cm0s

note: 060417
a tor onion service set to stealth mode is
NOT listed in the tor directory and in order
for a visitor to access the site they need the 'key' as
explained below added to their torrc or torrc file in the
tor browser bundle
this means your site is not tied to any
gen'd hidden service addy and you have full control of the
traffic, basically a 'closed' site member only
you can not even access the site from the server itself
without the 'key' added to the torrc file
to me, this is one of the best fucken ways to host a site
#
# nginx/naxsi | tor website
# stealth mode
# 022517_edit | arch linux
# -----
tor hidden service stealth mode
nginx config on arch linux
# -----
darknet info: en.wikipedia dot org/wiki/Darknet
tor stealth info: whonix dot org/wiki/Hidden_Services
deep web info: en.wikipedia dot org/wiki/Deep_Web
tor info: en.wikipedia dot org/wiki/Tor_%28anonymity_network%29
stunnel: en.wikipedia dot org/wiki/Stunnel
openvpn: en.wikipedia dot org/wiki/OpenVPN
airvpn ssl: airvpn dot org/ssl/
nginx info: en.wikipedia dot org/wiki/Nginx
web app firewall: en.wikipedia dot org/wiki/Web_application_firewall
naxsi: proteansec dot com/application-security/naxsi/
duz/dontz: hongkiat dot com/blog/do-donts-tor-network
crenshaw: youtube dot com/watch?v=eQ2OZKitRwc
# -----
gen the tor hidden service name...
# netctl stop eth0
# ip link set eth0 down
# cp /etc/tor/torrc /etc/tor/torrcbkup
# nano /etc/tor/torrc
at the end add this shit:
# -----
##hidden service site in stealth mode
HiddenServiceDir /var/lib/tor/
# HiddenServicePort 80 127.0.0.1:80
HiddenSErvicePort 443 127.0.0.1:443
HiddenServiceAuthorizeClient stealth SUMFUKGROUP
# -----

fire up shit...
# netctl start eth0
# /usr/bin/tor -f /etc/tor/torrc

give couple secs then stop tor...
# kill $(ps aux | grep '/usr/bin/tor' | awk '{print $2}')

snag the hostname...
# cat /var/lib/tor/hostname
you'll get sumthin like this:
c6yn3YERSITEk3o7.onion u8fAQVZixxxx/kbqTJkzHR # client: SUMFUKGROUP

the hostname is to be placed in anyone on tor at the bottom of their
torrc file, in the browser bundle usually located:
/browser/TorBrowser/Data/Tor/torrc
gets added as such:
HidServAuth c6yn3YERSITEk3o7.onion u8fAQVZixxxx/kbqTJkzHR

on the box running the nginx server you do not need to add it to your
/etc/tor/torrc config file but if you are running tor regular without
the tbb on another box you do need to add it to your torrc so your
'torified' browser can access the site via the tor network

harden the hosts file: h0stz
harden the .httaccess: htaxx

to config AUR
scroll down to 'packer' section run those commands then...
# cd /home/build
# sudo -u nobody packer -S nginx-mainline-waf
example config for tor hidden service/naxsi:
#
# ----- nginx config -----##

user www-data;
worker_processes auto;
pcre_jit on;

events {
worker_connections 768;
# multi_accept on;
}

http {

##
# Basic Settings
##

sendfile on;
tcp_nopush on;
tcp_nodelay on;
keepalive_timeout 65;
types_hash_max_size 2048;
server_tokens off;

# server_names_hash_bucket_size 64;
# server_name_in_redirect off;

include /etc/nginx/mime.types;
default_type application/octet-stream;

##
# Logging Settings
##

access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;

##
# Gzip Settings
##

gzip on;
gzip_disable "msie6";

# gzip_vary on;
# gzip_proxied any;
# gzip_comp_level 6;
# gzip_buffers 16 8k;
# gzip_http_version 1.1;
# gzip_types text/plain text/css application/json application/x-javascript text/xml application/xml application/xml+rss text/javascript;

##
# nginx-naxsi config
##
Uncomment it if you installed nginx-naxsi
##

include /etc/nginx/naxsi_core.rules;

##
# nginx-passenger config
##
# Uncomment it if you installed nginx-passenger
##

#passenger_root /usr;
#passenger_ruby /usr/bin/ruby;

##
# Virtual Host Configs
##

include /etc/nginx/conf.d/*.conf;
include /etc/nginx/sites-enabled/*;

## Include for blocking
include blacklist.conf;
include blockips.conf;
}


#mail {
# # See sample authentication script at:
# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
#
# # auth_http localhost/auth.php;
# # pop3_capabilities "TOP" "USER";
# # imap_capabilities "IMAP4rev1" "UIDPLUS";
#
# server {
# listen localhost:110;
# protocol pop3;
# proxy on;
# }
#
# server {
# listen localhost:143;
# protocol imap;
# proxy on;
# }
#}
#######################################################
#
# sites-available config:
#
server {
listen 127.0.0.1;
root /srv/html/;
index home.html;
server_name c6yn3YERSITEk3o7.onion; # replace this with your own
}
#
#######################################################
#
# sites-enabled:
#
server {
listen 127.0.0.1:443;
root /srv/html/;
index 1ndx.html;
server_name c6yn3YERSITEk3o7.onion
ssl on;
ssl_certificate /etc/nginx/ssl/yerkey.crt;
ssl_certificate_key /etc/nginx/ssl/yerkey.key;
add_header X-Frame-Options "DENY";
server_tokens off;
location / {
try_files $uri $uri/ =404;
include /etc/nginx/naxsi.rules;
}
}

server {
listen 127.0.0.1;
server_name c6yn3YERSITEk3o7.onion
return 301 https://c6yn3YERSITEk3o7.onion$request_uri;
}
#
########################################################
#
the config above is set to allow only https traffic
often question is 'why do that, tor is encrypted'
plus the 'untrusted connection window' annoyance
for me itz just a preference, i like layerz
and the untrusted window acts as a blocker in a way
so config this shit how you want yer shit to roll

# mkdir /etc/nginx/ssl
# openssl req -x509 -sha256 -newkey rsa:2048 -keyout /etc/nginx/ssl/yerkey.key -out /etc/nginx/ssl/yercert.crt -days 1024 -nodes -subj '/CN=c6yn3YERSITEk3o7.onion'

there ya go, a nyce one liner, make sure yer site's domain is after the '/CN' common name
make sure in the config that naxsi core rules are uncommented and herez the blakl15t
the blokip should be in the config also

add this into your /etc/nginx/naxsi.rules:

# ------
# Sample rules file for default vhost.

# LearningMode;
SecRulesEnabled;
#SecRulesDisabled;
DeniedUrl "/RequestDenied";

## check rules
CheckRule "$SQL >= 8" BLOCK;
CheckRule "$RFI >= 8" BLOCK;
CheckRule "$TRAVERSAL >= 4" BLOCK;
CheckRule "$EVADE >= 4" BLOCK;
CheckRule "$XSS >= 8" BLOCK;
# -------

this has learning mode OFF which means shit is blocked
# systemctl start nginx
# systemctl status nginx

go to your site's addy try to access a file say: https://c6yn3YERSITEk3o7.onion/blank.html?asd=----

to see if the 'attack' hit yer logz...
# tail -f /var/log/nginx/error.log

should see something like this:

2016/11/16 15:28:18 [error] 15277#0: *1 NAXSI_FMT: ip=127.0.0.1&server=c6yn3YERSITEk3o7.onion&uri=/blankshit.html&learning=0&total_processed=6&total_blocked=1&zone0=ARGS&id0=1007&var_name0=asd, client: 127.0.0.1, server: c6yn3YERSITEk3o7.onion, request: "GET /blankshit.html?asd=---- HTTP/1.1", host: "c6yn3YERSITEk3o7.onion"

that means shit is working
mod any of the configz to yer needs, any improvements, suggestions please contact
#
https://github.com/mariusv/nginx-badbot-blocker
https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker
http://7bj57iubvkvwe3n4vozvx5qiixm67te4yue76tsdu6l5aeoti342spqd.onion/nav/linux/nginx.html

Hello !
 
OP the truth is that we're all being watched by someone or something and increasingly so.
 
No software is perfect either, regardless of if it's Tor or VPN software. But confining yourself to not using certain technologies, unless proven to be unsafe (such as the PPTP protocol), doesn't help you much necessarily. This is why we collectively have to fight for our rights, in each of our respective countries. If your argument for not using Tor is that you might get targeted more, then you might as well stop going online in a sense. If the same argument is made (and it has been) for VPNs, will you stop using them too?
 
Also, I don't think you're paranoid. Being a concerned and aware citizen is not being paranoid; that's simply what people in high places would like you to believe, in order to marginalise your opinion.
 
Furthermore, if there's a time to be paranoid for a good reason, these must surely be the times.
 
Air Staff always recommend a partition of trust. Using a VPN + Tor. This helps defeat malicious Tor nodes too. But it depends on what you're trying to achieve.
 
By the way, I should add that at least the Tor browser is hardened; especially compared to a normal browser. So if they're going to compromise you or anyone, you might as well make 'em work for it
 
Sent to you from me with datalove

what Toby said
 
cheerz

wwgd

cheerz

LOVE the AK-47 survival kit
 
cheerz

LOVE the AK-47 survival kit
 
cheerz

https://www.whonix.org/wiki/Dev/Leak_Tests
 
malwaretips.com
 
i do this for firefox...
 
