AuraVPN

xah30/AuraVPN

Fork 0

Commit Graph

Author	SHA1	Message	Date
xah30	b98752b3eb	docs(deployment): v2 complete - in-band CRL + anti-surveillance + automation deployment.md §6 updated: - Moved CRL from "remaining" to "resolved" (now in-band via signed control-envelope with magic prefix). - Added bullets for the new v2 features: port-knocking + cover traffic (anti-surveillance), `aura server-init` / `aura provision-client` (automation), `no_logs` field redaction, `bridges` list. - Remaining honest limits trimmed to genuine v3 work: native Go phone client (sing-box, explicitly excluded by user) and multi-hop routing. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-27 12:36:00 +03:00
xah30	278bcced95	docs(deployment): reflect v2 state — resolved limitations + remaining ones §5: TCP/443 fallback now described as real outer TLS-443 (was the lighter HTTP/1.1 masquerade in v1). §6 rewritten "Честные ограничения v1" -> "v2 — что устранено и что остаётся": - Resolved: UDP multi-client demux, server IP pool + per-client routing, OS-level split-tunnel (no more send_direct stub), real TLS-443, auto-NAT, privilege drop, Windows admin named pipe, daily protocol-mask rotation at 05:00 MSK. - Remaining honest limits: TUN creation still needs root (privilege drop shrinks the window), IPv6 in OS routes / iptables not yet, Windows OS routes stubbed, CRL still out-of-band (in-band push deferred), native phone client via sing-box still a plan, no auto-detect of egress iface. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-27 11:11:07 +03:00
xah30	083c441e4c	docs: rewrite all documentation in Russian + add deployment guide - docs/protocol.md, pki.md, split-tunnel.md, sing-box.md переведены на русский и сверены с текущим кодом (транспорт v2: свой UDP + TCP/443 + QUIC fallback, handover; PKI; split-tunnel; sing-box-план). - docs/deployment.md (новый, 369 строк): пошаговое руководство для удалённого сервера — сборка, PKI init/issue-server/issue-client (проверено бинарём), server.toml/client.toml на основе фактических config/*.example, firewall + NAT/IP-форвардинг, sudo-запуск, бандл клиента (ca.crt + client.crt + client.key + server addr/sni), на каком транспорте идёт трафик, ограничения v1. - README.md (новый, корень): краткий обзор + таблица крейтов + быстрый старт. Всё на русском (проза); команды/идентификаторы/конфиги — как есть. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-26 10:42:08 +03:00

Author

SHA1

Message

Date

xah30

b98752b3eb

docs(deployment): v2 complete - in-band CRL + anti-surveillance + automation

deployment.md §6 updated:
- Moved CRL from "remaining" to "resolved" (now in-band via signed
  control-envelope with magic prefix).
- Added bullets for the new v2 features: port-knocking + cover traffic
  (anti-surveillance), `aura server-init` / `aura provision-client`
  (automation), `no_logs` field redaction, `bridges` list.
- Remaining honest limits trimmed to genuine v3 work: native Go phone
  client (sing-box, explicitly excluded by user) and multi-hop routing.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-27 12:36:00 +03:00

xah30

278bcced95

docs(deployment): reflect v2 state — resolved limitations + remaining ones

§5: TCP/443 fallback now described as real outer TLS-443 (was the lighter
HTTP/1.1 masquerade in v1).

§6 rewritten "Честные ограничения v1" -> "v2 — что устранено и что остаётся":
- Resolved: UDP multi-client demux, server IP pool + per-client routing,
  OS-level split-tunnel (no more send_direct stub), real TLS-443, auto-NAT,
  privilege drop, Windows admin named pipe, daily protocol-mask rotation
  at 05:00 MSK.
- Remaining honest limits: TUN creation still needs root (privilege drop
  shrinks the window), IPv6 in OS routes / iptables not yet, Windows OS
  routes stubbed, CRL still out-of-band (in-band push deferred), native
  phone client via sing-box still a plan, no auto-detect of egress iface.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-27 11:11:07 +03:00

xah30

083c441e4c

docs: rewrite all documentation in Russian + add deployment guide

- docs/protocol.md, pki.md, split-tunnel.md, sing-box.md переведены на русский
  и сверены с текущим кодом (транспорт v2: свой UDP + TCP/443 + QUIC fallback,
  handover; PKI; split-tunnel; sing-box-план).
- docs/deployment.md (новый, 369 строк): пошаговое руководство для удалённого
  сервера — сборка, PKI init/issue-server/issue-client (проверено бинарём),
  server.toml/client.toml на основе фактических config/*.example, firewall +
  NAT/IP-форвардинг, sudo-запуск, бандл клиента (ca.crt + client.crt + client.key
  + server addr/sni), на каком транспорте идёт трафик, ограничения v1.
- README.md (новый, корень): краткий обзор + таблица крейтов + быстрый старт.

Всё на русском (проза); команды/идентификаторы/конфиги — как есть.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-26 10:42:08 +03:00

3 Commits