rejetto forum

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - Rapid

Pages: 1 2 3
1
I currently use an nginx reverse proxy and can pass the connecting ip.  I tried this with Apache and was never successful.

As a side note, HFS is always going to show the connection coming from the proxy IP address, but in HFS you can turn off logging of that connection and instead record the IP of the GET requests, which is what nginx passes and likely the address your interested in. 

An added bonus to using a reverse proxy is it can easily be setup to use free Letsencrypt SSL certs and the HFS server can remain standard HTTP.

Here's what you need nginx to pass in a custom header:

X-REAL-IP - $remote_addr
X-Forwarded-For $remote_addr
Host $host
X-Forwarded-Proto $scheme
https://rejetto.com/forum/index.php?topic=13059.msg1064448#msg1064448 - to get real IP in logs

2
HTML & templates / Re: How to Speed up Rendering
« on: December 09, 2020, 06:47:45 AM »
Could you make a benchmarking for my latest version also?
I've made many optimizations in macros parser...
https://github.com/drapid/HFS/releases

3
HFS ~ HTTP File Server / Re: 4K screens problem
« on: November 16, 2020, 01:39:27 PM »
Latest Delphi has new components  TImageCollection and TVirtualImageList:
http://docwiki.embarcadero.com/RADStudio/Rio/en/Supporting_high-DPI_images_with_the_Image_Collection_and_Virtual_ImageList_components

I've switched to them, and added several 32x32 icons - and menus looks much better now.

But we need to support HiDPI also in web-client side.
Maybe we should make 2 icon-sets and request images based on web-client resolution? Somewhat like Lo and Hi res.

4
HFS ~ HTTP File Server / Re: .tar doesn't support files of size above 8gb
« on: November 16, 2020, 01:19:55 PM »
i just had a look at the encoding of filesize in TAR, and it uses 12 octal digits, it means 8^12=68GB.
Are you sure it's the TAR corrupted, and not the program you use to open it that isn't able to handle it?
what softwares did you use for your tests?
According ustar specification for TAR - there is only 11 octal digits for size + 1 space = 8GB
But most programs should support POSIX specification for TAR, that uses binary size and therefore can easily save Int64 size.
Please have a look: https://github.com/drapid/rnq/blob/aaac45aae47ed632e17c5dae129bff713baea7eb/for.RnQ/RnQNet.Uploads.pas#L731
I'm not sure that I've made ALL necessary changes though...

5
HFS ~ HTTP File Server / Re: 4K screens problem
« on: June 05, 2020, 02:57:53 PM »
And again, it's not so hard to add HiDPI suppport to HFS.
I'm using 4k laptop for many years, and my build compiled with multimonitor HiDPI support (PerMonitorV2)
Main changes only in progFrmLib

And I hope you will add bigger icons (at least 32x32)  :)

6
Beta / Re: version 2.4
« on: May 30, 2020, 02:26:31 PM »
sure! somebody let me know if this file is good, then we'll decide how to publish it
I think one of a problems is that all resourcestrings in functions you named as MSG:
Code: [Select]
[ResourceStrings]
64820_main_MSG{1}=The current template is using macros.\^Do you want to cancel this action?
...
64820_main_MSG{1}=Max simultaneous addresses downloading.
...
64820_main_MSG{1}=Max lines on screen
...
64820_main_MSG{1}=Max lines on screen
64820_main_MSG{1}=Here you can specify how to format the log file complying Apache standard.\^Leave blank to get bare copy of screen on file.\^\^Example:\^   %h %l %u %t "%r" %>s %b
64820_main_MSG{1}=This option creates an .md5 file for every new calculated fingerprint.\^Use with care to get not your disk invaded by these files.


7
Bug reports / Re: Dynamic DNS Updater with HTTPS
« on: May 27, 2020, 03:32:01 PM »
Hi Rejetto!

I think it's easier to add https support: https://github.com/drapid/HFS/blob/55d2bb27b06d7e5fa832ec397b63f8761edb5888/utillib.pas#L1806
Of course you need to copy openssl libs to use it...

8
Beta / Re: version 2.4
« on: May 25, 2020, 02:19:49 PM »
I can confirm that.
I have no bans.

! The script from "http://192.168.137.1/?mode=section&id=lib.js" was loaded, although its MIME type ("") is not a MIME type valid for JavaScript.
! Loading failed for the <script> with the source "http://192.168.137.1/?mode=section&id=lib.js"

Sometimes ?mode=jquery is pending.
beta1 works fine. Beta2 and 3 seems broken.
Looks like TWSocketServer have some unexpected behavior. I revert to TWSocket and it work as before

9
HFS ~ HTTP File Server / Re: system icons
« on: May 19, 2020, 08:03:21 AM »
Hi Rejetto!

Maybe it's time to switch from gif to png?
So system icons could be with alpha-transparent.

In Delphi 10 it's very easy - just replace gif with png :)


10
HTML & templates / Re: Alternative login form for modern browsers
« on: May 15, 2020, 08:42:33 AM »
Hi Rejetto!

I think, that for security reasons saving in preferences password or MD5(password) or SHA256(password) are all equally bad.
For MD5 we had rainbow tables, and maybe for sha256 will be something similar.

Saved should be only password hashed with salt.

For example there is experimental RFC: https://tools.ietf.org/html/rfc7804
According HFS, salt can be generated one per VFS.

Could you make switch for sha256 function? Like if protocol is https than use browsers implementation? I think it should be more optimized than js version

11
HFS ~ HTTP File Server / Re: Securing hfs using my own cert
« on: May 15, 2020, 06:27:00 AM »
The easiest way - is to use some reverse proxy.

I'm using nginx for this.

12
As 2.4 is closer to release, I think this template can be popular.
Could you explain, why you using jquery 1.4 instead of 1.12?

And could you make version for included into 2.4 jquery 1.12?
I think here would be better place to have old template for new versions.

13
HTML & templates / Re: Alternative login form for modern browsers
« on: May 08, 2020, 06:46:08 AM »
Quote
But for the login you can NOT use the MD5's macro
You are totally right! Sorry.

14
HTML & templates / Re: Alternative login form for modern browsers
« on: May 07, 2020, 05:32:41 PM »
Hi Mars,

From whatsnew of 2.4:

Quote
VER 2.4
propaganda
  New mobile-friendly template
/propaganda
+ new default template
+ {.set item|name.}
+ {.get item|icon.}
+ {.set cfg.}
+ cache for jquery and template sections
+ new template commands: base64, base64decode, md5, sha1
...

15
HTML & templates / Re: Alternative login form for modern browsers
« on: May 07, 2020, 05:53:40 AM »
Hi Leo!
Could you make a new version for 2.4?
As 2.4 has new functions like MD5 - it would be nice to compare if it work as expected.

I'm using a HW AES, so it should work much faster than JS function.

And I can't find "Logout" button using default 2.4's template.

Found "logout" button.

Very strange logic. When I put just  any login name, it saves as %user%

Pages: 1 2 3