// 2001: Disable webRTC user_pref("media.peerconnection.enabled", false); user_pref("media.peerconnection.use_document_iceservers", false); user_pref("media.peerconnection.identity.enabled", false); user_pref("media.peerconnection.video.enabled", false); user_pref("media.peerconnection.identity.timeout", 1); user_pref("media.navigator.permission.disabled", true); user_pref("media.navigator.enabled", false); user_pref("media.navigator.permission.disabled", true); 
if you want you can grab a copy of my user js here
i took what i found on the forum from here
and tweaked it further here's the js i use
 
for linux users after the first connect to vpn i disconnect and check the /etc/resolv files
then i chattr the resolv.conf that locks in my dns because after a week i have went back
and seen my isp put their shit in there, even tho i had settings locked on my router
 
askapache has one of the best tools i've used so far
their january blog article talks about the net getting bloated
 
to go back to your netflix/vpn situation, i just ran into same thing myself and why bigbrosbitch post
with firefox really helped, one of the best posts i've read on any forum coz it nails it, the browser is where
the 'rubber meets the road' plus in my opinion it's even harder for Microsoft software users, who knows what all
is leaking or being sent out via their operating systems, same deal in my opinion with some of the linux distros out
today, they are all getting 'packaged pretty' and that's fine but end of the day, i don't trust pre config operating systems
even on arch i do my best to shut a lot of crap down, another tool you can use to check stuff and it's also available if anyone
is on windows is wireshark, do a dump of your traffic for say 15 minutes, that'll tell you exactly what is going on
if i'm online i'm doing a wireshark dump, that way if something happens coz of my fault or an error at a site etc
i got something to look at, wireshark is one of the most powerful network diagnostic tools out there, you don't have to be a guru
to use the basics of it
i like watching tv from Canada, The Nature of Things, haven't done it lately but yeah like netflix i have to make sure my stuff is ok
in order to vpn up to Canada and be fine on their site,
last but not least when i'm just doing general browsing i shut java off and don't accept cookies, for most sites that's fine
if you don't know how to add the user.js file and you are on windows, right click your firefox icon, think it's add the -p
and create a profile, stock one should show auto, if you got plugins, bookmarks etc already good make sure you copy that
original set up first tho then paste your backup copy into the new profile, remove all created ones first, meaning launch firefox
first so it gives your new profile a custom id, then close it, copy your old files back over, add the user.js to that new folder
after you remove the 'stock' firefox files, this gives you a duplicate copy of your fav config then add your user.js to that folder
this way your tweaks will kick in and you shouldn't have any leaks, it's trial and error, i'm always googling something on firefox
coz there's always something i can do further to make browsing online a little better

this kind of stuff pisses me off and here's why: we buy the same shit over and over again, you pay for cable tv, someone else tells you when you can watch it unless you pay extra for dvr, then you got a boat load of commericals to skim through, so even then, bad way to go, next you pay for it on dvd/bluray, or you pay for it like netflix then they hammer you on geo, forcing ya to basically get a server of your own online from xyz location just to tag it and stream down, i'm from the states and i can't stand half our programming, the couple shows i do like are filmed across the pond anyway, but you think of how much money they make on just reselling xyz show in different formats, that's the thing that isn't fair at all, average neighbor where i live pays over a hundred a month, that's about 1400 bucks a year with taxes, service charges etc and a lot of that is commericals
and when you do dvr, you get a boat load of restrictions on how you can handle that file, so my reply is get a server online, whatever country you want to watch from and even at x amount of dollars per month, you can get the video url, direct from whatever server they pipe it from, down it
we got the friggen kardashians and junk like that, makes me want to puke, that kind of stuff would make fungus committ suicide, there are sites online you can use to grab direct video urls, some work on some sites some on others, but in the end it's worth it just to be able to have control of your content, watch it how you want when you want and such, netflix doesn't play with linux well either took me a while figure that out for a friend
coz they know it's 'open source' via chromium, which i don't use but still, it's always something to control ya and resell their shit back at ya over and over again, we buy the same thing multiple times, unreal
i know this, hollywood's biggest threat isn't a torrent, most of their stuff isn't even worth it
why i watch tv from other countries, at least bbc has some kind of science stuff on there

do whatever giganerd says bruh

Hello !
 
zhang have you ever heard the joke: If you don't know your TLAs then you will be engaging in CLAs?
Aka, if you don't know your Three Letter Acronyms, you'll be engaging in Career Limiting Activities. Hahaha.
Thanks for the info zhang.
 
Thanks for the post OP - was a good doc.

got a hold of comcast figured out what i was doing wrong
what i was doing wrong was in the ddwrt from my sb6121
moto modem i'd cat 5 to the ddwrt
what i was doing was i saw 'dhcp automatic'
and made that static not understanding that that was the
setting for comcast's side of my local down below i set things
as usual to static dns settings blah blah
thanx for the help everyone finally got it solid very happy
 
cheerz

itz all about the pup treatz....

A few notes.
APG is not actively developed anymore. Use OpenKeychain instead. It's vital to know that CyanogenMod moved quite far away from the code basis of AOSP. Sure, they use it but they implemented so many features of their own into it, I wouldn't say it's AOSP-based anymore. Alternatives that are closer to the AOSP basis and which also implemented some of the features of CM are ParanoidAndroid (PA) and Android Open Kang Project (AOKP). Also look at those projects if you are planning on replacing your stock ROM. If you bought a smartphone just to communicate in a secure way, you probably are misusing your phone. Today's smartphones are mostly there for entertainment.  
Well, the Android base is completely open source (AOSP). What this sentence tells is that things like drivers for example (which belong to the Android system, too) are phone-specific; these are provided by the manufacturers which in most cases do not publish the source code of them. Custom ROM writers just copy the driver files from the stock ROM and implement them into the custom ROM. So it's safe to say, an Android phone is never 100% open source, while the code basis can be.

