b8788c239e
MCP Docker / build-and-push (push) Has been cancelled
- Remove telemetry: disabled all phone-home (installation notify, false positives, behavior tracking, upgrade tips) - Version branding: removed 'ce-' prefix, product name changed to '长亭雷池 WAF' - Detection engine enhancement: strict preset enables all 17 modules with aggressive configs - Multi-user RBAC: admin/operator/viewer roles with password + TOTP 2FA - Rate limiting: nginx limit_req per website (RPS, burst, action) - JS Challenge: browser fingerprint verification page with cookie-based bypass - Security fixes: removed InsecureSkipVerify, hardcoded credentials, NO_AUTH backdoor
28 lines
981 B
YAML
28 lines
981 B
YAML
# Server Configuration
|
|
server:
|
|
name: "SafeLine MCP Server"
|
|
version: "1.0.0"
|
|
# Can be overridden by environment variable LISTEN_PORT
|
|
port: 5678
|
|
# Can be overridden by environment variable LISTEN_ADDRESS
|
|
host: "0.0.0.0"
|
|
# Can be overridden by environment variable SAFELINE_SECRET
|
|
secret: "" # Secret for SSE server
|
|
# Logger Configuration
|
|
logger:
|
|
level: "info" # Log level: debug, info, warn, error
|
|
file_path: "" # Log file path
|
|
console: true # Whether to output to console
|
|
caller: false # Whether to record caller information
|
|
development: true # Whether to use development mode
|
|
|
|
# API Configuration
|
|
api:
|
|
# Can be overridden by environment variable SAFELINE_ADDRESS
|
|
base_url: "" # API service address
|
|
# Can be overridden by environment variable SAFELINE_API_TOKEN
|
|
token: "" # Authentication token
|
|
timeout: 30 # Timeout in seconds
|
|
debug: false # Whether to enable debug mode
|
|
insecure_skip_verify: true # Whether to skip certificate verification
|