How do I resolve header modification conflicts?

[3k2]

Hey

as in the guide for umatrix and ublock I have set the rules as noop but umatrix will convert them to allow ?

decentraleyes will complain in latest chrome on windows and latest chromium in linux.

Warning: This extension failed to modify the request header "Referer" of a network request because the modification conflicted with another extension (uMatrix).

https-strict: * true
https-strict: behind-the-scene false
https-strict: furrynetwork.com false
https-strict: rutracker.org false
https-strict: yadi.sk false
matrix-off: 797dc218-e191-4ba8-bec6-abc07e68401d.moz-extension-scheme true
matrix-off: about-scheme true
matrix-off: behind-the-scene true
matrix-off: chrome-extension-scheme true
matrix-off: chrome-scheme true
matrix-off: f531103c-928b-4542-a8e2-cd151bbba97e.moz-extension-scheme true
matrix-off: localhost true
matrix-off: moz-extension-scheme true
matrix-off: opera-scheme true
matrix-off: wyciwyg-scheme true
noscript-spoof: * true
noscript-spoof: furaffinity.net true
referrer-spoof: * true
referrer-spoof: 163.com false
referrer-spoof: behind-the-scene false
referrer-spoof: bilibili.com false
referrer-spoof: dropbox.com false
referrer-spoof: firefox.com false
referrer-spoof: rutracker.org true
* * * block
* * css allow
* * frame block
* * image allow
* 1st-party * allow
* 1st-party frame allow
* ajax.aspnetcdn.com script allow
* ajax.googleapis.com script allow
* apps.bdimg.com script allow
* cdn.bootcss.com script allow
* cdn.jsdelivr.net script allow
* cdn.staticfile.org script allow
* cdnjs.cloudflare.com script allow
* code.jquery.com script allow
* maxcdn.bootstrapcdn.com script allow
163.com api.money.126.net script allow
163.com data.live.126.net script allow
163.com g.cn.miaozhen.com script allow
163.com img1.126.net frame allow
163.com img2.126.net script allow
163.com img2.cache.netease.com script allow
163.com img3.126.net script allow
163.com img5.cache.netease.com script allow
163.com img6.cache.netease.com script allow
163.com m10.music.126.net media allow
163.com map.dxpmedia.com script allow
163.com mimg.127.net script allow
163.com s1.music.126.net media allow
163.com s3.music.126.net script allow
163.com static.ws.126.net script allow
163.com ursdoccdn.nosdn.127.net script allow
163.com wr.da.netease.com script allow
acfun.cn cdn.aixifan.com script allow
aliexpress.com i.alicdn.com script allow
alipay.com a.alipayobjects.com script allow
alipay.com as.alipayobjects.com script allow
alipay.com assets.alicdn.com script allow
alipay.com gw.alipayobjects.com script allow
alipay.com os.alipayobjects.com script allow
alipay.com t.alipayobjects.com media allow
alipay.com t.alipayobjects.com script allow
amazon.cn images-cn.ssl-images-amazon.com media allow
amazon.cn images-cn.ssl-images-amazon.com script allow
amazon.cn images-cn.ssl-images-amazon.com xhr allow
amazon.cn m.media-amazon.com script allow
amazon.com a0.awsstatic.com script allow
amazon.com images-na.ssl-images-amazon.com script allow
appinn.com cdn.doublemax.net script allow
baidu.com bkssl.bdimg.com script allow
baidu.com fex.bdstatic.com script allow
baidu.com gss0.bdstatic.com script allow
baidu.com iknowpc.bdimg.com script allow
baidu.com mu5.bdstatic.com script allow
baidu.com mu6.bdstatic.com script allow
baidu.com mu7.bdstatic.com script allow
baidu.com online0.map.bdimg.com script allow
baidu.com s1.pan.bdstatic.com script allow
baidu.com tb1.bdstatic.com script allow
baidu.com webmap0.map.bdstatic.com script allow
baidu.com webmap1.map.bdstatic.com script allow
baidu.com webmap2.map.bdstatic.com script allow
baidu.com wkstatic.bdimg.com script allow
bandcamp.com bcbits.com * allow
bbc.com mybbc.files.bbci.co.uk script allow
bbc.com nav.files.bbci.co.uk script allow
bbc.com search-suggest.api.bbci.co.uk xhr allow
bbc.com search.files.bbci.co.uk script allow
bbc.com ssl.bbc.co.uk xhr allow
bbc.com static.bbc.co.uk script allow
bbc.com static.bbci.co.uk script allow
bbc.com www.bbc.co.uk script allow
bilibili.com acgvideo.com media allow