Not sure what you meant in your other part of the post, but in order to have SSL running
you don't have to wait for any verification from your reseller (Namecheap etc.) and you can
simply authorize your domain's SSL certificate using MX, TXT or HTTP methods.
All of the methods are supported with EFF sponsored https://LetsEncrypt.org CA.
 
If you still want to avoid using high ports for your target audience, you have 2 options:
1) Running a VPS with a public IPv4, where the VPN client will run and forward it to your (home) backend
2) Running a Tor hidden service.

iptables -t nat -A PREROUTING -i tun0 -p tcp --dport 51206 -j DNAT --to 192.168.1.105:80
iptables -t nat -A PREROUTING -i tun0 -p tcp --dport 51207 -j DNAT --to 192.168.1.105:443
 
You will need 2 high ports if you wish to use both 80 and 443 local ports.
 
Those 2 don't make sense since they will never match - your tun0 IP will be 10/8 and not 94.100.23.163:
 
iptables -I FORWARD -i tun0 -p udp -d 94.100.23.163 --dport 51206 -j ACCEPT # forward airvpn port
iptables -I FORWARD -i tun0 -p tcp -d 94.100.23.163 --dport 51206 -j ACCEPT # forward airvpn port

You forgot the rule that will accept 51206 on tun0 and DNAT it to your webservers 80/443.

here's the css you can mod it further however you want
i took some universal theme i found on userstyles dot org
modded it so credz to unknown author
if you want to see some screenshots digiroast dot net
page 'airvpn dot html' no js etc runnen tor traffic welcome
 

