-
-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
https.proxy/http.proxy whitelist urls #508
Comments
We can just filter the domains at the JS level (onLoad / onResponse), but ideally it would be at a higher level, so that even the connection will not proxied if the url is not in the whitelist. |
I think we will also need a |
Yes, ideally, it would be functional to make it possible to proxy both one site and several from the list. Other sites block, for example |
why not simply filtering it at the javascript level with a proxy plugin? |
filtering at the Go level will load the system less, as well as how to abort the connection/request at the JS module level? |
abort the connection? you can't, neither at the go level or js ... once it reached the proxy, you can only forward it (via the proxy) without modifying it ... the overhead in doing that from a plugin is minimal, i'm not very inclined to implement new features that can be more easily (and elegantly) implemented at the module level ... |
then how can you reduce the load on bettercap? because a bunch of domains are proxied, but only a few are needed. Since we can only forward requests, how to remove unnecessary domains and reduce the load in this way? |
actually i now think you do have a point ... and yeah, there's a place where i can put this in the code ... working on it! 👍 |
Thanks you. Wait for this. |
yes, i'm adding both a blacklist and whitelist new parameters |
done! now, say you only want to intercept
|
Looked at the implementation. Did I understand correctly: because we cannot break the connection, but we can only redirect it, then in the current implementation of the white and black lists you did not block the domains, but simply decide whether to skip the request through js proxy module or not. I understood correctly? |
Not just the js proxy module but the proxy all together, the request is only going to be "piped" from the proxy ... if you instead need a more selective approach, at the iptables level, you can use the |
I think it would not be bad to do in http.proxy / https.proxy a white list of domains/ips that can only be proxied.
The text was updated successfully, but these errors were encountered: