CGIProxy Changelog

New in version 2.1.14

November 27th, 2014
  • Major sites are working again, and in all major browsers.
  • Also, FastCGI support was fixed.

New in version 2.1.9 (January 28th, 2014)

  • Added German, Italian, Javanese, and Sundanese message localization.
  • Content Security Policy (CSP) 1.0 is now supported with Firefox and Chrome.
  • Other browsers, and CSP 1.1, will be added when they support CSP.
  • Added $ALERT_ON_CSP_VIOLATION option.
  • Various bugs fixes and workarounds.

New in version 2.1.8 (October 23rd, 2013)

  • Added Chinese, French, and Indonesian message localization.
  • The full Gmail now works through CGIProxy.
  • YouTube once again works through CGIProxy.
  • Can now use a SOCKS 5 proxy, such as Tor (recommended only on same server). Configured with $SOCKS_PROXY, $SOCKS_USERNAME, and $SOCKS_PASSWORD .
  • Database initialization now works better.
  • Can now use a remote database by setting the $DB_SERVER config variable.
  • Many bugs fixed or worked around, and privacy holes closed.
  • Now once again runs on Perl 5.6.1 (one statement in 2.1.7 required Perl 5.10.0).
  • Shuffles HTTP request headers to better avoid detection.
  • $ANONYMIZE_INSERTION now defaults to 1.

New in version 2.1.7 (July 27th, 2013)

  • CGIProxy now has message localization: The user can choose an interface in Arabic, English, Farsi, Russian, or Turkish. If you would like support for other languages, please consider translating CGIProxy's messages-- see for full details.
  • The full facebook site now works almost fully through CGIProxy, so it's no longer redirected to the mobile site by default. If it's slow for you or your users, see the comments and suggestions above where %REDIRECTS is set.
  • Running under FastCGI now works on servers other than just nginx.
  • Resuming partial downloads is now supported, with partial support of the Range: header.
  • The JavaScript library (jslib) is now gzipped when possible, to save bandwidth. Should have done this a while ago.
  • Fixed error with "-c" in usage message; sorry about that.
  • Added support for Content-Security-Policy: header, though it's disabled until the header is better defined and browsers support it.
  • Many bugs fixed, making many sites work better.

New in version 2.1.6 (February 5th, 2013)

  • Now can run as a FastCGI script.
  • Now can run without an external HTTP server, by using its own embedded secure HTTP server.
  • Installation is easier, as Perl modules can be automatically installed (including under your home directory) by running "./nph-proxy.cgi install-modules" from the command line. See the $LOCAL_LIB_DIR config option, if you need to install the modules and you're not root.
  • Windows support has improved.
  • Documentation has been improved, especially for installation.
  • Command-line usage is now documented; run "./nph-proxy.cgi -?" for usage.
  • There are some new config options, mostly for FastCGI support, the embedded server, and database support.
  • Some of the configuration section has been rearranged; most potentially needed config options are now near the top.
  • Fixed a bug handling spaces in path when using proxy_encode().

New in version 2.1.5b (November 12th, 2012)

  • Added redirection for Gmail to %REDIRECTS ; redirects to HTML-only version.

New in version 2.1.5 (October 23rd, 2012)

  • Now optionally uses a server-side database to store cookies, which fixes "Bad Request" errors when user has too many cookies. Can use either MySQL or Oracle. Configure this with $DB_DRIVER, $DB_USER, $DB_PASS, and $USE_DB_FOR_COOKIES .
  • Now supports a simple mechanism to automatically redirect pages that aren't handled well by CGIProxy. For example, is redirected to (mobile), until we can get working better. This is configured with the %REDIRECTS hash.
  • 17 bugs fixed, mostly in JavaScript support but some in Flash and HTML support too.

New in version 2.1.4 (May 9th, 2012)

  • This version fixes a few bugs and closes a few privacy holes.
  • Among other things, CAPTCHA now works better.

New in version 2.1.3 (April 28th, 2012)

  • Flash support, including online video, was improved.
  • There is no longer a delay before viewing a YouTube video.
  • Some security/privacy holes were fixed, including improved support for the Same-Origin Policy.
  • There were also other fixes and workarounds, making more pages work correctly.