's memory and disk
cache to get rid of any cached junk items, and remove any stored
- <ulink url="http://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>.
-
+ <ulink url="https://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>.
</para>
</sect2>
for single URLs, whole web sites, groups or parts thereof etc. Actions can also be
grouped together and then applied to requests matching one or more patterns.
There are many possible actions that might apply to any given site. As an example,
- if you are blocking <ulink url="http://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>
+ if you are blocking <ulink url="https://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>
as one of your default actions, but need to accept cookies from a given site,
you would need to define an exception for this site in one of your actions
files, preferably in <filename>user.action</filename>.
</sect2>
-<sect2 renderas="sect3">
+<sect2 renderas="sect3" id="actionfile-differences">
<title>There are several different <quote>actions</quote> files. What are
the differences?</title>
<para>
<sect2 renderas="sect3" id="getupdates"><title>Where can I get updated Actions Files?</title>
<para>
Based on your feedback and the continuing development, updates of
- <filename>default.action</filename> will be
- made available from time to time on the <ulink
- url="https://sourceforge.net/project/showfiles.php?group_id=11118">files section</ulink> of
- our <ulink url="https://sourceforge.net/projects/ijbswa/">project page</ulink>.
+ <filename>default.action</filename> are available from
+ <ulink
+ url="https://www.privoxy.org/gitweb/?p=privoxy.git;a=blob_plain;f=default.action.master;hb=HEAD">git</ulink>.
</para>
<para>
<para>
The default configuration shouldn't impact the usability of any of these services.
It may, however, make all <ulink
- url="http://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>
+ url="https://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>
temporary, so that your browser will forget your
login credentials in between browser sessions. If you would like not to have to log
in manually each time you access those websites, simply turn off all cookie handling
for them in the <filename>user.action</filename> file. An example for yahoo might
look like:
</para>
- <para>
<screen># Allow all cookies for Yahoo login:
#
{ -<ulink url="../user-manual/actions-file.html#CRUNCH-INCOMING-COOKIES">crunch-incoming-cookies</ulink> -<ulink url="../user-manual/actions-file.html#CRUNCH-OUTGOING-COOKIES">crunch-outgoing-cookies</ulink> -<ulink url="../user-manual/actions-file.html#SESSION-COOKIES-ONLY">session-cookies-only</ulink> }
.login.yahoo.com</screen>
- </para>
<para>
These kinds of sites are often quite complex and heavy with
- <ulink url="http://en.wikipedia.org/wiki/Javascript">Javascript</ulink> and
+ <ulink url="https://en.wikipedia.org/wiki/Javascript">Javascript</ulink> and
thus <quote>fragile</quote>. So if <emphasis>still</emphasis> a problem,
we have an <ulink
url="../user-manual/actions-file.html#ALIASES">alias</ulink> just for such
sticky situations:
</para>
- <para>
<screen># Gmail is a _fragile_ site:
#
{ <literal>fragile</literal> }
# Gmail is ...
mail.google.com</screen>
- </para>
<para>
Be sure to flush your browser's caches whenever making these kinds of
changes, just to make sure the changes <quote>take</quote>.
should look like:
</para>
-<para>
<screen>
listen-address 192.168.1.1:8118</screen>
-</para>
<para>
Save the file, and restart <application>Privoxy</application>. Configure
all available interfaces:
</para>
-<para>
<screen>
listen-address :8118</screen>
-</para>
<para>
And then use <application>Privoxy's</application>
<title>Can Privoxy run as a service
on Win2K/NT/XP?</title>
<para>
-<![%p-newstuff;[
- Yes. Version 3.0.5 introduces full <application>Windows</application> service
- functionality. See <ulink url="../user-manual/installation.html#installation-pack-win">
+ Yes. Full <application>Windows</application> service
+ functionality was introduced in <application>Privoxy</application> 3.0.5.
+ See <ulink url="../user-manual/installation.html#INSTALLATION-PACK-WIN">
the <citetitle>User Manual</citetitle></ulink> for details on how to install and configure
<application>Privoxy</application> as a service.
</para>
-<para>
- Earlier ]]>3.x versions could run as a system service using <command>srvany.exe</command>.
- See the discussion at <ulink
- url="https://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118">https://sourceforge.net/tracker/?func=detail&atid=361118&aid=485617&group_id=11118</ulink>,
- for details, and a sample configuration.
-</para>
</sect2>
The whole idea of Privoxy is to modify client requests
and server responses in all sorts of ways and therefore
it's not a transparent proxy as described in
- <ulink url="http://tools.ietf.org/html/rfc2616">RFC 2616</ulink>.
