pixelserv pixelserv - A Better One-pixel Webserver for Adblock

[kvic]

Likewise, like this.

The errors reveal new challenges that the responses from pixelserv need to be adapted to newer standards which are become more popular. Probably not trivial effort!

The good news is I've already found and tested an enhancement in my local copy. Just that I'm not sure it's generic enough. Will be available for test in the next version.

Daily Mail is a "challenging" site. From my brief test, the enhancement does bring back the previous "swiftness" that I experienced on Safari. Errors on the page down to a few.

edit:
btw Chrome now is instant on Daily Mail with the enhancement!

 

[kvic]

The below information deserves a bit more emphasis. It benefits pixelserv-tls users as well as general browsing.

Also worth mentioning on the client side.

On desktop, both Chrome and Firefox support two favours of SSL session resume. Both are supported by pixelserv-tls. And I could see the more advanced one is used during my tests. Great for pixelserv-tls since it consumes less RAM.

Previous SSL sessions will not kick in once you shutdown your browser completely. For modern day browsers, you shall really let it run always. Old habit of shutdown/re-launch of programs (and PC and routers...) should let go..

On Android, if you ditch Chrome/Firefox from RAM, then SSL session before shutdown won't kick in.

On iOS, I think Safari is always on. Great. But Safari on all platforms only supports a less server-friendly form of session resume. Hence, demanding quite a bit more RAM on pixelserv-tls. Nevertheless, as said in my previous post the worst in the stress test case as described used about 10MB.

 

[Protik]

wget -qO - http://pixelserv-ip/servstats.txt

Alternatively you can install "lynx" from Entware to get the graphical version (/servstats) in ASCII graphic..

lynx -dump http://pixelserv-ip/servstats

curl pixelserv.ip.address/servstats.txt - if you've changed ports or whatever else, adjust accordingly

Both the curl and wget command works fine. Thanks!!

For some reason I cannot make the lynx command work on my router. Worked find from my raspberry pi though.

 

[Protik]

The prefetch ssl cache shall jumpstart pixelserv-tls into better shape in shorter time. Without prefetch, it'll eventually get there still. Also note that, prefetch as in Km-test.4 only saves (on SIGTERM exit) part of the cache. Hence, frequent restart of pixelserv-tls is still not recommended.

Awesome! It may be an executable of 40KB, but the engineering that goes into it is simply mind blowing. Keep up the good work!

 

[kvic]

Both the curl and wget command works fine. Thanks!!

For some reason I cannot make the lynx command work on my router. Worked find from my raspberry pi though.

Then simply let lynx go...it's old tech but did have its glorious days!

The next test version will bring in partial support for CORS that shall help alleviate sluggishness on websites such as Daily Mail and alike. Will be available in next 10 hrs if it does not crash on me.

Also Km-test.4 shows more conservative on RAM consumption with similar workload. If you see any "abnormal" RAM usage, pls report..

 

[pattiri]

test 4 running good for more than 14 hours. I've imported the cert to firefox, my windows 10 pc and my iphone as you've advised but I'm not sure if I did it correctly since "slc" counter still seems high or I'm not sure.

 

[kvic]

@pattiri

From the servstats numbers, it appears your CA cert isn't properly imported. I would suggest you start with Firefox on Windows 10. Go through the steps slowly and get it to work first. When a CA cert is imported properly, you'll see a green padlock in Firefox, and register one count in slh.

 

[elorimer]

help alleviate sluggishness on websites such as Daily Mail and alike

It is kind of ironic, that all of us looking to improve security by preventing unknown calls, are banging on the most ad-heavy sites we can find, like aarp.org etc.

 

[pattiri]

@pattiri

From the servstats numbers, it appears your CA cert isn't properly imported. I would suggest you start with Firefox on Windows 10. Go through the steps slowly and get it to work first. When a CA cert is imported properly, you'll see a green padlock in Firefox, and register one count in slh.

well, here's what I've done please confirm all is OK

earlier, safari on my iphone, firefox, internet explorer and chrome gave me error when I tried to access servstats page via HTTPs.

