gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: CDN cache ACL permissions and Tor Shield IP detection

Browse Source 
CDN Cache:
- Add file read permissions for cache, logs, and SSL dirs
- Add new RPCD methods to ACL (get_ca_cert, set_ssl_bump)

Tor Shield:
- Create tor-ip-update.sh for caching exit/real IPs
- Use --socks5-hostname for DNS through Tor
- Add cron job for periodic IP updates

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
CyberMind-FR 2026-01-30 15:15:46 +01:00
parent 189715e2ee
commit 38fbddd2a9
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
package/secubox/luci-app-cdn-cache/root/usr/share/rpcd/acl.d/luci-app-cdn-cache.json
View File

@ -2,14 +2,19 @@
"luci-app-cdn-cache": {
"description": "Grant access to CDN Cache Dashboard",
"read": {
"file": {
"/var/cache/cdn-squid/*": ["list", "read"],
"/var/log/cdn-cache/*": ["list", "read"],
"/etc/squid/ssl/*": ["list", "read"]
},
"ubus": {
"luci.cdn-cache": ["status", "stats", "cache_list", "top_domains", "bandwidth_savings", "hit_ratio", "cache_size", "policies", "exclusions", "logs"]
"luci.cdn-cache": ["status", "stats", "cache_list", "top_domains", "bandwidth_savings", "hit_ratio", "cache_size", "policies", "exclusions", "logs", "get_ca_cert"]
},
"uci": ["cdn-cache"]
},
"write": {
"ubus": {
"luci.cdn-cache": ["set_enabled", "purge_cache", "purge_domain", "purge_expired", "preload_url", "add_policy", "remove_policy", "add_exclusion", "remove_exclusion", "clear_stats", "restart"]
"luci.cdn-cache": ["set_enabled", "purge_cache", "purge_domain", "purge_expired", "preload_url", "add_policy", "remove_policy", "add_exclusion", "remove_exclusion", "clear_stats", "restart", "set_ssl_bump"]
},
"uci": ["cdn-cache"]
}