+ <ulink url="https://tools.ietf.org/html/rfc2616">RFC 2616</ulink>.
</para>
<para>
However, some people say <quote>transparent proxy</quote> when they
<para>
For a good discussion of some of the issues involved (including privacy and
security issues), see
- <ulink url="https://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118">https://sourceforge.net/tracker/?func=detail&atid=211118&aid=629518&group_id=11118</ulink>.
+ <ulink url="https://sourceforge.net/p/ijbswa/support-requests/107/"
+ >https://sourceforge.net/p/ijbswa/support-requests/107/</ulink>.
</para>
</sect2>
<title>I sometimes notice cookies sneaking through. How?</title>
<para>
<ulink
- url="http://en.wikipedia.org/wiki/Browser_cookie">Cookies</ulink> can be
+ url="https://en.wikipedia.org/wiki/Browser_cookie">Cookies</ulink> can be
set in several ways. The classic method is via the
<literal>Set-Cookie</literal> HTTP header. This is straightforward, and an
easy one to manipulate, such as the &my-app; concept of
<ulink url="../user-manual/actions-file.html#SESSION-COOKIES-ONLY">session-cookies-only</ulink>.
There is also the possibility of using
- <ulink url="http://en.wikipedia.org/wiki/Javascript">Javascript</ulink> to
+ <ulink url="https://en.wikipedia.org/wiki/Javascript">Javascript</ulink> to
set cookies (&my-app; calls these <literal>content-cookies</literal>). This
is trickier because the syntax can vary widely, and thus requires a certain
amount of guesswork. It is not realistic to catch all of these short of
disabling Javascript, which would break many sites. And lastly, if the
cookies are embedded in a HTTPS/SSL secure session via Javascript, they are beyond
- <application>Privoxy's</application> reach.
+ <application>Privoxy's</application> reach unless you enable
+ <ulink url="../user-manual/actions-file.html#HTTPS-INSPECTION">https-inspection</ulink>.
</para>
<para>
All in all, &my-app; can help manage cookies in general, can help minimize
<para>
No, in fact there are many beneficial uses of
<ulink
- url="http://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>. Cookies are just a
+ url="https://en.wikipedia.org/wiki/Browser_cookie">cookies</ulink>. Cookies are just a
method that browsers can use to store data between pages, or between browser
sessions. Sometimes there is a good reason for this, and the user's life is a
bit easier as a result. But there is a long history of some websites taking
</para>
<para>
See the
- <ulink url="http://en.wikipedia.org/wiki/Browser_cookie">Wikipedia cookie
+ <ulink url="https://en.wikipedia.org/wiki/Browser_cookie">Wikipedia cookie
definition</ulink> for more.
</para>
</sect2>
To disable all cookie actions, so that cookies are allowed unrestricted,
both in and out, for <literal>example.com</literal>:
</para>
-<para>
<screen>
{ -crunch-incoming-cookies -crunch-outgoing-cookies -session-cookies-only -filter{content-cookies} }
.example.com</screen>
-</para>
<para>
Place the above in <filename>user.action</filename>. Note that some of these may
be off by default anyway, so this might be redundant, but there is no harm
can very easily over-ride <emphasis>all</emphasis> blocking with the
following very simple rule in your <filename>user.action</filename>:
</para>
- <para>
<screen>
# Unblock everybody, everywhere
{ <ulink url="../user-manual/actions-file.html#BLOCK">-block</ulink> }
/ # UN-Block *all* URLs</screen>
-</para>
<para>
Or even a more comprehensive reversing of various ad related actions:
</para>
-<para>
<screen>
# Unblock everybody, everywhere, and turn off appropriate filtering, etc
{ <ulink url="../user-manual/actions-file.html#BLOCK">-block</ulink> \
<literal>allow-popups</literal> \
}
/ # UN-Block *all* URLs and allow ads</screen>
-</para>
<para>
This last <quote>action</quote> in this compound statement,
<literal>allow-popups</literal>, is an <ulink
during upgrades. You can, however, create completely new templates,
place them in another directory and specify the alternate path in the main
<filename>config</filename>. For details, have a look at the <ulink
- url="../user-manual/config.html#templdir">templdir</ulink> option.
+ url="../user-manual/config.html#TEMPLDIR">templdir</ulink> option.
