MasterHttpRelayVPN is a powerful local proxy. Treat its secrets and generated certificates carefully.

This project is provided for educational, testing, and research use. You are responsible for following applicable laws, network rules, account rules, and service terms.

Never share:

• config.json
• auth_key
• ca/ca.key
• the full ca/ folder
• an exit-node URL together with a valid PSK
• live Apps Script Deployment IDs paired with a valid auth_key

The local CA lets the proxy handle HTTPS traffic from your browser. Anyone with your ca/ca.key could impersonate websites for browsers that trust that CA.

Keep ca/ private. If it is exposed, remove the old certificate from trust stores, delete ca/, and let the app generate a new CA.

• Keep listen_host as 127.0.0.1 unless you intentionally use LAN sharing.
• Keep verify_ssl as true.
• Use a long random auth_key.
• Use a separate long random exit-node PSK.
• Rotate secrets if you pasted them into chat, logs, screenshots, or issue reports.

With LAN sharing enabled, other devices on your network can use the proxy. Only enable it on trusted networks and turn it off when finished.

Apps Script deployments have daily execution quotas. Heavy browsing, video, and multiple users can consume quota quickly. If quota is exhausted, relay responses may fail until the quota resets.

Run:

python main.py --uninstall-cert

You can also remove the certificate manually from your OS and browser trust stores.