/* about:config search stylish set editor to 1 edited 091516 modded by cm0s original author unknown */ @namespace url([url="http://www.w3.org/1999/xhtml"]http://www.w3.org/1999/xhtml[/url]); @-moz-document domain(airvpn.org) { /*----- SITES TO EXCLUDE -----*/ @-moz-document regexp("https?://(?!(www.your.sites.here.com|forum.example.com)).*"), url-prefix(ftp://), url-prefix(file://), url-prefix(about:), url-prefix(javascript) { html, #newtab-window { background-image: none !important; background-color: #000 !important; } #user_navigation a { color: #3c3 !important; } #cookieLaw { display: none; } #board_statistics { display: none; } #footer_utilities > p:nth-child(3) { display: none; } .breadcrumb { display: none; } #board_index { position: relative; width: 100%; } #copyright { display: none; } #index_stats { display: none; } #footer_utilities { display: none; } div.ipsSideBlock:nth-child(1) > div:nth-child(2) { display: none; } div.ipsSideBlock:nth-child(2) > div:nth-child(2) { display: none; } .message.error { background-color: #F3E3E6; border-color: #E599AA; color: #80001C; display: none; } .category { display: block; margin: 30px; padding: 10px; box-shadow: 0px 0px 3px #808080; border-radius: 10px; background: #000; } .air_nav1_item_sel { background-color: #000 !important; color: #4091F9 !important; font-weight: bold; } img.bitcoinsign { visibility: hidden !important; } #branding { border: 0px none; background-color: #000 !important; background-image: url("/img/gradient4.png") !important; background-repeat: repeat-x !important; } #primary_nav > li > a, #community_app_menu > li > a, #community_app_menu .submenu_container li > a { height: 16px; padding-top: 12px; padding-left: 10px; padding-right: 10px; color: #080 !important; background-color: #000 !important; } pre.prettyprint, code.prettyprint { background-color: #222 !important; border-radius: 4px; color: #000; padding: 5px; border: 1px solid #C9C9C9; overflow: auto; margin-left: 10px; font-size: 13px; line-height: 140%; font-family: monospace !important; } table.cke_editor td { padding: 0px !important; background: #000 !important; } .cke_skin_ips .cke_wrapper { padding: 0px 5px 0px 3px !important; border: 2px solid #000 !important; background-color: #000 !important; background-image: none !important; } pre.prettyprint { width: 95%; margin: 1em auto; padding: 1em; background: #000 !important; color: #080 !important; } pre._prettyXprint { background-color: #111 !important; border-radius: 4px; color: #080 !important; border: 1px solid #448AE7 !important; overflow: auto; font-size: 13px; line-height: 140%; width: 95%; margin: 1em auto; padding: 1em; white-space: pre-wrap; font-family: monospace !important; } .post_block .post_controls li a.ipsButton_secondary { opacity: 1; background: #000 !important; } .ipsLikeButton.ipsLikeButton_enabled { background: #7B96BB url("[url="https://airvpn.org/public/style_images/master/like_button.png"]https://airvpn.org/public/style_images/master/like_button.png"[/url]) no-repeat scroll left top; border: 1px solid #7B96BB; background: #000 !important; color: #080 !important; } .ipsButton_secondary { height: 22px; line-height: 22px; font-size: 12px; padding: 0px 10px; background: transparent -moz-linear-gradient(center top , #000 0%, #000 100%) repeat scroll 0% 0%; border: 1px solid #7B96BB; box-shadow: 0px 1px 0px #FFF inset, 0px 1px 0px rgba(0, 0, 0, 0.3); border-radius: 3px; color: #080 !important; display: inline-block; white-space: nowrap; transition: all 0.2s ease-in-out 0s; } .topic_buttons li.important a, .topic_buttons li.important span, .ipsButton .important, .topic_buttons li a, .topic_buttons li span, .ipsButton { font: 300 14px/1.3 "Proxima-Nova",Helvetica,Arial,sans-serif; height: auto; padding: 0.5em; background: #000 !important; color: #080 !important; } .ipsLikeButton.ipsLikeButton_disabled { background: #000 url("[url="https://airvpn.org/public/style_images/master/like_button.png"]https://airvpn.org/public/style_images/master/like_button.png"[/url]) no-repeat scroll left bottom; border: 1px solid #ACACAC; color: #080 !important; background: #000 !important; } @media screen { .str, .kwd, .com, .typ, .lit { color: #448AE7 !important } .pun, .opn, .clo, .pln, .tag, .atn, .atv, .dec, .var, .fun { color: #448AE7 !important } } #ipboard_body > div:nth-child(7) { display: none !important; } #ipboard_body > div:nth-child(9) { display: none !important; } #ipboard_body > div:nth-child(11) { display: none !important; } /*----- DEFAULT TEXT, BORDER & BACKGROUND COLORS -----*/ * { color: #070 !important; text-shadow: 0 0 3px #000 !important; box-shadow: none !important; background-color: transparent !important; border-color: #040 !important; border-top-color: #040 !important; border-bottom-color: #040 !important; border-left-color: #040 !important; border-right-color: #040 !important} body {background: transparent !important} *:before, *:after {background-color: transparent !important; border-color: #040 !important} a, a * { color: #080 !important; text-decoration: none !important} a:hover, a:hover *, a:visited:hover, a:visited:hover *, span[onclick]:hover, div[onclick]:hover, [role="link"]:hover, [role="link"]:hover *, [role="button"]:hover *, [role="menuitem"]:hover, [role="menuitem"]:hover *, .link:hover, .link:hover * { color: #080 !important; text-shadow: 0 0 5px rgba(0,128,0,0.9) !important} a:visited, a:visited * { color: #080 !important} a.highlight, a.highlight *, a.active, a.active *, .selected, .selected *, [href="#"] { color: #080 !important; font-weight: bold !important} h1, h2, h3, h4, h5, h6, h1 *, h2 *, h3 *, strong, [id*="headline"], [class*="headline"], [id*="header"], [class*="header"], [class*="header"] td { color: #3c3 !important} a h1, a h2, a h3, a h4, a h5, a h6, h1 a, h2 a, h3 a, a strong, a[id*="headline"], a[class*="headline"], a[id*="header"], a[class*="header"] { text-decoration: underline !important} [class*="error"], [class*="alert"], code, span[onclick], div[onclick] { color: #090 !important} ::-moz-selection {background: #377 !important; color: #000 !important} ::selection {background: #377 !important; color: #000 !important} :focus {outline: none !important} /*----- MENU & CO BACKGROUND-COLORS -----*/ div[style="display: block;"], div[role="navigation"] {background: rgba(0,0,0,.5) !important} table { background: rgba(0,30,0,.6) !important; border-radius: 6px !important} table > tbody > tr:nth-child(even), table > tbody > tr > td:nth-child(even) { background-color: rgba(0,0,0,.2) !important} iframe, embed, header, nav, footer, label [onclick], nav ul, div[style*="position:"][style*="left:"][style*="visible"], div[style*="z-index:"][style*="left:"][style*="visible"], div[style*="-moz-user-select"], div[role="menu"], div[role="dialog"], span[class*="script"] div, [id*="menu"], [class*="dropdown"], [class*="popup"], [class="title"], ul[style*="display:"], ul[style*="visibility:"] ul, [id*="nav"] ul, [class*="nav"] ul, ul[class*="menu"], a[onclick][style*="display"], a[id*="ghosteryfirefox"], #ghostery-purple-bubble, #translator-popup, .menu, .tooltip, .hovercard, .vbmenu_popup { background: rgba(5,5,5,.9) !important; border-radius: 5px; box-shadow: 1px 1px 5px #000 !important} [id*="overlay"], [id*="lightbox"], blockquote { background-color: rgba(35,35,35,.9) !important; border-radius: 5px} pre, dl, .Message code { background-color: rgba(0,2,0,.5) !important} /*----- DEFAULT BUTTONS, SEARCHBOXES & CO -----*/ input, select, button, [role="button"], a.button, a.submit, a.BigButton, a.TabLink, .install[onclick] { -moz-appearance: none !important; -webkit-appearance: none !important; transition: border-color 0.3s !important; background: #060606 !important; color: #090 !important; text-shadow: 0 1px #000 !important; border: 2px solid #030 !important; border-radius: 4px !important; box-shadow: 0 0 2px rgba(0,0,0,.9) !important} a[href="javascript:;"], a[class*="button"]:not(:empty), a[id*="button"]:not(:empty), a[id*="Button"]:not(:empty), div[class*="button"][onclick] { transition: border-color 0.3s !important; background: #060606 !important; color: #090 !important; text-shadow: 0 1px #000 !important; border-color: #030 !important; box-shadow: 0 0 2px rgba(0,0,0,.9) !important} a[href="javascript:;"]:hover, a[class*="button"]:not(:empty):hover, a[id*="button"]:hover, a[id*="Button"]:not(:empty):hover, div[class*="button"][onclick]:hover { background: #151515 !important; color: #0F0 !important} input *, select *, button *, a.button *, a.submit * { color: #090 !important; text-shadow: none !important} input:hover, input[type="button"]:hover, input[type="checkbox"]:hover, input[type="radio"]:hover, select:hover, button:hover, [role="button"]:hover, a.button:hover, a.submit:hover, a.BigButton:hover, a.TabLink:hover { border: 2px solid #050 !important; border-top-color: #050 !important; border-bottom-color: #050 !important; border-left-color: #050 !important; border-right-color: #050 !important} input:focus, select:focus { box-shadow: 0 0 5px #077 !important} input *:hover * { color: #3c3 !important; text-shadow: 0 0 2px #0F0 !important} input[type="checkbox"], input[type="checkbox"]:focus { border: 2px solid #030 !important; background-color: #111 !important; color: #3c3 !important; border-radius: 4px !important} input[type="radio"], input[type="radio"]:focus { border: 2px solid #030 !important; background-color: #111 !important; color: #3c3 !important} input[type="checkbox"], input[type="radio"] {min-width: 10px; min-height: 10px} select input[type="button"], select button {border: none !important} select button {min-height: 8px !important} button:active, input[type="submit"]:active, input[type="button"]:active, a.button:active, a[class*="button"]:not(:empty):active, a.submit:active, a.BigButton:active, a.TabLink:active, .Active .TabLink { background: #292929 !important; color: #0F0 !important} textarea { -moz-appearance: none !important; -webkit-appearance: none !important; background: rgba(0,0,0,.3) !important; border-radius: 3px !important; border: 1px solid #000 !important; box-shadow: inset 0 0 