434756a7a1
If this fixes what I think it fixes, ill eat my fucking shoe
2022-09-29 21:54:58 +10:00
b43d207847
Make cookie apply to all subdomains
2022-09-28 00:41:04 +10:00
4716cf1be2
Improve & cleanup README, docker-compose, haproxy config
2022-09-25 22:54:51 +10:00
1a1faf9e03
Merge branch 'argon2' into kikeflare
2022-09-25 04:38:02 +00:00
84fe5037b9
Make the staggered start work properly
2022-09-25 14:34:21 +10:00
4806dea4fc
Merge branch 'argon2' into kikeflare
2022-09-24 14:57:05 +00:00
a6b6bc1510
word-break:break-all on header which can contain long domain name
2022-09-25 00:40:52 +10:00
fe972b0868
Remove unused times variable
2022-09-24 23:11:05 +10:00
a50b35b65d
argon2 implementation
...
- memory and time params customisable as well as "difficulty", default 1 iteration, 6000KB, 3 difficulty.
- updated the noscript bash method to work with argon2
- works in webworkers or main thread, capped at 8 threads (doesn't seem to crash firefox anymore -- we could go higher)
2022-09-24 22:56:55 +10:00
ea3f8bf291
Small docker improvement for better testing/development (no more 503)
2022-09-23 00:41:33 +10:00
d019440bc0
Move POW proof checking to POST and sign a cookie there, kinda like captcha flow, so we can do a more intensive one without it happening on every request. We just check the hmac now.
...
Still TODO actually converting it to argon, but should be straightforward from this point.
Another advantage of making POW check use POST is a better noscript experience. We now provide a box and "submit" button, so they don't have to mess with setting a cookie.
2022-09-23 00:26:20 +10:00
7eaa1d7ac0
Merge branch 'master' into kikeflare
2022-09-21 13:37:56 +00:00
521f9742c1
revert back to 2 thread max again because turns out firefox didnt get better, just tor limits to 1 thread anyway
2022-09-21 21:32:33 +10:00
614b437667
Add ability to include IPs in challenge hash generation, to lock cookies to IPs (like the pre-sig mode)
2022-09-21 21:31:48 +10:00
20a04f23c2
Change wording for public branch
2022-09-21 19:47:47 +10:00
e1c786a1d7
Add example snippet of how to acl/whitelist stats sockte
2022-09-18 19:01:38 +10:00
ff779c7cce
Merge branch 'captcha-auto-submit' into kikeflare
2022-09-17 15:47:29 +00:00
0af1a740ab
Make captcha submission automatic and not require clicking a "submit" form button
2022-09-18 01:41:02 +10:00
3f40192d55
Update README with new env vars
...
Remove dataplaneapi junk
2022-09-17 19:22:27 +10:00
349c73ecbf
Merge branch 'master' into kikeflare
2022-09-17 09:07:20 +00:00
d115ca6f46
ref #15
2022-09-17 19:06:37 +10:00
244e63eba2
Merge branch 'master' into kikeflare
2022-09-17 08:49:26 +00:00
194c5bb96c
Check ssl_fc for whether to set captcha cookie as secure close #15
2022-09-17 18:48:28 +10:00
e9e97a7843
Merge branch 'master' into kikeflare
2022-09-16 18:40:19 +00:00
3f7e48def6
update the nojs terminal script
2022-09-17 04:38:42 +10:00
f6d234ff7d
Merge branch 'master' into kikeflare
2022-09-16 18:06:55 +00:00
571d01db27
Merge branch 'master' into kikeflare
2022-09-16 18:04:52 +00:00
207c3af05b
Patch some bugs in the updated challenge.js especially related to the fallback mode
2022-09-17 04:04:27 +10:00
598790cb4f
- Fix some docker-compose issues close #14
...
- Move to new scheme with some hashing, sigs, and a random user key. close #13
- Change to sha256 rather than sha1 (temporary, but i guess its slightly more secure which is nice for now) ref #10
- Change POW output checked value
- Add lib for randombytes, udpate lua sha lib
- Remove outdated difficulty checks in frontend (was hardcoded 0 anyway) and since algo change is coming soon, there is no need to keep it
2022-09-17 02:45:27 +10:00
7dbc14feb3
remove my grecaptcha secrets (invalidated now thx :^)
2022-09-12 23:43:11 +10:00
0d991770cf
google recaptcha v2 support
2022-09-12 23:37:21 +10:00
c9e007639e
- Make the "checking your browser for robots" look more like cloudflare
...
- Reduce the default concurrency of the frontend script to 2 threads because any higher seems to crash firefox (and its quick enough even with 2 threads anyway)
- Remove the footerlogo from challenge and maintenance page, and update the link
2022-09-10 08:23:09 +10:00
fa4c437725
New based domain
2022-09-03 14:58:52 +00:00
da82579399
move the improved site title to a separate new section, so now the hcaptcha page has it too
2022-09-03 11:30:04 +00:00
d2c9e1a15f
reduce max concurrency to 2 because firefox is such a complete pile of dogshit that cant cope with multithreaded javascript
2022-09-02 14:31:40 +00:00
cc826accf3
style fixes for noscript pow
2022-09-02 14:30:29 +00:00
cf075b9ab2
improve loading page
2022-09-01 11:49:03 +00:00
c6227ab2cf
Merge branch 'master' into kikeflare
2022-04-26 07:32:08 +00:00
77518cee69
maintenance mode
2022-04-26 07:30:34 +00:00
5085dd69da
Merge branch 'master' into kikeflare
2022-04-26 13:07:48 +10:00
d3d4b12607
fix in some situations useragent can be nil
2022-04-26 13:07:12 +10:00
d845937f81
Merge branch 'master' into kikeflare
2022-04-25 14:34:04 +10:00
05602ced24
update readme
2022-04-25 14:33:30 +10:00
e139b04f4b
kikeflare branch customisations and error pages
2022-04-25 14:11:57 +10:00
1857e79137
Merge branch 'master' into kikeflare
2022-04-25 01:10:51 +10:00
76e9cad8a8
add map for whitelisting ip/subnets. also cleanup the config a bit.
2022-04-25 01:07:57 +10:00
ac4b29193b
padding change
2022-03-15 22:07:09 +11:00
d23ee6c897
kikeflare customisation branch
2022-03-15 22:00:02 +11:00
d5a83be478
Change last stage of the noscript command option to bash instead of sh.
...
Even if a lot of distros just symlink sh > bash the script needs to do some substitutions not supported in sh, so it's more correct. Who doesnt have bash these days anyway?
2022-02-20 23:14:39 +11:00
640f80bb56
for noscript users, in pow only mode (not when hcaptcha enabled), the page now includes a small encoded script that will get the correct captcha value. Slower than javascript, but good enough.
2022-02-20 01:01:40 +11:00
