I am a bit unsure if my config is correct. When I start bXSS I get: <code class="n

Thanks for your help <div class="snippet-clipboard-content notranslate position-re

bXSS listening on port undefined about bxss HOT 3 CLOSED

lewisardern commented on August 26, 2024

bXSS listening on port undefined

from bxss.

Comments (3)

LewisArdern commented on August 26, 2024

please post your full config and i will review it, remove any sensitive info

from bxss.

commented on August 26, 2024

Thanks for your help

const config = {};

config.twilio = {};
config.gmail = {};
config.slack = {};
config.letsEncrypt = {};
config.ciscoSpark = {};
config.discord = {};
config.twitter = {};
config.github = {};
config.port = 443;

config.port.http = process.env.httpPort || 80;
config.url = process.env.url || 'mydomain.com';
config.url = 'mydomain.com';
config.boundary = process.env.boundary || '#!!!!#';
config.bodyLimit = process.env.bodyLimit || '50mb';

config.letsEncrypt.TLS = true;
config.port.https = 443;
  process.env.httpsPort || 443;
config.letsEncrypt.publicKey = `/etc/letsencrypt/live/mydomain.com/fullchain.pem`;
  process.env.publicKey || `/etc/letsencrypt/live/${config.url}/fullchain.pem`;
config.letsEncrypt.privateKey = `/etc/letsencrypt/live/mydomain.com/privkey.pem`;
  process.env.privateKey || `/etc/letsencrypt/live/${config.url}/privkey.pem`;
config.letsEncrypt.ca = `/etc/letsencrypt/live/mydomain.com/chain.pem`;
  process.env.ca || `/etc/letsencrypt/live/${config.url}/chain.pem`;

// Remove if you dont' want Twilio
// config.twilio.accountSid = process.env.accountSid || '';
// config.twilio.authToken = process.env.authToken || '';
// config.twilio.to = process.env.twilioTo || ['']; // add additonal numbers with comma seperation e.g '+447000000', ''
// config.twilio.from = process.env.twilioFrom || '';

// Remove if you dont want Discord
// config.discord.token = process.env.discordToken || '';
// config.discord.channel = process.env.discordChannel || '';

// Remove if you dont want Slack
// config.slack.token = process.env.token || '';
// config.slack.channel = process.env.slackChannel || '';

// Remove if you dont want Cisco Webex Teams
// config.ciscoSpark.token = process.env.sparkToken || '';
// config.ciscoSpark.sparkRoom = process.env.sparkRoom || ['']; // add additonal emails with comma seperation e.g '[email protected]', ''

// Remove if you don't want Twitter
// config.twitter.consumer_key = process.env.twitterConsumerKey || '';
// config.twitter.consumer_secret = process.env.twitterSecret || '';
// config.twitter.access_token_key = process.env.twitterAccessKey || '';
// config.twitter.access_token_secret = process.env.twitterAccessSecret || '';
// config.twitter.recipient_id = process.env.recipient || ['']; // add additional recipients which can be comma seperation e.g '12030210321','1232131321'

// Remove if you don't want email
// config.smtp.user = process.env.smtpUser || '[email protected]';
// config.smtp.pass = process.env.smtpPass || 'hunter2';
// config.smtp.port = process.env.smtpPort || '469';
// config.smtp.host = process.env.smtpHost || 'smtp.example.com';
// config.smtp.tls = process.env.smtpTls || true; // true or false
// config.smtp.to = process.env.smtpTo || ['[email protected]']; // add additonal emails with comma seperation '', ''

// Remove if you don't want github
// config.github.accessToken = process.env.accessToken || '';
// config.github.repo = process.env.githubRepo || '';

// 1 Everything
// 0 Just DOM Nodes
config.intrusiveLevel = 0;

module.exports = config;

from bxss.

LewisArdern commented on August 26, 2024

You need to decide if you are going to run as HTTP or HTTPS. Are you running it beind anything? if you arent using HTTPS all you need to do is:

const config = {};
config.port = {};

config.port.http = process.env.httpPort || 80;

config.url = process.env.url || 'localhost';  // <-- your domain

config.boundary = process.env.boundary || '#!!!!#';
config.bodyLimit = process.env.bodyLimit || '50mb';

config.letsEncrypt.TLS = false;

If you intend to use HTTPS, then you can do:

const config = {};
config.port = {};

config.port.http = process.env.httpPort || 80;

config.url = process.env.url || 'localhost';  // <-- your domain

config.boundary = process.env.boundary || '#!!!!#';
config.bodyLimit = process.env.bodyLimit || '50mb';

config.letsEncrypt.TLS = true;
config.port.https = process.env.httpsPort || 443;
config.letsEncrypt.publicKey =
  process.env.publicKey || `/etc/letsencrypt/live/${config.url}/fullchain.pem`;
config.letsEncrypt.privateKey =
  process.env.privateKey || `/etc/letsencrypt/live/${config.url}/privkey.pem`;
config.letsEncrypt.ca = process.env.ca || `/etc/letsencrypt/live/${config.url}/chain.pem`;

from bxss.

bXSS listening on port undefined about bxss HOT 3 CLOSED

Comments (3)

Related Issues (20)

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent