configuration-templates – Diff between revs 11 and 69
?pathlinks?
Rev 11 | Rev 69 | |||
---|---|---|---|---|
1 | ########################################################################### |
1 | ########################################################################### |
|
2 | ## Copyright (C) Wizardry and Steamworks 2013 - License: GNU GPLv3 ## |
2 | ## Copyright (C) Wizardry and Steamworks 2013 - License: GNU GPLv3 ## |
|
3 | ## Please see: http://www.gnu.org/licenses/gpl.html for legal details, ## |
3 | ## Please see: http://www.gnu.org/licenses/gpl.html for legal details, ## |
|
4 | ## rights of fair usage, the disclaimer and warranty conditions. ## |
4 | ## rights of fair usage, the disclaimer and warranty conditions. ## |
|
5 | ########################################################################### |
5 | ########################################################################### |
|
6 | ## Squid3 - rules to anonymize HTTP request headers. ## |
6 | ## Squid3 - rules to anonymize HTTP request headers. ## |
|
7 | ########################################################################### |
7 | ########################################################################### |
|
8 | |
8 | |
|
9 | ### Content-Types that are acceptable for the response (replace this). |
9 | ### Content-Types that are acceptable for the response (replace this). |
|
10 | request_header_access Accept deny all |
10 | request_header_access Accept deny all |
|
11 | ### Character sets that are acceptable (replace this). |
11 | ### Character sets that are acceptable (replace this). |
|
12 | request_header_access Accept-Charset deny all |
12 | request_header_access Accept-Charset deny all |
|
13 | ### List of acceptable encodings (replace this). |
13 | ### List of acceptable encodings (replace this). |
|
14 | request_header_access Accept-Encoding deny all |
14 | request_header_access Accept-Encoding deny all |
|
15 | ### List of acceptable human languages for response (replace this). |
15 | ### List of acceptable human languages for response (replace this). |
|
16 | request_header_access Accept-Language allow all |
16 | request_header_access Accept-Language allow all |
|
17 | ### Acceptable version in time |
17 | ### Acceptable version in time |
|
18 | # request_header_access Accept-Datetime allow all |
18 | # request_header_access Accept-Datetime allow all |
|
19 | request_header_access Authorization allow all |
19 | request_header_access Authorization allow all |
|
20 | # request_header_access Cache-Control allow all |
20 | # request_header_access Cache-Control allow all |
|
21 | request_header_access Connection allow all |
21 | request_header_access Connection allow all |
|
22 | ### Needed for not breaking most websites. |
22 | ### Needed for not breaking most websites. |
|
23 | request_header_access Cookie allow all |
23 | request_header_access Cookie allow all |
|
24 | request_header_access Content-Length allow all |
24 | request_header_access Content-Length allow all |
|
25 | request_header_access Content-MD5 allow all |
25 | request_header_access Content-MD5 allow all |
|
26 | request_header_access Content-Type allow all |
26 | request_header_access Content-Type allow all |
|
27 | ### The date and time that the message was sent. |
27 | ### The date and time that the message was sent. |
|
28 | # request_header_access Date allow all |
28 | # request_header_access Date allow all |
|
29 | request_header_access Expect allow all |
29 | request_header_access Expect allow all |
|
30 | ### The email address of the user making the request. |
30 | ### The email address of the user making the request. |
|
31 | # request_header_access From allow all |
31 | # request_header_access From allow all |
|
32 | request_header_access Host allow all |
32 | request_header_access Host allow all |
|
33 | request_header_access If-Match allow all |
33 | request_header_access If-Match allow all |
|
34 | request_header_access If-Modified-Since allow all |
34 | request_header_access If-Modified-Since allow all |
|
35 | request_header_access If-None-Match allow all |
35 | request_header_access If-None-Match allow all |
|
36 | request_header_access If-Range allow all |
36 | request_header_access If-Range allow all |
|
37 | request_header_access If-Unmodified-Since allow all |
37 | request_header_access If-Unmodified-Since allow all |
|
38 | ### Limit the number of times the message can be forwarded through proxies |
38 | ### Limit the number of times the message can be forwarded through proxies |
|
39 | ### or gateways. |
39 | ### or gateways. |
|
40 | # request_header_access Max-Forwards allow all |
40 | # request_header_access Max-Forwards allow all |
|
41 | ### Initiates a request for cross-origin resource sharing. |
41 | ### Initiates a request for cross-origin resource sharing (CORS). |
|
42 | # request_header_access Origin allow all |
42 | request_header_access Origin allow all |
|
43 | # request_header_access Pragma allow all |
43 | # request_header_access Pragma allow all |
|
44 | request_header_access Proxy-Authorization allow all |
44 | request_header_access Proxy-Authorization allow all |
|
45 | request_header_access Range allow all |
45 | request_header_access Range allow all |
|
46 | ### Needed in order to not break some sites using referrer checks. |
46 | ### Needed in order to not break some sites using referrer checks. |
|
47 | request_header_access Referer allow all |
