[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Update (#4) for "user.actions" template

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Update (#4) for "user.actions" template
From: Anothony Georgeo <anogeorgeo@xxxxxxxxx>
Date: Wed, 24 May 2006 12:20:11 -0700 (PDT)
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Wed, 24 May 2006 15:20:14 -0400
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=d3Ah5RDsJ6wvKBvEYbvKqUonV3oweLb5RgYDZ2CSRpiGNzDjwrwtFpiJKZvN9nHtI6vImBVgcFLPaMH3JMvYb2e5IV9kY9iuE0j+Lmua/yPBe14VBA/dhG1s2BekpnOYlcMHUguvmtLz/ontpS2yHqfecorZxmtFFMPnGfUNS0o= ;
In-reply-to: <20060523023238.6905.qmail@web37805.mail.mud.yahoo.com>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Update #4;

This update to the user.actions file is the same one I
posted as a possible starting point for a offical Tor
Privoxy HTTPS configuration at
<http://archives.seul.org/or/talk/May-2006/msg00366.html>

This breaks Tor users into two anonymity sets due to
the header "compress" and HTTP vs. HTTPS: 

The first uses Tor/Privoxy/HTTP (Privoxy is scrubbing
'compress')

The second uses Tor/Privoxy/HTTPS (Privoxy isn't
srubbing 'compress')


Here is the updated Privoxy "user.actions" settings
that mirror those of the template.

Note: 
The "User-Agent" line should not be wrapped.

If you are using the FF hacks to scrub HTTPS then you
may want to comment out the paramiters:
{ limit-connect }

---

# This setting blocks "HTTP CONNECT" attempts via. 
# HTTPS (eg. SSl).
#  
# This setting prevents Privoxy from forwarding HTTPS 
# which it can not filter.
#
{ +limit-connect{-1} } 
/

# This setting is for URLS (eg. web-sites) you trust 
# and wish to access with an HTTPS (eg. SSL) 
# connection.  
#
# This setting will over-ride the previous 
# "{ +limit-connect{-1} }" setting, 
# thus allowing access to pre-selected and trusted 
# HTTPS URL's.
#
# I included the HTTPS (SSL) URLs for the 'EFF' and 
# for 'Yahoo' web-mail as working examples.  
#
# CAUTION: When you access an HTTPS URL listed 
# below you are preventing Privoxy from filtering 
# your "Environmental Variables", web-bugs, etc 
# while visiting that site.
#          
# Filtration is suggested and use of these URLs 
# will dimish your anonymity.
#         
{ +limit-connect{443} } 
*.eff.org/
*mail.yahoo.com/
*login.yahoo.com/


{ allow-all-cookies }
/

{ +filter{html-annoyances} }
/

{ +filter{img-reorder} }
/

{ +filter{banners-by-size} }
/

{ +filter{banners-by-link} }
/

{ +filter{js-annoyances} } 
/

{ +filter{demoronizer} }
/

{ +filter{unsolicited-popups} }
/

{ +filter{webbugs} }
/

{ +filter{jumping-windows} }
/

{ +filter{ie-exploits} }
/

{ +fast-redirects }
/

{ +hide-user-agent{Mozilla/5.0 (Windows; U; Windows NT
5.1; en; rv:1.7.10) Gecko/20050716 Firefox/1.0.5} }
/

{ +hide-referer{forge} }
/

{ +prevent-compression }
/


__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com

References:
- Update (#3) for "user.actions" template
  - From: Anothony Georgeo

Prev by Author: Update (#1) for Privoxy "user.actions" (Was: Re: Privoxy "user.actions" template for HTTP/S (Was: Re: Easy Firefox hacks to improve anonymity...)
Next by Author: Re: Some legal trouble with TOR in France
Previous by thread: Update (#3) for "user.actions" template
Next by thread: Re: Threats to anonymity set at and above the application layer; HTTP headers
Index(es):
- Author
- Thread