8px #000 !important; transition: border-color, background, 0.3s !important} textarea, textarea * { color: #C8C8C8 !important; text-shadow: 0 0 1px gray !important} textarea:hover, textarea:focus:hover { border-color: #030 !important} textarea:focus { background: rgba(0,0,0,.5) !important; border-color: #222 !important} textarea:focus, textarea:focus > * { text-shadow: none !important; box-shadow: none !important} option { -moz-appearance: none !important; -webkit-appearance: none !important; background: none !important; color: #666 !important} option:not([disabled]):hover, option:focus, option:checked { background: linear-gradient(#030, #292929) !important; color: #3c3 !important} /* webkit checkbox & select fix */ @media screen and (-webkit-min-device-pixel-ratio:0) { input[type="checkbox"]:checked, input[type="radio"]:checked {border-color: #3c3 !important} select { padding-right: 12px !important; background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA8AAAAKCAYAAABrGwT5AAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAApSURBVChTYxjiYObMmf+hTBSASxwDoCskWiMMwDSQrBEGyNY4FAADAwDdpBOHzViE2AAAAABJRU5ErkJggg==) #000 no-repeat !important; background-position: right center !important} } /*----- SCROLLBAR CHANGES -----*/ scrollbarbutton { -moz-appearance: none !important; background-color: transparent; border: none !important} thumb { -moz-appearance: none !important; border: 2px solid transparent !important; background: #3b3 !important; background-clip: padding-box !important; border-radius: 3px !important; box-shadow: inset 0 0 3px #000 !important} scrollbar { -moz-appearance: none !important; background: transparent !important; box-shadow: inset #000 0 0 8px !important} scrollbarbutton:hover, thumb:active, thumb:hover { opacity: 0.5 !important} scrollbar[orient="vertical"] thumb {min-width: 12px !important; max-width: 12px !important; min-height: 14px !important} scrollbar[orient="horizontal"] thumb {min-height: 12px !important; max-height: 12px !important; min-width: 14px !important} scrollbar[orient="vertical"] {min-width: 12px !important; max-width: 12px !important} scrollbar[orient="horizontal"] {min-height: 12px !important; max-height: 12px !important} /*----- IMAGE CHANGES -----*/ body, *:not(:empty):not(html):not(span):not(a):not(:not(option):not(img):not([style="display: block;"]):not([onclick*="open"]):not([onclick*="s_objectID"]):not([class*="stars"]):not([id*="stars"]):not([id="rating"]):not([class="rating"]):not([class*="SPRITE"]):not([id*="SPRITE"]):not([class*="item"]):not([id*="item"]):not([class*="thumb"]):not([class*="icon"]):not(.text):not([id*="lbImage"]):not([class*="cc-in"]):not([class*="gr-body"]):not([id*="watch"]):not(#globalsearch):not(.sp), .r3_hm, .gmbutton2 b, .gtab-i, .ph, .bstab-iLft, .csb, #pagination div, [style*="sprite2.png"], #mw-head-base, #mw-page-base { background-image: none !important} img {opacity: .7 !important; transition: opacity .2s} img:hover, a:hover img {opacity: 1 !important} } /*----- ABOUT PAGES BACKGROUND -----*/ @-moz-document url-prefix(about) { #newtab-window, #addons-page {background: #151515 !important} * {background-color: transparent} body > * {background-color: rgba(0,0,0,.5) !important} #list-view {background: #111 !important} #detail-view {background: #222 !important} #addons-page > * > *, #addons-page > * > * > * {border-color: #030 !important} } /*----- SHOW INSTALLS ON USERSTYLES.ORG -----*/ @-moz-document domain(userstyles.org) { li[total-install-count]:after { font-size: .70em !important; content: " (Installs: " attr(total-install-count) ", " attr(weekly-install-count) " wk)"} } /*----- RIGHT-CLICK MENUS & TOOLTIP STYLE -----*/ #contentAreaContextMenu menuitem[disabled="true"], #contentAreaContextMenu menuitem[disabled="true"] menuseparator { display: none !important} menupopup, popup, popup > menu > menupopup, menupopup > menu > menupopup { -moz-appearance: none !important; background: rgba(15,15,15,.9) !important; border: 1px solid #000 !important; border-radius: 3px !important; box-shadow: inset 0 0 1px #777, inset 0 0 10px #000 !important; padding: 2px 0 !important} menupopup * {box-shadow: none !important; color: #777 !important} menupopup menuitem:hover * { color: #3c3 !important; text-shadow: 0 0 5px rgba(255,255,200,0.9) !important} menupopup menuseparator { -moz-appearance: none !important; background: transparent !important; margin: 2px 0 2px -3px !important; padding: 0 !important; border-top: none !important; border-color: transparent !important; box-shadow: 0 0 3px #666 !important} menupopup menuitem { -moz-appearance: none !important; background: transparent !important; text-shadow: 0 1px #000 !important} menupopup menuitem:hover, menuitem[_moz-menuactive="true"] { background: #030 !important; } tooltip { -moz-appearance: none !important; color: #0c0 !important; background: rgba(0,0,0,.8) !important; border: 1px solid #050 !important; border-radius: 3px !important} /*----- FIX WHITE NEW TAB FLASH -----*/ browser[type="content-primary"] {background: #151515 !important}

