| # prefetch wstunnel's master for nix, and store the result in wstunnel.json | |
| nix-prefetch-git https://github.com/erebe/wstunnel > wstunnel.json | |
| # and build the wstunnel-tarball with nix, using the haskell.nix infra structure as above (see default.nix) | |
| nix build \ | |
| -f default.nix \ | |
| rpi64-musl.wstunnel-tarball \ | |
| -o rpi64-musl-wstunnel-tarball | |
| --arg wstunnel-json ./ws-tunnel.json |
| domain | |
| # Set this path to your site's directory. | |
| #root * /usr/share/caddy | |
| root * /var/www/domain | |
| # Enable the static file server. | |
| file_server | |
| # Another common task is to set up a reverse proxy: |
Adapted from caddy systemd Service Unit
The provided file should work with systemd version 219 or later. It might work with earlier versions.
The easiest way to check your systemd version is to run systemctl --version.
We will assume the following:
原帖来自于Vmess + TCP + TLS 方式的 HTTP 分流和网站伪装
这里只是塞了个trojan进去, 背景 请看原帖。
利用haproxy listen 443端口,同时处理web+trojan+v2ray流量。
流程图如下:( 不知道为啥gist不显示,typora里倒是显示正常 )
目前 Vmess + WebSocket + TLS (以下简称 wss)方式,因其特征如同 HTTPS 流量,可以隐藏 V2Ray 路径,主动侦测会得到正常 HTTP 网站响应,具有良好的伪装能力,目前被广泛用于反审查。
但是如此强大的伪装能力,需要付出严重的性能代价:TLS 1.3 握手需要消耗 1-rtt,WS 握手也需要消耗 1-rtt,增大了握手延迟。V2Ray 增加了 mux 以减少握手的发生,然而实际使用中 mux 体验并不好,很多用户选择关闭。
最近兴起了一个新的反审查工具——Trojan,这个工具将一个类似 Socks 的协议直接通过 TLS 传输,并将认证失败的流量交由 Web 服务器处理。降低 WS 延迟的同时,提供与 wss 方式一样的伪装能力。但是该工具较为年轻,没有路由功能,各平台图形化客户端也不完善。
| function pn_get_attachment_id_from_url( $attachment_url = '' ) { | |
| global $wpdb; | |
| $attachment_id = false; | |
| // If there is no url, return. | |
| if ( '' == $attachment_url ) | |
| return; | |
| // Get the upload directory paths |
| <?php | |
| // Generating a meta description using standard WP components | |
| function meta_description( $char_limit ) { | |
| $tagline = get_bloginfo ( 'description' ); | |
| $post_object = get_post(); | |
| $excerpt = $post_object->post_excerpt; // Get the raw excerpt, warts (tags) and all. | |
| $content = $post_object->post_content; // Get the raw content. | |
| if ( !empty( $excerpt ) ) { // If there is an excerpt lets use it to generate a meta description | |
| $excerpt_stripped = strip_tags( $excerpt ); // Remove any tags using the PHP function strip_tags. | |
| $excerpt_length = strlen( $excerpt_stripped ); // Now lets count the characters |
| # Optimized my.cnf configuration for MySQL/MariaSQL | |
| # | |
| # by Fotis Evangelou, developer of Engintron (engintron.com) | |
| # | |
| # === Updated December 2018 === | |
| # | |
| # The settings provided below are a starting point for a 2GB - 4GB RAM server with 2-4 CPU cores. | |
| # If you have less or more resources available you should adjust accordingly to save CPU, | |
| # RAM and disk I/O usage. | |
| # The settings marked with a specific comment or the word "UPD" after the value |
| # Client id from Google Developer console | |
| # Client Secret from Google Developer console | |
| # Scope this is a space seprated list of the scopes of access you are requesting. | |
| # Authorization link. Place this in a browser and copy the code that is returned after you accept the scopes. | |
| https://accounts.google.com/o/oauth2/auth?client_id=[Application Client Id]&redirect_uri=urn:ietf:wg:oauth:2.0:oob&scope=[Scopes]&response_type=code | |
| # Exchange Authorization code for an access token and a refresh token. | |
| curl \ |