If you’re not already a Pluckeye user, you may want to take a look at the non-user FAQ instead of this page.
Pluckeye supports Windows, Linux, macOS, and Android.
See platforms for more information.
See the tips page.
When the system feature is enabled (which used to be known as level 2), Pluckeye will block all browsers with which it does not integrate, such as Internet Explorer and Safari.
Commands such as
pluck + allow example.com
are typed in a console window (AKA a terminal on Mac OS X or Linux). You’ll need to learn to open and type in one if you want to use some advanced features such as scheduled rules. However, the basic feature set requires only pointing and clicking in the browser, and many people use Pluckeye without typing anything, ever.
For a longer explanation of how to type in commands, see notation.
See the glossary.
Keep in mind that no matter how you do this, the new setting will only be effective after the Pluckeye delay waiting period.
In Chrome, click on the Pluckeye button (usually in the top right), and then click the “allow <website>” button immediately below “New Rule”.
In Chrome, click on the Pluckeye button (usually in the top right), and then click
Use the allow everything rule.
See this guide.
Use a when rule.
To schedule daily blackouts from midnight to 6am (
0-6) and from 9pm to midnight (
pluck + when 0-6&21-24 block everything
See How to add a rule.
There are two ways.
The harder way, for those who don’t want to use the users site, is to use the export and import commands. It’s harder because you have to copy the files yourself, and unlike synchronized configurations, will not result in future changes being synchronized between the devices. To do it this way:
If the rule was added using the “allow” button in Chrome, the “revert” button will remove the rule.
Use the - (minus) command.
Yes, and no. As of Pluckeye 1.0 literal urls and url prefixes are supported, using the + (add) command:
Full regular expressions support is not yet implemented, and may never be. If you would like regex support, see this uservoice suggestion.
The content of the blacklists are hidden by default because some people report that the textual content in blacklists can trigger behavior they are trying to change. If you want to see the content of the blacklists, you need to include the string ‘wigwam’ in your profile description and wait for your delay (if any) to elapse.
Currently only admins can publish general configurations. General configurations may contain powerful rules like block everything, which overrides other rules. Since users can import public configurations into their own configurations, if anyone could publish general configurations, someone might import a very restrictive configuration into their own without realizing how restrictive it is. You can still publish other types of configurations, though.
Currently only general configurations can be assigned to devices. This is because other configuration types are limited in the kinds of rules they can contain, and a user should never be prevented from adding a rule to their local configuration (though some rules are subject to their delay). For example, if you had an import list assigned to your device and you ran
pluck + allow example.com, it would be impossible to add the rule, since “allow” rules cannot appear in import lists. (In theory the rule could be added to one of the configurations listed in the import list, but there is no good way of determining which one of these it should be added to.)
Unpublished (i.e., private) general configurations cannot be imported into import lists. The reason for this is the same as the [[#why-can-t-i-publish-make-public-my-general-configuration][reason only admins can publish general configurations]. To get around this, you can use a general configuration (which can import any configuration type) instead of an import list.
Expedite only works with Pluckeye on desktop systems (Windows, Mac OS X, and Linux). It is hoped that it will one day work on mobile as well.
See the documentation on Inspectors.
Yes. You can simply allow by user. E.g.,
pluck + allow user:susan pluck + allow user:\\paravel\polly
It depends. One option is to schedule access to YouTube using a when rule. E.g., to only allow media from YouTube on Mondays 10am - 12pm:
pluck + when M10-12 allow youtube.com
Another option is to allow YouTube Kids:
pluck + allow youtubekids.com
Another option is allow only specific videos.
Another option is to use a Chromium-based browser and enforce “moderate mode” (the safesearch feature):
pluck + safesearch
or “restricted mode” (the safesearchstrict feature):
pluck + safesearchstrict
Possibly with the nofirefox feature:
pluck + nofirefox
You can enforce safe search on google.com by using Chrome or a Chromium-based browser and enabling the safesearch feature:
pluck + safesearch
or the safesearchstrict feature:
pluck + safesearchstrict
pluck + nofirefox pluck + block bing.com pluck + block duckduckgo.com
pluck + block application/x-bittorrent
If you only want access to ok.com:
pluck + block pluck + allow pluckeye.net pluck + allow ok.com
pluck + block application/x-iso9660-image
To allow PDFs or .docx files or other documents on specific sites, one generally just allows a url, or a domain. E.g.,
pluck + allow http://my-college.edu/courses pluck + allow my-church.or
To block PDFs on most sites:
pluck + block application/pdf
See also the no-documents configuration.