cheerz

cheerz

what giganerd is gonna say

cheerz

do whatever giganerd says bruh

# arch_conky_nvidia
# splif edit 061817
#
background no
use_xft yes
xftfont sans:size=12
xftalpha 0.5
update_interval 1
double_buffer yes
total_run_times 0
own_window yes
own_window_transparent yes
own_window_type override
own_window_hints undecorate,sticky,skip_taskbar,skip_pager
default_bar_size 0 6
maximum_width 285
minimum_size 285
draw_shades no
draw_outline no
draw_borders no
draw_graph_borders no
alignment top_left
gap_x 15
gap_y 20
no_buffers yes
uppercase no
cpu_avg_samples 2
net_avg_samples 2
override_utf8_locale yes
use_spacer none
default_shade_color 2E2E2D
default_color 606060
color0 606060
color1 4E7A79
color2 8A7C3E
color3 4A8754
color4 53A5B8

TEXT
${color2}${font :bold:size=11}s1stm ${color0}${hr 1} ${font :size=11}
${color0}${font :size=12}KERNL:${color1} ${alignr} ${kernel}
${color0}${font :size=12}ONLINE:${color1} ${alignr} ${uptime}
${color0}${font :size=12}TIME:${color1} ${alignr} ${exec date +"%H:%M"}
${color0}${font :size=12}DATE:${color1} ${alignr} ${exec date +"%A %b %d %Y"}
${color0}${hr 1}
${color1}┣━pr0cz${alignr}%cpu
${color1}┃ ${if_match ${top cpu 1} < 1}${color2}${else}${if_match ${top cpu 1} < 2}${color3}${else}${if_match ${top cpu 1} < 4}${color4}${else}${if_match ${top cpu 1} < 8}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top name 1}$alignr${top cpu 1}
${color1}┃ ${if_match ${top cpu 2} < 1}${color2}${else}${if_match ${top cpu 2} < 2}${color3}${else}${if_match ${top cpu 2} < 4}${color4}${else}${if_match ${top cpu 2} < 8}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top name 2}$alignr${top cpu 2}
${color1}┃ ${if_match ${top cpu 3} < 1}${color2}${else}${if_match ${top cpu 3} < 2}${color3}${else}${if_match ${top cpu 3} < 4}${color4}${else}${if_match ${top cpu 3} < 8}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top name 3}$alignr${top cpu 3}
${color1}┃ ${if_match ${top cpu 4} < 1}${color2}${else}${if_match ${top cpu 4} < 2}${color3}${else}${if_match ${top cpu 4} < 4}${color4}${else}${if_match ${top cpu 4} < 8}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top name 4}$alignr${top cpu 4}
${color1}┃ ${if_match ${top cpu 5} < 1}${color2}${else}${if_match ${top cpu 5} < 2}${color3}${else}${if_match ${top cpu 5} < 4}${color4}${else}${if_match ${top cpu 5} < 8}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top name 5}$alignr${top cpu 5}
${color1}┃
┣━appz${alignr}mem
${color1}┃ ${if_match ${eval ${execp echo '${top_mem mem 1}' | xargs}} < 0.5}${color2}${else}${if_match ${eval ${execp echo '${top_mem mem 1}' | xargs}} < 2.1}${color3}${else}${if_match ${eval ${execp echo '${top_mem mem 1}' | xargs}} < 4.2}${color4}${else}${if_match ${eval ${execp echo '${top_mem mem 1}' | xargs}} < 8.4}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top_mem name 1}${alignr}${top_mem mem_res 1}
${color1}┃ ${if_match ${eval ${execp echo '${top_mem mem 2}' | xargs}} < 0.5}${color2}${else}${if_match ${eval ${execp echo '${top_mem mem 2}' | xargs}} < 2.1}${color3}${else}${if_match ${eval ${execp echo '${top_mem mem 2}' | xargs}} < 4.2}${color4}${else}${if_match ${eval ${execp echo '${top_mem mem 2}' | xargs}} < 8.4}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top_mem name 2}${alignr}${top_mem mem_res 2}
${color1}┃ ${if_match ${eval ${execp echo '${top_mem mem 3}' | xargs}} < 0.5}${color2}${else}${if_match ${eval ${execp echo '${top_mem mem 3}' | xargs}} < 2.1}${color3}${else}${if_match ${eval ${execp echo '${top_mem mem 3}' | xargs}} < 4.2}${color4}${else}${if_match ${eval ${execp echo '${top_mem mem 3}' | xargs}} < 8.4}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top_mem name 3}${alignr}${top_mem mem_res 3}
${color1}┃ ${if_match ${eval ${execp echo '${top_mem mem 4}' | xargs}} < 0.5}${color2}${else}${if_match ${eval ${execp echo '${top_mem mem 4}' | xargs}} < 2.1}${color3}${else}${if_match ${eval ${execp echo '${top_mem mem 4}' | xargs}} < 4.2}${color4}${else}${if_match ${eval ${execp echo '${top_mem mem 4}' | xargs}} < 8.4}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top_mem name 4}${alignr}${top_mem mem_res 4}
${color1}┃ ${if_match ${eval ${execp echo '${top_mem mem 5}' | xargs}} < 0.5}${color2}${else}${if_match ${eval ${execp echo '${top_mem mem 5}' | xargs}} < 2.1}${color3}${else}${if_match ${eval ${execp echo '${top_mem mem 5}' | xargs}} < 4.2}${color4}${else}${if_match ${eval ${execp echo '${top_mem mem 5}' | xargs}} < 8.4}${color5}${else}${color6}${endif}${endif}${endif}${endif}${top_mem name 5}${alignr}${top_mem mem_res 5}

${color2}${font :bold:size=11}n3twrx ${color0}${hr 1} ${font :size=11}
${color1}wan: ${color0} ${alignr} ${execi 60 curl https://ipv4.icanhazip.com/ | tail}
${color1}lan: ${color0} ${alignr} ${addr eth0}
${color1}dns: ${color0} ${alignr} ${nameserver}
${color1}tun0: ${color0} ${alignr} ${addr tun0}
${color1}wlan0: ${color0} ${alignr} ${addr wlan0}
${color1}mon: ${color0} ${alignr} ${addr wlan0mon}
${color1}gateway: ${color0} ${alignr} ${gw_ip}
${color1}essid: ${color0} ${alignr} ${wireless_essid wlan0}
${color1}AP-mac: ${color0} ${alignr} ${wireless_ap}
${color1}signal: ${color0} ${alignr} ${wireless_link_qual_perc wlan0}
${color1}mode: ${color0} ${alignr} ${wireless_mode wlan0}
${color2}▲ ${color1}UP: ${alignr} ${upspeedf eth0} ${color0}k/s
${color4}${voffset -14} ${alignc} ${upspeedgraph eth0 10,80}
${color2}▼ ${color1}DOWN: ${alignr} ${downspeedf eth0} ${color0}k/s
${color4}${voffset -14} ${alignc} ${downspeedgraph eth0 10,80}

${color2} ${font :bold:size=11}nmap ${color1} ${hr 1} ${font :size=11}
${color0} ${font :size=11} ${execi 120 nmap -sP 192.168.1.0/24 | awk '/Nmap scan report for/{printf $5;}/MAC Address:/{print " ➜ "$3;}' | awk '{ printf "%-15s%-20s%s\n",$1,$2,$3}'}

${color2}${font :bold:size=11}n3tstat ${color0}${hr 1} ${font :size=11}
#${color0}${execi 120 netstat -e -p -t | grep ESTABLISHED | cut -c45-68,80-86,102-140 | rev | column -t | rev}
${execi 60 netstat -ept | grep ESTAB | awk '{print $9}' | cut -d: -f1 | sort | uniq -c | column -t}
${color0}${hr 1}


# ---------

can start it with:

#!/bin/sh
# starts conky
# 040817_edit
# chmod +x startz.sh
# ./startz.sh
#
sleep 2
conky -q -c ~/.conx/conxarch & exit
#
#

sounds like he's a republican
prolly got a job offer over at fox newz
fair and balanced ya know