mirror of
https://codeberg.org/crimeflare/cloudflare-tor
synced 2025-01-10 21:48:14 +00:00
Import v1.0.7.1 from a.m.o.
This is a huge jump. Sorry, I will not manually import all intermediary versions to track development. Significant changes: - Major feature: Now works with Firefox 52 / current Tor Browser. Closes #2. - Major feature: Error page. Closes #3. - Major feature: Whitelist. Closes #4. - Regression: Indentation/style is busted. Reopens #1.
This commit is contained in:
parent
9c4cd9c984
commit
ce7503453c
BIN
src/icons/icon-16.png
Normal file
BIN
src/icons/icon-16.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 508 B |
BIN
src/icons/icon-32.png
Normal file
BIN
src/icons/icon-32.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 1.2 KiB |
Binary file not shown.
Before Width: | Height: | Size: 1.5 KiB After Width: | Height: | Size: 1.9 KiB |
Binary file not shown.
Before Width: | Height: | Size: 2.0 KiB After Width: | Height: | Size: 2.3 KiB |
@ -1,15 +1,31 @@
|
|||||||
{
|
{
|
||||||
"manifest_version": 2,
|
"manifest_version": 2,
|
||||||
"name": "Block Cloudflare MiTM Attack",
|
"name": "Block Cloudflare MiTM Attack",
|
||||||
"description": "If the destination use Cloudflare, block future request.",
|
"description": "If the destination website use Cloudflare, block further request.",
|
||||||
"version": "1.0.0",
|
"version": "1.0.7.1",
|
||||||
"homepage_url": "https://trac.torproject.org/projects/tor/ticket/24351",
|
"homepage_url": "https://trac.torproject.org/projects/tor/ticket/24351",
|
||||||
"permissions": ["webRequest","webRequestBlocking","<all_urls>"],
|
"permissions": ["webRequest","webRequestBlocking","<all_urls>","storage","activeTab"],
|
||||||
|
"options_ui": {
|
||||||
|
"page": "setwhitelist.html",
|
||||||
|
"browser_style": true
|
||||||
|
},
|
||||||
"icons": {
|
"icons": {
|
||||||
|
"32": "icons/icon-32.png",
|
||||||
"48": "icons/icon-48.png",
|
"48": "icons/icon-48.png",
|
||||||
"64": "icons/icon-64.png"
|
"64": "icons/icon-64.png"
|
||||||
},
|
},
|
||||||
"background": {
|
"browser_action": {
|
||||||
"scripts": ["stop_cf_mitm.js"]
|
"browser_style": true,
|
||||||
|
"default_icon": {
|
||||||
|
"16": "icons/icon-16.png",
|
||||||
|
"32": "icons/icon-32.png"
|
||||||
|
}
|
||||||
|
},
|
||||||
|
"background": {"scripts": ["stop_cf_mitm.js"]},
|
||||||
|
"applications": {
|
||||||
|
"gecko": {
|
||||||
|
"id": "{d86b44dd-ef12-4f28-ab1c-ea32664490ac}",
|
||||||
|
"strict_min_version": "52.0"
|
||||||
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
18
src/setwhitelist.html
Normal file
18
src/setwhitelist.html
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
<html><head><meta charset="utf-8"></head><body><form>
|
||||||
|
[Whitelist]<br>
|
||||||
|
1. Add FQDN you want to ignore. One FQDN per line. Click "Save".<br>
|
||||||
|
2. Open new tab and visit whitelisted website.<br>
|
||||||
|
<textarea cols="50" rows="10" id="myset_cfwhite"></textarea><br>
|
||||||
|
<br>
|
||||||
|
[Advanced]<br>
|
||||||
|
<label><input type="checkbox" id="myset_xincapsula"> Also detect and block Incapsula MiTM</label><br>
|
||||||
|
<label><input type="checkbox" id="myset_xgshield"> Also detect and block Google's Project Shield MiTM</label><br>
|
||||||
|
<label><input type="checkbox" id="myset_xsucuri"> Also detect and block Sucuri MiTM</label><br>
|
||||||
|
<label><input type="checkbox" id="myset_xignhttp"> Ignore http:// resource (not recommend)</label><br>
|
||||||
|
<label><input type="checkbox" id="myset_xigncj"> Ignore CSS|JS|Image|Font|Cursor resource (not recommend)</label><br>
|
||||||
|
<label><input type="checkbox" id="myset_xsimplewarn"> Don't show warning message; just change title and favicon(<img src="">)</label><br>
|
||||||
|
<label><input type="checkbox" checked disabled> I don't like Man-in-the-middle attack.</label><br><!-- justajokedonttakethisseriouslyLOL //-->
|
||||||
|
<br>
|
||||||
|
<input type="submit" value=" Save ">
|
||||||
|
</form><script src="setwhitelist.js"></script>
|
||||||
|
</body></html>
|
44
src/setwhitelist.js
Normal file
