about summary refs log tree commit diff stats
Commit message (Collapse)AuthorAgeFilesLines
* Actually track the header filesJosh Rickmar2012-10-102-0/+1964
|
* Implement header changes as requested by jy-pJosh Rickmar2012-10-105-66/+100
| | | | | | | | | | | | | | | | | | | This change introduces a new RB tree to keep track of identities (defined as being different combinations of modified HTTP headers, so far only User-Agent and Accept). Whenever a site is visited, this tree is checked to see if it has been accessed before, and if it has, the previously used Accept and User-Agent headers will be used. If the site has not been visited before during the browser's lifetime, a new entry will be created in this tree to keep track of which headers to use the next time. A site is defined as a FQDN, so requests made to cross site resources or resources on a different subdomain will generate a new saved identity. The second change adds two new config files to the resource dir to read in additional user_agent and http_accept values scraped from the logs of www.bitrig.org. The idea of this is to keep rotating through each of these on every new site visit to provide more anonymity and thwart web tracking by looking at the headers being sent.
* Add regex support to whitelistsJosh Rickmar2012-09-188-219/+224
| | | | | | | | | | | | | | This modifies the whitelist and https forcing code to internally use unix extended regular expressions to match domains. The old config syntax converted to an appropiate regular expression. Inputing of raw regular expressions is possible by prepending the string "re:" in front of a regular expression, for example: js_wl = re:^(.*\.)*cyphertite\.com$ would be the same as js_wl = .cyphertite.com
* Prepare for release 1.3.1.Marco Peereboom2012-09-151-1/+1
|
* Include NetBSD port, from ZplayJosh Rickmar2012-09-154-1/+531
|
* Sync preloaded hsts with chromiumJosh Rickmar2012-09-151-0/+5
|
* More dbsd stuff. From ZplayJosh Rickmar2012-09-061-2/+1
|
* Another dbsd patch from ZplayJosh Rickmar2012-09-051-0/+1
|
* Ewps, fix the build again with some glibsJosh Rickmar2012-09-011-1/+1
|
* Make custom URI handling work againJosh Rickmar2012-08-311-7/+7
| | | | | | | This changes the order custom and invalid URI checking so that items set with custom_uri are still able to be handled properly, even if the URI scheme is invalid (not whitelisted) and we don't want xombrero opening it.
* Stop crash with old libsoups, kill warning with never onesJosh Rickmar2012-08-311-0/+2
| | | | Reported by Thomas in the irc channel
* Fix build with glib 2.30.0. Fixes FS363Josh Rickmar2012-08-311-1/+1
|
* Add a dragonflybsd portJosh Rickmar2012-08-294-0/+377
| | | | Patch from user Zplay on the forum
* Fix back/forward handling with about pages.Josh Rickmar2012-08-296-26/+28
| | | | | | | | | This change makes the can_go_* and go_* back/forward functions use the same logic when determining whether we are on an about page, and makes it so about:secviolation warning pages do not save the page that generated the warning to t->item. This prevents hitting back and going back to the exact same page that generated the warning (triggering the warning a second time).
* Fix last commit, args may be NULL.Josh Rickmar2012-08-281-1/+1
|
* Fix about:favorites (:fav, not :favedit) with no entriesJosh Rickmar2012-08-281-2/+2
|
* Prepare for release 1.3.0.Marco Peereboom2012-08-281-2/+2
|
* Sync preloaded HSTS with ChromiumJosh Rickmar2012-08-281-1/+3
|
* Mention how panopticlick is bad for copying header infoJosh Rickmar2012-08-281-0/+7
|
* Fix issues with marco's back/forward list hackJosh Rickmar2012-08-282-18/+41
| | | | | | | | This should incorporate all the fixes in my previous back/forward list change, but still uses marco's horrible hack for determining if and how back/forward works. Code is still ugly but deal with it. Any remaining issues will be worked out in-tree.
* Backout the recent back/forward list changesJosh Rickmar2012-08-282-25/+128
| | | | | | This changed worked wonders for me but others still saw some problems. I could not reproduce any of them. This will bring back some problems with refresh not working again, but I'll work around that next.