47 | request_header_access Referer allow all |
|
48 | request_header_access TE allow all |
48 | request_header_access TE allow all |
|
49 | ### Replace the User-Agent string except for the domains specified in the |
49 | ### Replace the User-Agent string except for the domains specified in the |
|
50 | ### "real_user_agent" ACL. |
50 | ### "real_user_agent" ACL. |
|
51 | acl real_user_agent dstdom_regex "/etc/squid3/real_user_agent.conf" |
51 | acl real_user_agent dstdom_regex "/etc/squid3/real_user_agent.conf" |
|
52 | request_header_access User-Agent allow real_user_agent |
52 | request_header_access User-Agent allow real_user_agent |
|
53 | request_header_access User-Agent deny !real_user_agent |
53 | request_header_access User-Agent deny !real_user_agent |
|
54 | ### Ask the server to upgrade to another protocol. |
54 | ### Ask the server to upgrade to another protocol. |
|
55 | # request_header_access Upgrade allow all |
55 | # request_header_access Upgrade allow all |
|
56 | ### Informs the server of proxies through which the request was sent. |
56 | ### Informs the server of proxies through which the request was sent. |
|
57 | request_header_access Via allow all |
57 | request_header_access Via allow all |
|
58 | request_header_access Warning allow all |
58 | request_header_access Warning allow all |
|
59 | ### Needed for AJAX requests. |
59 | ### Needed for AJAX requests. |
|
60 | request_header_access X-Requested-With allow all |
60 | request_header_access X-Requested-With allow all |
|
61 | ### Requests a web application to disable their tracking of a user. |
61 | ### Requests a web application to disable their tracking of a user. |
|
62 | ## Yeah, lol, wear a "do-not-follow-me" T-Shirt. Smart. Very smart. |
62 | ## Yeah, lol, wear a "do-not-follow-me" T-Shirt. Smart. Very smart. |
|
63 | # request_header_access DNT allow all |
63 | # request_header_access DNT allow all |
|
64 | ### Identifying the originating IP address of a client connecting through |
64 | ### Identifying the originating IP address of a client connecting through |
|
65 | ### a proxy server indicating what client was forwarded. |
65 | ### a proxy server indicating what client was forwarded. |
|
66 | # request_header_access X-Forwarded-For allow all |
66 | # request_header_access X-Forwarded-For allow all |
|
67 | ### Identifying the original host requested by the client. |
67 | ### Identifying the original host requested by the client. |
|
68 | request_header_access X-Forwarded-Host allow all |
68 | request_header_access X-Forwarded-Host allow all |
|
69 | ### Identifying the originating protocol of an HTTP request |
69 | ### Identifying the originating protocol of an HTTP request |
|
70 | request_header_access X-Forwarded-Proto allow all |
70 | request_header_access X-Forwarded-Proto allow all |
|
71 | request_header_access Front-End-Https allow all |
71 | request_header_access Front-End-Https allow all |
|
72 | request_header_access X-Http-Method-Override allow all |
72 | request_header_access X-Http-Method-Override allow all |
|
73 | ### Allows easier parsing of the MakeModel/Firmware that is usually found |
73 | ### Allows easier parsing of the MakeModel/Firmware that is usually found |
|
74 | ### in the User-Agent String of AT&T Devices. |
74 | ### in the User-Agent String of AT&T Devices. |
|
75 | # request_header_access X-ATT-DeviceId allow all |
75 | # request_header_access X-ATT-DeviceId allow all |
|
76 | ### Full description and details about the device currently connecting. |
76 | ### Full description and details about the device currently connecting. |
|
77 | # request_header_access X-Wap-Profile allow all |
77 | # request_header_access X-Wap-Profile allow all |
|
78 | request_header_access Proxy-Connection allow all |
78 | request_header_access Proxy-Connection allow all |
|
79 | ### Server-side deep packet insertion of a unique ID identifying customers. |
79 | ### Server-side deep packet insertion of a unique ID identifying customers. |
|
80 | ### of Verizon Wireless. |
80 | ### of Verizon Wireless. |
|
81 | # request_header_access X-UIDH allow all |
81 | # request_header_access X-UIDH allow all |
|
82 | request_header_access X-Csrf-Token allow all |
82 | request_header_access X-Csrf-Token allow all |
|
83 | # request_header_access X-Request-ID allow all |
83 | # request_header_access X-Request-ID allow all |
|
84 | # request_header_access X-Correlation-ID allow all |
84 | # request_header_access X-Correlation-ID allow all |
|
85 | request_header_access X-Accel-Redirect allow all |
85 | request_header_access X-Accel-Redirect allow all |
|
86 | request_header_access X-Sendfile allow all |
86 | request_header_access X-Sendfile allow all |
|
87 | request_header_access X-LIGHTTPD-send-file allow all |
87 | request_header_access X-LIGHTTPD-send-file allow all |
|
88 | request_header_access X-Sendfile2 allow all |
88 | request_header_access X-Sendfile2 allow all |
|
89 | request_header_access X-Accel-Limit-Rate allow all |
89 | request_header_access X-Accel-Limit-Rate allow all |
|
90 | request_header_access X-Accel-Buffering allow all |
90 | request_header_access X-Accel-Buffering allow all |
|
91 | request_header_access X-Accel-Charset allow all |
91 | request_header_access X-Accel-Charset allow all |
|
92 | request_header_access Other deny all |
92 | request_header_access Other deny all |
|
93 | request_header_access All deny all |
93 | request_header_access All deny all |
|
94 | |
94 | |