</para>
</sect2>
available as compile-time options. You should
<command>configure</command> the sources as follows:
</para>
-<para>
<screen>
./configure --disable-toggle --disable-editor --disable-force</screen>
-</para>
<para>
This will create an executable with hard-coded security features so that
&my-app; does not allow easy bypassing of blocked sites, or changing the
<ulink url="../user-manual/config.html#FORWARDING">forwarding section</ulink>
and uncomment the line:
</para>
-<para>
<screen>
# forward-socks5t / 127.0.0.1:9050 .
- </screen>
-</para>
+</screen>
<para>
Note that if you got Tor through one of the bundles, you may
have to change the port from 9050 to 9150 (or even another one).
uncomment the following forward rules, to make sure your local network is still
reachable through Privoxy:
</para>
-<para>
<screen>
# forward 192.168.*.*/ .
# forward 10.*.*.*/ .
# forward 127.*.*.*/ .
- </screen>
-</para>
+</screen>
<para>
Unencrypted connections to systems in these address ranges will
be as (un)secure as the local network is, but the alternative is
network by using their names, you will need additional exceptions
that look like this:
</para>
-<para>
<screen>
# forward localhost/ .
- </screen>
-</para>
+</screen>
<para>
Save the modified configuration file and open
<ulink url="http://config.privoxy.org/show-status">http://config.privoxy.org/show-status</ulink>
<para>
No, it does not have this ability at all. You want something like
<ulink url="http://www.squid-cache.org/">Squid</ulink> or
- <ulink url="http://www.pps.jussieu.fr/~jch/software/polipo/">Polipo</ulink> for this.
+ <ulink url="https://www.irif.fr/~jch//software/polipo/">Polipo</ulink> for this.
And, yes, before you ask, <application>Privoxy</application> can co-exist
with other kinds of proxies like <application>Squid</application>.
See the <ulink url="../user-manual/config.html#FORWARDING">forwarding
<sect2 renderas="sect3" id="ssl">
<title>How can Privoxy filter Secure (HTTPS) URLs?</title>
<para>
- Since secure HTTP connections are encrypted SSL sessions between your browser
- and the secure site, and are meant to be reliably <emphasis>secure</emphasis>,
- there is little that <application>Privoxy</application> can do but hand the raw
+ If you enable
+ <ulink url="../user-manual/actions-file.html#HTTPS-INSPECTION">https-inspection</ulink>
+ <application>Privoxy</application> will impersonate the destination
+ server and can thus filter encrypted requests and responses as well.
+</para>
+<para>
+ Without
+ <ulink url="../user-manual/actions-file.html#HTTPS-INSPECTION">https-inspection</ulink>
+ secure HTTP connections are encrypted SSL sessions between your
+ browser and the secure site, and there is little
+ that <application>Privoxy</application> can do but hand the raw
gibberish data though from one end to the other unprocessed.
</para>
<para>
</sect2>
+<sect2 renderas="sect3" id="http2">
+<title>Does Privoxy support HTTP/2?</title>
+<para>
+ Privoxy currently doesn't parse HTTP/2 but applications
+ can tunnel HTTP/2 through Privoxy if Privoxy is configured
+ to allow CONNECT requests (default) which are also used
+ for HTTPS.
+</para>
+<para>
+ Adding HTTP/2 support is on the
+ <ulink url="https://www.privoxy.org/gitweb/?p=privoxy.git;a=blob_plain;f=TODO;hb=HEAD">TODO</ulink>
+ list but currently nobody is known to work on it.
+</para>
+</sect2>
+
<sect2 renderas="sect3" id="secure">
<title>Privoxy runs as a <quote>server</quote>. How
secure is it? Do I need to take any special precautions?</title>
<title>My logs show Privoxy <quote>crunches</quote>
ads, but also its own internal CGI pages. What is a <quote>crunch</quote>?</title>
<para>
- A <quote>crunch</quote> simply means <application>Privoxy</application> intercepted
+ A <quote>crunch</quote> means <application>Privoxy</application> intercepted
<emphasis>something</emphasis>, nothing more. Often this is indeed ads or
banners, but <application>Privoxy</application> uses the same mechanism for
trapping requests for its own internal pages. For instance, a request for
your hosts list is neglected by <application>Privoxy's </application>
configuration, consider adding your list to your <filename>user.action</filename> file:
</para>
-<para>
<screen>
{ +block }
www.ad.example1.com
ad.example2.com
ads.galore.example.com
etc.example.com</screen>
-</para>
</sect2>
<sect2 renderas="sect3" id="seealso">
<para>
There are several possibilities:
</para>
-<para>
<itemizedlist>
<listitem><para>
<application>Privoxy</application> is not running. Solution: verify
try disabling or removing the firewall as a simple test.
</para></listitem>
</itemizedlist>
-</para>
</sect2>
our job a little easier. &my-app; has <quote>crunched</quote> (meaning caught
and BLOCKED) quite a few items in this example, but perhaps missed a few as well.
