# ********************************************************************
# 
#  File        :  $Source: /cvsroot/ijbswa/current/re_filterfile,v $
# 
#  Purpose     :  Rules to process the content of web pages
# 
#  Copyright   :  Written by and Copyright (C) 2001 the SourceForge
#                 IJBSWA team.  http://ijbswa.sourceforge.net
# 
#                 This program is free software; you can redistribute it
#                 and/or modify it under the terms of the GNU General
#                 Public License as published by the Free Software
#                 Foundation; either version 2 of the License, or (at
#                 your option) any later version.
# 
#                 This program is distributed in the hope that it will
#                 be useful, but WITHOUT ANY WARRANTY; without even the
#                 implied warranty of MERCHANTABILITY or FITNESS FOR A
#                 PARTICULAR PURPOSE.  See the GNU General Public
#                 License for more details.
# 
#                 The GNU General Public License should be included with
#                 this file.  If not, you can view it at
#                 http://www.gnu.org/copyleft/gpl.html
#                 or write to the Free Software Foundation, Inc., 59
#                 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
# 
#  Revisions   :
#     $Log: re_filterfile,v $
#     Revision 1.13  2001/10/13 13:11:20  joergs
#     Fixed WebBug filter.
#
#     Revision 1.12  2001/10/07 15:46:42  oes
#     Followed Guy's proposal to change the document.cookie job
#
#     Revision 1.11  2001/09/21 12:34:00  joergs
#     Added filter to replace "Nimda" code by a warning.
#
#     Revision 1.10  2001/07/20 11:04:26  oes
#     Added Rodneys javascript cookie filter
#
#     Revision 1.9  2001/07/13 14:03:48  oes
#     Elimiated yet another bug in the banner-by-size jobs. Shame on me!
#
#     Revision 1.8  2001/06/29 13:34:00  oes
#     - Added explanation for U and T options
#     - Added hint on image replacement by CGI call
#     - Fixed bug in banner-by-size jobs
#
#     Revision 1.7  2001/06/19 14:21:56  oes
#     Fixed microsuck line
#
#     Revision 1.6  2001/06/09 14:01:57  swa
#     header. cosmetics. default: no messing ala microsuck.
#
#
# 
# ********************************************************************/
#
# Syntax: One Perl-Style substitution per line.
# For Details see the perlre, perlop and pcre manpages.
# Note that you are free to choose the delimter as you see fit.
#
# Note: In addidion to the Perl options egimosx, the following nonstandard
# options are supported:
# 
# 'U' turns the default to ungreedy matching.  Add ? to quantifiers to
#     switch back to greedy.
# 'T' (trivial) prevents parsing for backreferences in the substitute.
#     Use if you want to include text like '$&' in your substitute without
#     quoting.
# 

# ********************************************************************/
#
# Kill OnUnload popups. Yummy.
# check it out on http://www.zdnet.com/zdsubs/yahoo/tree/yfs.html
#
# ********************************************************************/
s/(<body .*?)onunload(.*?>)/$1never$2/i

# ********************************************************************/
#
# Kill refresh tags. I like to refresh myself. Manually.
# check it out on http://www.airport-cgn.de/ and go to the arrivals page.
#
# ********************************************************************/
s/<meta[^>]*http-equiv[^>]*refresh.*URL=([^>]*?)"?>/<link rev="x-refresh" href=$1>/i
s/<meta[^>]*http-equiv="?page-enter"?[^>]*content=[^>]*>/<!--no page enter for me-->/i

# ********************************************************************/
#
# If I allow popups, I want them to be resizeable and have a location
# and status bar: check it out on http://www.airport-cgn.de/ and go to
# the arrivals page.
#
# ********************************************************************/
# s/resizable="?(no|0)"?/resizable=1/ig s/noresize/yesresize/ig
# s/location="?(no|0)"?/location=1/ig s/status="?(no|0)"?/status=1/ig
# s/scrolling="?(no|0|Auto)"?/scrolling=1/ig
# s/menubar="?(no|0)"?/menubar=1/ig #s/framespacing="?(no|0)"?//ig
# #s/margin(height|width)=[0-9]*//gi

# ********************************************************************/
#
# Remove frameborder=0 and border=0 from framesets
#
# ********************************************************************/
s/(<frameset[^>]+?)border=['"]?(no|0)['"]?/$1/ig
s/(<frameset[^>]+?)frameborder=['"]?(no|0)['"]?/$1/ig

# ********************************************************************/
#
# The status bar is for displaying link targets, not pointless descriptions.
# Again, check it out on http://www.airport-cgn.de/
#
# ********************************************************************/
s/status='.*?';*//ig

# ********************************************************************/
#
# Get rid of Javascript cookies, like found on privacy.net:
#
# ********************************************************************/

s|(document\.cookie)([ \t\r\n]*=)|documenZapCooky$2|g

# ********************************************************************/
#
# Kill *all* popups a la popup.c. (But for *all* sites, so I wouldn't do that.)
#
# JavaScript: s/window\.open\(/who_wants_this_to.open(/ig
# HTML      : s/target=['"]?_blank['"]?/target_who/g
#
# Kill banners by size:
# (Sizes from http://www.iab.net/iab_banner_standards/bannersizes.html)
# Note: Use http://i.j.b/send-banner?type=trans for a transparent 1x1 gif
# ********************************************************************/
s|<img\s+[^>]*?(width=['"]?468\D)[^>]*(height=['"]?60[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?234\D)[^>]*(height=['"]?60[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?88\D)[^>]*(height=['"]?31[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?120\D)[^>]*(height=['"]?90[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?120\D)[^>]*(height=['"]?600[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?120\D)[^>]*(height=['"]?60[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?160\D)[^>]*(height=['"]?600[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?125\D)[^>]*(height=['"]?125[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?120\D)[^>]*(height=['"]?240[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?180\D)[^>]*(height=['"]?150[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?300\D)[^>]*(height=['"]?250[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?250\D)[^>]*(height=['"]?250[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?240\D)[^>]*(height=['"]?400[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig
s|<img\s+[^>]*?(width=['"]?336\D)[^>]*(height=['"]?280[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig

# Where is that from?
s|<img\s+[^>]*?(width=['"]?200\D)[^>]*(height=['"]?50[^>]*?)>|<img src=http://i.j.b/send-banner $1 $2>|sig

# ********************************************************************/
#
# Squish WebBugs:
#
# ********************************************************************/
s/<img\s+[^>]*?(width|height)\s*=\s*['"]?1\D[^>]*?(width|height)\s*=\s*['"]?1(\D[^>]*?)?>/<!-- Squished WebBug -->/sig

# ********************************************************************/
#
# Fun stuff
#
# ********************************************************************/
s/microsoft(?!.com)/MicroSuck/ig

# ********************************************************************/
#
# Crude parental filtering?  (Use along with a suitable blocklist).
# Shows how to deny access to whole page based on a keyword.
#
# (Note: Middlesex, Sussex and Essex are counties in the UK, not rude words)
# (Note #2: Is 'sex' a rude word?!)
#
#s%^.*(?<!middle)(?<!sus)(?<!es)sex.*$%<html><head><title>Blocked</title></head><body><h3>Blocked due to possible adult content. Please see <a href="http://dmoz.org/Kids_and_Teens/">this site</a>.</h3></body></html>%is
#s+^.*warez.*$+<html><head><title>No Warez</title></head><body><h3>You're not searching for illegal stuff, are you?</h3></body></html>+is

# ********************************************************************/
#
# http://www.farscapezone.com/wwwboard/messages/1451.html
#
# ********************************************************************/
s/(\w+) was tired/<b>$1 needed more coffee<\/b>/ig

# ********************************************************************/
#
# Remove Nimda code.
#
# ********************************************************************/
s%<script language="JavaScript">(window\.open|1;''\.concat)\("readme\.eml", null, "resizable=no,top=6000,left=6000"\)</script>%<br><hr><font size=7><b>Internet J</b></font><b><font size=6>UNK</font><font size=5 color="red"><i>BUSTER</i></font></b><font size=7> WARNING: This Server is infected with <a href="http://www.cert.org/advisories/CA-2001-26.html">Nimda</a>!</font>%g