bilibili.com acgvideo.com xhr allow
bilibili.com s1.hdslb.com script allow
bilibili.com s2.hdslb.com script allow
bilibili.com s3.hdslb.com script allow
bilibili.com static.hdslb.com media allow
bilibili.com static.hdslb.com script allow
bitbucket.org ace-cdn.atlassian.com script allow
bitbucket.org bitbucket-marketing-cdn.atlassian.com script allow
bitbucket.org d301sr5gafysq2.cloudfront.net script allow
booking.com q-ak.bstatic.com script allow
booking.com r-ak.bstatic.com script allow
csdn.net csdnimg.cn script allow
dailymotion.com static1.dmcdn.net script allow
deviantart.com st.deviantart.net script allow
discordapp.com discord.gg xhr allow
douyu.com apm.douyucdn.cn xhr allow
douyu.com dotcounter.douyucdn.cn xhr allow
douyu.com shark.douyucdn.cn script allow
douyu.com webconf.douyucdn.cn script allow
dropbox.com 127.0.0.1 xhr allow
dropbox.com cfl.dropboxstatic.com xhr allow
dropbox.com dropboxstatic.com script allow
firefox.com mozilla.net script allow
foxnews.com global.fncstatic.com script allow
furaffinity.net * frame allow
furaffinity.net d31qbv1cthcecs.cloudfront.net * allow
furaffinity.net google.com * allow
furaffinity.net googletagservices.com * allow
furaffinity.net gstatic.com * allow
gamer.com.tw i2.bahamut.com.tw script allow
github.com github-windows.s3.amazonaws.com script allow
github.com githubusercontent.com xhr allow
github.com pages-themes.github.io frame allow
github.com pages-themes.github.io script allow
github.com render.githubusercontent.com frame allow
github.com render.githubusercontent.com script allow
github.com s3.amazonaws.com xhr allow
godaddy.com img1.wsimg.com script allow
google.com content.googleapis.com frame allow
google.com content.googleapis.com script allow
google.com ssl.gstatic.com media allow
google.com ssl.gstatic.com script allow
google.com ssl.gstatic.com xhr allow
google.com translate.googleapis.com script allow
google.com translate.googleapis.com xhr allow
google.com translate.googleusercontent.com frame allow
google.com translate.googleusercontent.com script allow
google.com www.gstatic.com script allow
google.com www.gstatic.com xhr allow
hbr.org cdns.gigya.com script allow
hbr.org cdns.us1.gigya.com frame allow
hbr.org cdns.us1.gigya.com script allow
html5test.com api.whichbrowser.net script allow
huffingtonpost.com s.m.huffpost.com script allow
huffingtonpost.com s.m.huffpost.com xhr allow
ifeng.com c0.ifengimg.com script allow
ifeng.com c1.ifengimg.com script allow
ifeng.com h2.ifengimg.com script allow
ifeng.com js.ifengimg.com script allow
ifeng.com m0.ifengimg.com script allow
ifeng.com m1.ifengimg.com script allow
ifeng.com m3.ifengimg.com script allow
ifeng.com p0.ifengimg.com media allow
ifeng.com p0.ifengimg.com script allow
ifeng.com y0.ifengimg.com script allow
ifeng.com y1.ifengimg.com script allow
instagram.com assets.tumblr.com frame allow
instagram.com assets.tumblr.com script allow
instagram.com cdn.rawgit.com script allow
instagram.com instagram.tumblr.com media allow
instagram.com instagramstatic-a.akamaihd.net script allow
instagram.com static.xx.fbcdn.net script allow
instagram.com www.tumblr.com frame allow
instagram.com www.tumblr.com other allow
instagram.com www.tumblr.com script allow
jd.com 3.cn script allow
jd.com misc.360buyimg.com script allow
jd.com static.360buyimg.com script allow
kiva.org client.perimeterx.net script allow
kiva.org www-kiva-org.global.ssl.fastly.net script allow
kiva.org www-kiva-org.global.ssl.fastly.net xhr allow
linkedin.com static.licdn.com script allow
live.com account.azureedge.net script allow
live.com auth.gfx.ms script allow
live.com az725175.vo.msecnd.net script allow
live.com browser.pipe.aria.microsoft.com xhr allow
live.com loki.delve.office.com xhr allow
live.com mem.gfx.ms script allow
live.com ow1.res.office365.com script allow
live.com ow1.res.office365.com xhr allow
live.com owamail.azureedge.net xhr allow
live.com r1.res.office365.com script allow
live.com r1.res.office365.com xhr allow
live.com r4.res.office365.com xhr allow
live.com res.delve.office.com script allow