* Sync preloaded HSTS with chromiumJosh Rickmar2012-08-251-0/+2
|
* Make clicking a favedit Rm link return to the favedit pageJosh Rickmar2012-08-241-1/+4
|
* Fix cert checking thread to make sure t is always still validJosh Rickmar2012-08-241-8/+4
|
* Make removing links from :favedit not crash. tsk tsk meJosh Rickmar2012-08-241-2/+2
|
* Specify action for the policy when returning TRUE from npd cbJosh Rickmar2012-08-241-2/+7
|
* Add a setting to disable the tabs feature (same as -t flag)Josh Rickmar2012-08-242-1/+17
| | | | Thanks to user njw on FS for the patch.
* Remove the url to the gnutls docs, it's just too longJosh Rickmar2012-08-241-2/+2
|
* Fix the build when using some older glib and gtk versionsJosh Rickmar2012-08-242-0/+6
|
* Make editsrc on about:blank not bomb the browserJosh Rickmar2012-08-231-2/+3
|
* Make the arrow menu work againJosh Rickmar2012-08-231-5/+5
|
* Initialize some variables to remove warnings.Josh Rickmar2012-08-231-1/+1
|
* Update the manpage date to todayJosh Rickmar2012-08-231-1/+1
|
* Marco wants new tabs only when middle-clicking (or ctrl-click)Josh Rickmar2012-08-231-8/+2
|
* Fix the logic for following links and opening new tabs.Josh Rickmar2012-08-231-3/+7
|
* Add an unbind keybinding action, and document in the manpage.Josh Rickmar2012-08-232-5/+19
| | | | | Patch provided by Vadim Zhukov <persgray@gmail.com>, manpage bits by me.
* Only allow loading of whitelisted valid uri typesJosh Rickmar2012-08-231-0/+6
| | | | | | This should prevent bait and switch attacks when using data: or javascript: uris (see http://lcamtuf.coredump.cx/switch/ for an example of the attack).
* Remove some deprecated signalsJosh Rickmar2012-08-223-16/+25
| | | | | | This stops the webview's deprecated load-finished and load-progress-changed signals from being attached to. May help with stability.
* Kill the gcrypt deprecated warningsJosh Rickmar2012-08-221-0/+2
|
* Redo the back/forward list hackJosh Rickmar2012-08-212-128/+25
| | | | Much simpler, and less buggy.
* Remove duplicate codeJosh Rickmar2012-08-063-23/+5
| | | | | | Now that wl_add works correctly (doesn't automatically insert leading periods), remove the old struct sv_ignore and use struct domain and wl_add/wl_find instead.
* Add a favedit command and remove rm links from :favJosh Rickmar2012-08-063-14/+28
| | | | | | | | This makes using :fav with link hinting less likely to accidentally remove an entry by typing the wrong number. The old favorites page with the rm links is still available by using the favedit command. Patch slightly modified from a patch provide by user wallex on FS.
* Add a new setting, gnutls_priority_string.Josh Rickmar2012-08-024-2/+53
| | | | | | This may be used to modify the GnuTLS priority string used for the soup session to enable or disable specific ciphers or TLS/SSL versions. Default is empty (uses libsoup's defaults).
* ref/unref t->active before it is set or unsetJosh Rickmar2012-08-202-2/+14
| | | | | | | This should fix any crashes when determining if t->active is an active input element or not. The pointer is from a function which returns transfer none, so if we want to keep it alive (we do), we need manually add reference to it, and unrefernce it so it is freed.
* Make middle click to paste work in t->cmdJosh Rickmar2012-08-171-5/+8
| | | | | This reorders some gtk calls and adds another to unset the text in the GtkEntry before showing it.
* Destroy the session key when done with it.Josh Rickmar2012-08-162-5/+27
| | | | | This prevents sites from even being able to correctly guess an xtp session key.
* Give each tab its own session key for xtp links.Josh Rickmar2012-08-166-158/+70
| | | | While here, kill a bunch of trailing whitespace.
* Add more info and features to about:secviolationJosh Rickmar2012-08-153-15/+98
| | | | | | This adds the full url to the about:secviolation warning page, as well as implementing a new link to show the local cached cert instead of only the new remote one.
* Also add www.bitrig.org to preloaded hstsJosh Rickmar2012-08-151-0/+1
|
* Bitrig mirrors aren't https, don't include subdomains in hstsJosh Rickmar2012-08-151-1/+1
|