Try the no-programs configuration
pluck + block audio/
It depends on your Pluckeye settings, and your version of Mac OS X. In v0.99.14+ you may be able to allow these programs. Note that this syntax is only valid for v0.99.x and above.
The App Store, in macOS 10.13 or so and above:
pluck + allow program App Store pluck + allow program commerce
pluck + allow program iTunes
pluck + allow program Mail
Note that the above settings will not permit images in most HTML email. Such images can’t be allowed at present without also allowing all of Safari, a feature that almost no Pluckeye user wants.
In Pluckeye before v0.99, at installation level 2, iTunes and the App Store are blocked on some machines. The workaround is to periodically drop down to level 1 to apply updates from the App Store.
If you use macOS 10.12 or below, you may not be able to allow the App Store without also allowing Safari. In which case, a periodic allowance for WebKit might be useful. For example, to allow WebKit (includes Safari and the App Store) on Mondays from 10am to 12pm:
pluck + allow program App Store pluck + when M10-12 allow program com.apple.WebKit
The Microsoft App Store is blocked by the NHB feature. But if NHB is too severe for you and you are using Pluckeye v0.99.24+, the app store can be blocked with
pluck + block program winstore.app.exe
Really? With Pluckeye? Shrug.
Then block the sites you want to block.
This will overwrite your existing configuration. If you want to save a copy of your configuration for later, use the export command.
You may want to enable the NHB feature.
Yes. Pluckeye calls this a ”restricted device” setup, and it is intended for other control (such as parental control) rather than self control.
pluck + allow port 3910 pluck + allow port 3911
See this guide.
pluck + allow github.com
Typical symptoms of this FAQ:
$ git clone https://github.com/plujon/fmemopen Cloning into 'fmemopen'... fatal: unable to access 'https://github.com/plujon/fmemopen/': Couldn't connect to server $ bundle install Unfortunately, a fatal error has occurred. Please see the Bundler troubleshooting documentation at http://bit.ly/bundler-issues. Thanks! /usr/lib/ruby/2.2.0/net/http.rb:879:in `initialize': Permission denied - connect(2) for "rails-assets.org" port 443 (Errno::EACCES) $ heroku logs Enter your Heroku credentials. Email: blah Password (typing will be hidden): blah ! Unable to connect to Heroku API, please check internet connectivity and try again.
The solution to all of the above:
pluck + allow github.com pluck + allow rubygems.org pluck + allow rubygems.global.ssl.fastly.net pluck + allow npmjs.org pluck + allow heroku.com sleep $(pluck delay) git clone https://github.com/plujon/fmemopen # Cloning into 'fmemopen'...
Also useful to some folks:
pluck + allow program:git pluck + allow program:git-remote-http
pluck + allow pypi.org pluck + allow pythonhosted.org
Run the following commands in a terminal.
cat >~/.pluckeye.homebrew.env <<EOF export HOMEBREW_DEVELOPER=pluckeye export HOMEBREW_CURL_PATH=/usr/local/bin/curl EOF for i in ~/.bashrc ~/.bash_profile ~/.bash_login ~/.profile; do [ -f $i ] && break done echo source ~/.pluckeye.homebrew.env >>$i source ~/.pluckeye.homebrew.env
After that, allow the hosts that homebrew requires. E.g.:
pluck + allow bintray.com pluck + allow gnu.org
Another approach is to edit /usr/local/Homebrew/Dockerfile, inserting
brew tap homebrew/core, and
then to run
Alternatively, you could use a periodic whiteout. E.g., to reserve time on Saturdays from 12pm to 2pm for homebrew updating:
pluck + when A12-14 allow everything
First, start the program. In this case, we’ll use the program
Steam as an example. Then run
pluck verdicts to see what the
names of the blocked programs are.
Finally, allow programs with that name.
pluck + allow program steamwebhelper.exe pluck + allow program Steam.exe
For minecraft, one might use
pluck + allow program:minecraft pluck + allow program:java
You could instead allow by IP addresses if the IPs used by the programs are stable.
On Linux, instead of allowing by program name, you can allow by domain name. E.g.:
pluck + allow steampowered.com pluck + allow steamcommunity.com pluck + allow steamgames.com pluck + allow steamusercontent.com pluck + allow steamcontent.com pluck + allow steamstatic.com pluck + allow akamaihd.net
pluck + allow repository.playonlinux.com
If you only want to add settings:
pluck export >settings.txt $EDITOR settings.txt pluck import settings.txt
If you want to remove a lot of settings:
pluck export >settings.txt $EDITOR settings.txt pluck clear pluck import settings.txt
But using the users site may be easier.
pluck + block otherwise