live.com statics-uhf-eus.akamaized.net script allow
live.com web.vortex.data.microsoft.com other allow
live.com web.vortex.data.microsoft.com script allow
microsoft.com assets.onestore.ms script allow
microsoft.com auth.gfx.ms script allow
microsoft.com i2-msdn.sec.s-msft.com script allow
microsoft.com login.live.com frame allow
microsoft.com login.live.com script allow
microsoft.com mem.gfx.ms script allow
microsoft.com mem.gfx.ms xhr allow
microsoft.com statics-onestore-eas-ms-com.akamaized.net script allow
microsoft.com statics-uhf-neu.akamaized.net script allow
microsoftonline.com secure.aadcdn.microsoftonline-p.com script allow
microsoftonline.com www.office.com frame allow
microsoftonline.com www.office.com script allow
mozilla.org cdn-production.discourse.mozilla-community.org script allow
mozilla.org mozilla.net script allow
netflix.com codex.nflxext.com script allow
netflix.com nflxext.com media allow
nytimes.com a1.nyt.com script allow
nytimes.com int.nyt.com script allow
nytimes.com int.nyt.com xhr allow
nytimes.com s1.nyt.com xhr allow
nytimes.com static01.nyt.com script allow
nytimes.com vp.nyt.com media allow
nytimes.com web-player.art19.com script allow
office.com browser.pipe.aria.microsoft.com xhr allow
office.com easofficehome.msocdn.com script allow
office.com graph.microsoft.com xhr allow
office.com ocws.officeapps.live.com xhr allow
office.com r1.res.office365.com script allow
office365.com browser.pipe.aria.microsoft.com xhr allow
openload.co 1fiafqi.oloadcdn.net xhr allow
openload.co 1fiafqj.oloadcdn.net xhr allow
opera.com addons-static.operacdn.com script allow
opera.com www-static.operacdn.com script allow
pixiv.net d.pixiv.org frame allow
qq.com captcha.gtimg.com frame allow
qq.com captcha.gtimg.com script allow
qq.com rescdn.qqmail.com script allow
reddit.com g.redditmedia.com media allow
reddit.com www.redditmedia.com frame allow
reddit.com www.redditmedia.com script allow
reddit.com www.redditstatic.com script allow
rutracker.org fastpic.ru * allow
rutracker.org rutrk.org * allow
rutracker.org t-ru.org * allow
sharepoint.com browser.pipe.aria.microsoft.com xhr allow
sharepoint.com contentstorage.osi.office.net script allow
sharepoint.com excel.officeapps.live.com frame allow
sharepoint.com powerpoint.officeapps.live.com frame allow
sharepoint.com r1.res.office365.com script allow
sharepoint.com sharepoint.com cookie allow
sharepoint.com spoprod-a.akamaihd.net script allow
sharepoint.com static.sharepointonline.com script allow
sharepoint.com word-edit.officeapps.live.com frame allow
sharepoint.com word-view.officeapps.live.com frame allow
sina.com.cn hq.sinajs.cn script allow
sina.com.cn i0.sinaimg.cn script allow
sina.com.cn n.sinaimg.cn script allow
sina.com.cn newspush.sinajs.cn xhr allow
sina.com.cn passport.weibo.com frame allow
sina.com.cn passport.weibo.com script allow
sina.com.cn s.weibo.com script allow
sina.com.hk ad.sinahk.net script allow
sina.com.tw api.tw.weibo.com script allow
sina.com.tw img1.w.sina.tw script allow
sina.com.tw tw.weibo.com frame allow
sina.com.tw tw.weibo.com script allow
sina.com.tw wx1.sinaimg.cn xhr allow
sina.com.tw wx2.sinaimg.cn xhr allow
sina.com.tw wx3.sinaimg.cn xhr allow
sina.com.tw wx4.sinaimg.cn xhr allow
sohu.com m1.auto.itc.cn script allow
sohu.com statics.itc.cn script allow
sourceforge.net a.fsdn.com script allow
stackexchange.com cdn.sstatic.net script allow
stackoverflow.com cdn.sstatic.net script allow
steampowered.com steamstore-a.akamaihd.net script allow
steampowered.com store.edgecast.steamstatic.com script allow
tampermonkey.net tampermonkey.global.ssl.fastly.net script allow
taobao.com ecpm.tanx.com script allow
taobao.com g.alicdn.com frame allow
taobao.com g.alicdn.com script allow
taobao.com img.alicdn.com xhr allow
taobao.com jipiao.alitrip.com script allow
taobao.com localhost.wwbizsrv.alibaba.com script allow
taobao.com pages.tmall.com xhr allow
taobao.com pass.tmall.com script allow
taobao.com tbip.alicdn.com script allow
taobao.com tce.alicdn.com script allow
theguardian.com assets.guim.co.uk script allow
theguardian.com assets.guim.co.uk xhr allow
thetimesnews.com cdn.gatehousemedia.com script allow
time.com d2nx6ydw3e5y5d.cloudfront.net script allow
time.com s0.wp.com script allow
time.com s1.wp.com script allow
time.com s2.wp.com script allow
tmall.com amos.alicdn.com script allow
tmall.com desc.alicdn.com script allow
tmall.com g.alicdn.com frame allow
tmall.com g.alicdn.com script allow
tmall.com g.alicdn.com xhr allow
tmall.com gy.taobao.com script allow
tmall.com hdc1.alicdn.com script allow
tmall.com login.taobao.com script allow
tmall.com mdskip.taobao.com script allow
tmall.com suggest.taobao.com script allow
tmall.com uaction.alicdn.com script allow
tripadvisor.com static.tacdn.com script allow
tsdm.me follow.v.t.qq.com frame allow
tsdm.me follow.v.t.qq.com script allow
tsdm.me mat1.gtimg.com script allow
tsdm.me push.zhanzhang.baidu.com script allow
tsdm.me www.tsdmw.net script allow
tudou.com account.youku.com script allow
tudou.com g.alicdn.com script allow
tudou.com r1.ykimg.com script allow
tudou.com static.soku.com script allow
tudou.com static.youku.com script allow
tudou.com tip.soku.com script allow
tudou.com tip.tudou.soku.com script allow
twitch.tv sjc01.hls.ttvnw.net xhr allow
twitch.tv usher.ttvnw.net xhr allow
twitch.tv web-cdn.ttvnw.net script allow
twitter.com abs.twimg.com script allow
twitter.com assets.pscp.tv script allow
twitter.com ton.twimg.com script allow
twitter.com video.twimg.com media allow
twitter.com video.twimg.com xhr allow
twitter.com www.pscp.tv frame allow
twitter.com www.pscp.tv script allow
vcb-s.com cache.cswsadlab.com script allow
walmart.com a14.wal.co script allow
walmart.com b.wal.co script allow
walmart.com i5.walmartimages.com script allow
washingtonpost.com cdn.springserve.com media allow
washingtonpost.com d21rhj7n383afu.cloudfront.net script allow
washingtonpost.com loxodo-ct.ext.nile.works xhr allow
weibo.com h5.sinaimg.cn script allow
weibo.com js.t.sinajs.cn script allow
weibo.com js1.t.sinajs.cn script allow
weibo.com js2.t.sinajs.cn script allow
weibo.com jss.t.sinajs.cn script allow
weibo.com login.sina.com.cn script allow
wikipedia.org cxserver.wikimedia.org xhr allow
wikipedia.org login.wikimedia.org script allow
wikipedia.org meta.wikimedia.org script allow
wikipedia.org recommend.wmflabs.org xhr allow
wikipedia.org upload.wikimedia.org media allow
wikiwand.com d3isfnyiuldmfu.cloudfront.net media allow
wikiwand.com d3isfnyiuldmfu.cloudfront.net script allow
wikiwand.com db0nus869y26v.cloudfront.net xhr allow
wikiwand.com en.wikipedia.org script allow
wikiwand.com s3.amazonaws.com media allow
wikiwand.com s3.amazonaws.com xhr allow
yadi.sk yandex.com * allow
yadi.sk yandex.net * allow
yadi.sk yandex.ru * allow
yadi.sk yastatic.net * allow
yahoo.com jparack03.vpg.cdn.yimg.com xhr allow
yahoo.com s.yimg.com frame allow
yahoo.com s.yimg.com script allow
yahoo.com s.yimg.com xhr allow
yandex.com yastatic.net script allow
yelp.com s3-media1.fl.yelpcdn.com script allow
yelp.com s3-media2.fl.yelpcdn.com script allow
yelp.com s3-media4.fl.yelpcdn.com script allow
yiff.party datatables.net * allow
youku.com 127.0.0.1 media allow
youku.com 127.0.0.1 script allow
youku.com 127.0.0.1 xhr allow
youku.com aeu.alicdn.com script allow
youku.com af.alicdn.com script allow
youku.com g.alicdn.com script allow
youku.com js.ykimg.com script allow
youku.com r1.ykimg.com script allow
youku.com ykimg.com media allow
youtube.com googlevideo.com xhr allow

[Synzvato]

[...] I have set the rules as noop but umatrix will convert them to allow ?

Yes, this is expected behavior, so don't worry about it. There's nothing wrong with your configuration.

[...] decentraleyes will complain in latest chrome on windows and latest chromium in linux.

Decentraleyes automatically strips sensitive metadata from supported CDN-requests. Since you already use uMatrix to sanitize "Referer" headers, just disable Strip metadata from allowed requests.

Thanks for sharing your concerns, and please do let me know if this solved your problem!