| Tag Name | anonymize_headers |
| Usage | anonymize_headers allow|deny header_name … |
Description
This option replaces the old ‘http_anonymizer’ option with something that is much more configurable. You may now specify exactly which headers are to be allowed, or which are to be removed from outgoing requests.
There are two methods of using this option. You may either allow specific headers (thus denying all others), or you may deny specific headers (thus allowing all others).
For example, to achieve the same behavior as the old ‘http_anonymizer standard’ option, you should use:
anonymize_headers deny From Referer Server
anonymize_headers deny User-Agent WWW-Authenticate Link
Or, to reproduce the old ‘http_anonymizer paranoid’ feature you should use:
anonymize_headers allow Allow Authorization Cache-Control
anonymize_headers allow Content-Encoding Content-Length
anonymize_headers allow Content-Type Date Expires Host
anonymize_headers allow If-Modified-Since Last-Modified
anonymize_headers allow Location Pragma Accept
anonymize_headers allow Accept-Encoding Accept-Language
anonymize_headers allow Content-Language Mime-Version
anonymize_headers allow Retry-After Title Connection
anonymize_headers allow Proxy-Connection
| Default | By default, all headers are allowed (no anonymizing is performed). |
Example
anonymize_headers deny Proxy-Connection
Caution
You cannot mix “allow” and “deny”. All ‘anonymize_headers’ lines must have the same second argument.