44
src/setwhitelist.js
Normal file
@ -0,0 +1,44 @@
|
|||||||
|
function saveWhitelist(e) {
|
||||||
|
e.preventDefault();
|
||||||
|
//WHITELIST
|
||||||
|
// check each line and remove bad fqdn (simple check)
|
||||||
|
var cf_tmpdata=document.querySelector("#myset_cfwhite").value.split("\n");
|
||||||
|
for (var i=0;i<cf_tmpdata.length;i++){
|
||||||
|
if (!/^([0-9a-z.-]{1,})\.([a-z]{2,20})$/.test(cf_tmpdata[i])||cf_tmpdata[i].startsWith(".")||cf_tmpdata[i].includes("..")||
|
||||||
|
cf_tmpdata[i].endsWith(".cloudflare.com")||cf_tmpdata[i]=='cloudflare.com'||
|
||||||
|
cf_tmpdata[i].endsWith(".incapsula.com")||cf_tmpdata[i]=='incapsula.com'||
|
||||||
|
cf_tmpdata[i].endsWith(".withgoogle.com")||cf_tmpdata[i].endsWith(".google.com")){cf_tmpdata[i]='';}
|
||||||
|
}
|
||||||
|
cf_tmpdata=cf_tmpdata.slice().sort(function(a,b){return a>b}).reduce(function(a,b){if (a.slice(-1)[0]!==b){a.push(b);};return a;},[]);// -duplicate
|
||||||
|
cf_tmpdata=cf_tmpdata.filter(v=>v!='');// -empty
|
||||||
|
cf_tmpdata=cf_tmpdata.join("\n");
|
||||||
|
browser.storage.local.set({myset_cfwhite: cf_tmpdata});
|
||||||
|
document.querySelector("#myset_cfwhite").value=cf_tmpdata;
|
||||||
|
//workaround - simplewarn didn't work as expected if igncj is active
|
||||||
|
if (document.querySelector("#myset_xsimplewarn").checked){document.querySelector("#myset_xigncj").checked=false;}
|
||||||
|
//ADVANCED
|
||||||
|
if (document.querySelector("#myset_xincapsula").checked){browser.storage.local.set({myset_xincapsula: "y"});}else{browser.storage.local.set({myset_xincapsula: "n"});}
|
||||||
|
if (document.querySelector("#myset_xgshield").checked){browser.storage.local.set({myset_xgshield: "y"});}else{browser.storage.local.set({myset_xgshield: "n"});}
|
||||||
|
if (document.querySelector("#myset_xsucuri").checked){browser.storage.local.set({myset_xsucuri: "y"});}else{browser.storage.local.set({myset_xsucuri: "n"});}
|
||||||
|
if (document.querySelector("#myset_xignhttp").checked){browser.storage.local.set({myset_xignhttp: "y"});}else{browser.storage.local.set({myset_xignhttp: "n"});}
|
||||||
|
if (document.querySelector("#myset_xigncj").checked){browser.storage.local.set({myset_xigncj: "y"});}else{browser.storage.local.set({myset_xigncj: "n"});}
|
||||||
|
if (document.querySelector("#myset_xsimplewarn").checked){browser.storage.local.set({myset_xsimplewarn: "y"});}else{browser.storage.local.set({myset_xsimplewarn: "n"});}
|
||||||
|
}
|
||||||
|
function loadWhitelist(){
|
||||||
|
function setCurrentChoice(r){
|
||||||
|
//WHITELIST
|
||||||
|
document.querySelector("#myset_cfwhite").value = r.myset_cfwhite||"";
|
||||||
|
//ADVANCED
|
||||||
|
if (r.myset_xincapsula=='y'){document.querySelector("#myset_xincapsula").checked=true;}else{document.querySelector("#myset_xincapsula").checked=false;}
|
||||||
|
if (r.myset_xgshield=='y'){document.querySelector("#myset_xgshield").checked=true;}else{document.querySelector("#myset_xgshield").checked=false;}
|
||||||
|
if (r.myset_xsucuri=='y'){document.querySelector("#myset_xsucuri").checked=true;}else{document.querySelector("#myset_xsucuri").checked=false;}
|
||||||
|
if (r.myset_xignhttp=='y'){document.querySelector("#myset_xignhttp").checked=true;}else{document.querySelector("#myset_xignhttp").checked=false;}
|
||||||
|
if (r.myset_xigncj=='y'){document.querySelector("#myset_xigncj").checked=true;}else{document.querySelector("#myset_xigncj").checked=false;}
|
||||||
|
if (r.myset_xsimplewarn=='y'){document.querySelector("#myset_xsimplewarn").checked=true;}else{document.querySelector("#myset_xsimplewarn").checked=false;}
|
||||||
|
}
|
||||||
|
function onError(e){console.log(`CFMITM_CFG Error:${e}`);}
|
||||||
|
var getting=browser.storage.local.get();
|
||||||
|
getting.then(setCurrentChoice, onError);
|
||||||
|
}
|
||||||
|
document.addEventListener("DOMContentLoaded", loadWhitelist);
|
||||||
|
document.querySelector("form").addEventListener("submit", saveWhitelist);
|
File diff suppressed because one or more lines are too long
Loading…
Reference in New Issue
Block a user