大量更新

1-代理Xray/9-伪装网站/nginx-高版本.conf

@@ -0,0 +1,58 @@
+# Restrict access to the website by IP or wrong domain name) and return 400
+server {
+    listen unix:/dev/shm/h2c.sock proxy_protocol default_server;
+    # listen 5000;
+    http2 on;
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    server_name _;
+    return 400 "not allowed";
+}
+server {
+    # listen 5001;
+    listen unix:/dev/shm/h1.sock proxy_protocol default_server;
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    server_name _;
+    return 400 "not allowed";
+}
+
+# HTTP1 UDS listener
+server {
+    listen unix:/dev/shm/h1.sock proxy_protocol;
+    # listen 5001;
+    server_name bingo.107421.xyz;
+
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+
+    location / {
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; # enable HSTS
+        root /var/www/html/; 
+        index index.html index.htm;
+    }
+}
+
+# HTTP2 UDS listener
+server {
+    listen unix:/dev/shm/h2c.sock proxy_protocol;
+
+    http2 on;
+
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    
+    server_name bingo.107421.xyz;
+
+    # grpc settings
+    # grpc_read_timeout 1h;
+    # grpc_send_timeout 1h;
+    # grpc_set_header X-Real-IP $remote_addr;
+
+    # Decoy website
+    location / {
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; # enable HSTS
+        root /var/www/html;
+        index index.html index.htm;
+    }
+}

1-代理Xray/9-伪装网站/nginx.conf

@@ -0,0 +1,57 @@
+# Restrict access to the website by IP or wrong domain name) and return 400
+server {
+    listen unix:/dev/shm/h2c.sock http2 proxy_protocol default_server;
+    # listen 5000;
+    # http2 on;
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    server_name _;
+    return 400 "not allowed";
+}
+server {
+    # listen 5001;
+    listen unix:/dev/shm/h1.sock proxy_protocol default_server;
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    server_name _;
+    return 400 "not allowed";
+}
+
+# HTTP1 UDS listener
+server {
+    listen unix:/dev/shm/h1.sock proxy_protocol;
+    # listen 5001;
+    server_name bingo.107421.xyz;
+
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+
+    location / {
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; # enable HSTS
+        root /var/www/html/; 
+        index index.html index.htm;
+    }
+}
+
+# HTTP2 UDS listener
+server {
+    listen unix:/dev/shm/h2c.sock http2 proxy_protocol;
+
+
+    set_real_ip_from unix:;
+    real_ip_header proxy_protocol;
+    
+    server_name bingo.107421.xyz;
+
+    # grpc settings
+    # grpc_read_timeout 1h;
+    # grpc_send_timeout 1h;
+    # grpc_set_header X-Real-IP $remote_addr;
+
+    # Decoy website
+    location / {
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; # enable HSTS
+        root /var/www/html;
+        index index.html index.htm;
+    }
+}

1-代理Xray/9-伪装网站/在线安装nginx.sh

@@ -0,0 +1,37 @@
+#!/bin/bash
+
+
+sudo apt install -y curl gnupg2 ca-certificates lsb-release ubuntu-keyring
+
+curl https://nginx.org/keys/nginx_signing.key | gpg --dearmor \
+| sudo tee /usr/share/keyrings/nginx-archive-keyring.gpg >/dev/null
+
+gpg --dry-run --quiet --no-keyring --import --import-options import-show /usr/share/keyrings/nginx-archive-keyring.gpg
+
+echo "deb [signed-by=/usr/share/keyrings/nginx-archive-keyring.gpg] \
+http://nginx.org/packages/ubuntu `lsb_release -cs` nginx" \
+    | sudo tee /etc/apt/sources.list.d/nginx.list
+
+echo -e "Package: *\nPin: origin nginx.org\nPin: release o=nginx\nPin-Priority: 900\n" \
+    | sudo tee /etc/apt/preferences.d/99nginx
+
+sudo apt update
+sudo apt install -y nginx
+
+mkdir -p /var/www/html/
+mv dist.zip /var/www/html/
+cd /var/www/html/
+unzip dist.zip
+chown -R www-data:www-data /var/www/html/
+chmod -R 755 /var/www/html/
+
+
+systemctl restart nginx
+systemctl enable nginx
+
+systemctl restart xray
+systemctl enable xray
+
+journalctl -u nginx -n 100 -f
+
+journalctl -u xray -n 100 -f