I've followed the steps and imported the ca.crt to my iphone, firefox and windows 10 now none of them give me error when I tried to access servstats page and I get one new count on "slh" everytime I access servstats page via HTTPs. I guess I've done it correctly.

BUT, I didn't get any new count in "slh", only when I refreshed servstats page and "slc" is counting up as fast as earlier

Update: I also use ublocker add-on with my firefox. I've disabled it and spent some time on CNN.com and get new counts in "slh". I think all fine now;

http://prntscr.com/ip9zs9

I've restarted pixelserv myself. That's why uptime is only 6 minutes.

 

[kvic]

BUT, I didn't get any new count in "slh", only when I refreshed servstats page and "slc" is counting up as fast as earlier

Update: I also use ublocker add-on with my firefox. I've disabled it and spent some time on CNN.com and get new counts in "slh". I think all fine now;

Great. I guess one or more appliances want to phone home. If they go crazy, you might simply loosen your blocklist a bit.

One way to investigate is to use pixelserv-tls logging facility. You can tell which LAN client (IP address) is requesting what domain with log LEVEL 4 i.e. run pixelserv-tls with '-l 4' and check your /tmp/syslog.log.

Or use URL http://listenip/log=4 to temporarily change log LEVEL to 4.

 

[kvic]

It is kind of ironic, that all of us looking to speed up browsing by eliminating ads, are banging on the most ad-heavy sites we can find, like aarp.org etc.

Javascript within aarp.org pages + my blocklist drive Safari mad! pixelserv-tls survives but neither could help much.

(there is a post pending moderators' action above)

 

[elorimer]

Now that pixelserv-tls reloads the cached ads when restarting, restarting isn't as big a thing. But perhaps when the cache is reloaded, the missed cache counter should restart at 0.

 

[kvic]

Now that pixelserv-tls reloads the cached ads when restarting, restarting isn't as big a thing. But perhaps when the cache is reloaded, the missed cache counter should restart at 0.

Yeah, the scm was not initialised properly after prefetch. This is already fix in Km-test.5.

(btw, my previous reply to @pattiri. I've also sent him in a conversation).

 

[kvic]

New beta version Km-test.5 aka v2.1.0-test.5

Thanks again for all the testing and great feedback!

This version includes preliminary support for Cross-Origin Resources Sharing that make some browsers happier. Also fixed a glitch in scm that isn't properly initialized after prefetch.

For details in this test version and the upcoming v2.1.0 release, pls read the latest on kazoo.ga/pixelserv-tls.

Entware (ARMv7, mipsel, ARMv8) users can use the one liner below as usual or otherwise to install.

sh -c "$(wget -qO - https://kazoo.ga/pixelserv-tls/install-beta.sh)"

Will appreciate any feedback.

 

[Raphie]

Updated, let the testing continue, ThnX @kvic!

 

[kvic]

Updated, let the testing continue, ThnX Kvic!

Do you read Daily Mail? I actually became a DM lover after this project..

Km-test.5 will make Safari dance swiftly on Daily Mail...make Chrome shoot like a rocket!

 

[Raphie]

I’m reddit, but will try DM, Forbes is super annoying too with those banners timing out website access.

 

[kvic]

Among the three sites (CNN, Foxnews and Daily Mail) used in my tests, foxnews is instant on Safari. Next is CNN and then Daily Mail.

 

[Raphie]

DM is pretty good here too. If DM is the benchmark, then v5 is in pretty good shape.

 

[jrmwvu04]

Also Km-test.4 shows more conservative on RAM consumption with similar workload. If you see any "abnormal" RAM usage, pls report..

If I'm looking at this right, I haven't seen it exceed 10M. 3.8% of 250M = 9.5M. Correct?

It is kind of ironic, that all of us looking to improve security by preventing unknown calls, are banging on the most ad-heavy sites we can find, like aarp.org etc.

My wife had a reaction to some of the sites I was looking at during testing.

Do you read Daily Mail? I actually became a DM lover after this project..

I can't say I love it, but I will say that it became clear that there's a good bit of pop culture I'm unaware of.