gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
b414ea3284
secubox-openwrt/package/secubox/secubox-cookie-tracker/files/config/cookie-tracker
CyberMind-FR 8055bca368 feat(interceptor): Add InterceptoR transparent traffic interception 
The Gandalf Proxy - unified traffic interception with 5 pillars:

New packages:
- secubox-cookie-tracker: HTTP cookie classification with mitmproxy addon
  - SQLite database for cookie tracking
  - 100+ known tracker domains (Google Analytics, Facebook, etc.)
  - CLI: cookie-trackerctl status/list/block/report

- luci-app-interceptor: Unified dashboard aggregating all pillars
  - Health score (0-100%) based on active pillars
  - Status cards: WPAD, mitmproxy, CDN Cache, Cookie Tracker, API Failover

Enhanced modules:
- luci-app-network-tweaks: WPAD enforcement via iptables redirect
  - setWpadEnforce/getWpadEnforce RPCD methods
  - Catches clients ignoring WPAD auto-discovery

- luci-app-cdn-cache: API failover and offline mode
  - stale-if-error patterns for /api/ and .json endpoints
  - WAN hotplug script (99-cdn-offline) toggles offline mode
  - collapsed_forwarding for duplicate request handling

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-11 10:58:53 +01:00

85 lines
2.2 KiB
Plaintext
Raw Blame History

config cookie_tracker 'main'
option enabled '1'
# Database path
option db_path '/var/lib/cookie-tracker/cookies.db'
# Auto-classify cookies using known tracker database
option auto_classify '1'
# Block tracking cookies (requires Vortex integration)
option block_tracking '0'
# Block advertising cookies
option block_advertising '0'
# Log level: debug, info, warn, error
option log_level 'info'
# Cookie categories and their defaults
config category 'essential'
option description 'Required for basic site functionality'
option block '0'
option alert '0'
config category 'functional'
option description 'Enhance user experience (preferences, languages)'
option block '0'
option alert '0'
config category 'analytics'
option description 'Track user behavior for site improvement'
option block '0'
option alert '1'
config category 'advertising'
option description 'Used for targeted advertising'
option block '1'
option alert '1'
config category 'tracking'
option description 'Cross-site tracking and fingerprinting'
option block '1'
option alert '1'
# Known tracker patterns (extend with custom rules)
config tracker_rule 'google_analytics'
option pattern '_ga|_gid|_gat|__utm'
option category 'analytics'
option source 'builtin'
config tracker_rule 'facebook'
option pattern '_fbp|_fbc|fr|datr'
option category 'advertising'
option source 'builtin'
config tracker_rule 'doubleclick'
option domain_pattern 'doubleclick\.net|googlesyndication\.com'
option category 'advertising'
option source 'builtin'
config tracker_rule 'segment'
option pattern 'ajs_user_id|ajs_anonymous_id'
option category 'analytics'
option source 'builtin'
config tracker_rule 'mixpanel'
option pattern 'mp_.*_mixpanel'
option category 'analytics'
option source 'builtin'
config tracker_rule 'hubspot'
option pattern '__hs.*|hubspotutk'
option category 'analytics'
option source 'builtin'
# Whitelist - never block these cookies
config whitelist 'trusted'
list domain ''
list cookie_name ''
# Integration settings
config integration 'mitmproxy'
option enabled '1'
option addon_path '/usr/lib/secubox/cookie-tracker/mitmproxy-addon.py'
config integration 'vortex'
option enabled '0'
# Feed blocked tracker domains to Vortex Firewall
option feed_blocklist '0'
Reference in New Issue View Git Blame Copy Permalink