</para>
-<para>
<screen>
<![CDATA[
Request: www.example.com/
Request: 66.70.21.80/scripts/click.php?hid=a71b9f6504b0c5681fa5&si=Ua
]]>
</screen>
-</para>
<para>
Despite 12 out of 32 requests being blocked, the page looked, and seemed to
behave perfectly <quote>normal</quote> (minus some ads, of course).
<para>
Upgrading <application>Privoxy</application>, or going to the most recent
<filename>default.action</filename> file available from <ulink
- url="https://sourceforge.net/project/showfiles.php?group_id=11118">SourceForge</ulink>
+ url="https://www.privoxy.org/gitweb/?p=privoxy.git;a=blob_plain;f=default.action.master;hb=HEAD">git</ulink>
might be worth a try, too.
</para>
</sect2>
</title>
<para>
<application>Privoxy</application> is attempting to disable malicious
- <ulink url="http://en.wikipedia.org/wiki/Javascript">Javascript</ulink>
+ <ulink url="https://en.wikipedia.org/wiki/Javascript">Javascript</ulink>
in this case, with the <literal>unsolicited-popups</literal>
filter. <application>Privoxy</application> cannot tell very well
<quote>good</quote> code snippets from <quote>bad</quote> code snippets.
To do that, enable logging to figure out which requests get blocked by
&my-app; and add the hosts (no path patterns) to a section like this:
</para>
-<para>
<screen>
<![CDATA[
{+redirect{http://127.0.0.1:0/} -block -limit-connect}
.ivwbox.de:443/
]]>
</screen>
-</para>
<para>
Additionally you have to configure your browser to contact
<quote>127.0.0.1:0</quote> directly (instead of through &my-app;).
section, and add <quote>127.0.0.1:0</quote> in the <quote>No Proxy for:</quote>
field.
</para>
+<para>
+ You can also prevent the problem by enabling
+ <ulink url="../user-manual/actions-file.html#HTTPS-INSPECTION">https-inspection</ulink>
+ in which case Privoxy's error messages are delivered encrypted.
+</para>
</sect2>
this is not considered a Privoxy bug.
</para>
<para>
- To prevent the crashes you can rewrite your filter to use less ressources,
+ To prevent the crashes you can rewrite your filter to use less resources,
increase the relevant memory limit or recompile pcre to use less stack space.
For details please see the
- <ulink url="http://pcre.org/original/doc/html/pcrestack.html">pcrestack man page</ulink>
+ <ulink url="https://pcre.org/original/doc/html/pcrestack.html">pcrestack man page</ulink>
and the documentation of your operating system.
</para>
</sect2>
+<sect2 renderas="sect3" id="file-permissions">
+<title>What to do if editing the config file of privoxy is access denied?</title>
+<para>
+ Your userid probably isn't allowed to edit the file.
+ <!-- show how to check permissions? -->
+ On Windows you can use the windows equivalent of sudo:
+</para>
+ <screen>runas /user:administrator "notepad \privoxy\config.txt"</screen>
+
+<para>
+ or fix the file permissions:
+</para>
+<screen>C:\Privoxy>icacls config.txt
+config.txt BUILTIN\Administrators:(I)(F)
+ NT AUTHORITY\SYSTEM:(I)(F)
+ BUILTIN\Users:(I)(RX)
+ NT AUTHORITY\Authenticated Users:(I)(M)
+
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy>icacls config.txt /grant Lee:F
+processed file: config.txt
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy>icacls config.txt
+config.txt I3668\Lee:(F)
+ BUILTIN\Administrators:(I)(F)
+ NT AUTHORITY\SYSTEM:(I)(F)
+ BUILTIN\Users:(I)(RX)
+ NT AUTHORITY\Authenticated Users:(I)(M)
+
+Successfully processed 1 files; Failed processing 0 files
+
+C:\Privoxy></screen>
+
+<para>
+ or try to point-n-click your way through adjusting the file
+ permissions in windows explorer.
+</para>
+</sect2>
+
</sect1>
<!-- ~~~~~ New section ~~~~~ -->
</para>
<!-- ~~~~~ New section ~~~~~ -->
- <sect2><title>License</title>
+ <sect2 id="privoxy-license"><title>License</title>
<!-- Include copyright.sgml: -->
&license;
<!-- end copyright -->
<!-- ~ End section ~ -->
<!-- ~~~~~ New section ~~~~~ -->
- <sect2><title>History</title>
+ <sect2 id="history"><title>History</title>
<!-- Include history.sgml -->
&history;
<!-- end -->