Recent Posts

1

HTML & templates / Re: Blocking connections to the server if they use IP instead of the FQDN

« Last post by LeoNeeson on November 28, 2023, 11:30:15 AM »

Hi!, and welcome to the forum...

Yes, this is possible to do (the very same question was answered a few days ago). You can follow the steps described HERE (replacing "test.mydomain.com" with your own "myhost.com"). For future reference to other users, please report back which option worked better (#1, #2 or #3).

Cheers,
Leo.-

2

Español / Re: [Tutorial] Cómo compilar el código fuente de HFS

« Last post by LeoNeeson on November 28, 2023, 11:25:15 AM »

Portable Delphi link is not available anymore. 😔

Thank you for reporting a broken link...
I will try to update the links, as soon I find a permanent hosting for the file. I could temporally send you the file by Private Message (send me a PM if you want).

This thread is for Spanish messages only, please leave English messages HERE (perhaps some Moderator could move those posts there, deleting this small note).

3

HTML & templates / Blocking connections to the server if they use IP instead of the FQDN

« Last post by TheKezStrel on November 28, 2023, 05:09:39 AM »

Hi all,

Just a random question to all you guys here on the forum about HFS2.3m.

From running my HFS server for quite a few years and using different versions of HFS, I keep seeing a lot of hacking attempts in my logs that have always connected via the IP (hackers that scanned open ports and ) and not many using the domain name I have set up.

I'm unable to filter out the bad traffic at present since the FQDN for my location uses the same  WAN IP scanned to send the traffic through my router to the server network, then to the server on my local network. I.e. DNS for my FQDN is forwarded to my WanIP router > port forward to LanIP where the server resides.

When looking at the logs, there's lots of hacking attempts from people using the IP only based on the GET header HOST detail. I try it from my mobile using my FQDN (like www . mysitedomanname . com  WITHOUT SPACES) and the HOST detail in the GET header shows my domain name.

Is there any way of using the HOST detail in the GET Header to filter out connections?

On the forum I have found something like this line.

I found
{.if|{.%host == myhost.com.}|redirect to a specific folder.}
and wondered if it could be modified to only accept connections if the HOST field matched my FQDN like
{.if|{.%host == myhost.com.}|allow connection|disconnect.}

Also, which file I would need to add the line to?

Any and all help would be appreciated.

4

Español / Re: [Tutorial] Cómo compilar el código fuente de HFS

« Last post by delphin on November 24, 2023, 09:54:10 AM »

Portable Delphi link is not available anymore. 😔

5

Bug reports / Re: HFS needs restart

« Last post by rejetto on November 17, 2023, 12:05:16 PM »

yes, you can do it externally.
I wrote some instructions about it https://github.com/rejetto/hfs#service
but you may prefer other methods https://www.google.com/search?q=run+program+as+service+windows&oq=run+program+as+service+windows
If people know better methods I will update the documentation.

At the moment there's no automatic service installation. Hopefully in the future.
HFS is now cross-platform, and making system dependent actions is harder for me.

6

Bug reports / Re: HFS needs restart

« Last post by adam on November 17, 2023, 11:41:21 AM »

The good news is that v3 seems to be stable, no crash since I installed it.

Turning it into service: is that something I can do externally? Our software also has service mode, but as far as I recall, our installer does that programmatically, registering the software as a service through Windows API. Also, I also seem to remember that a service running in the SYSTEM account has issues having access to the network, which again may be an issue as long as HFS should serve files from other computers in the network.

Anyway, this is rather just an aesthetical issue, the old one was nicer with the system tray icon.

7

HFS ~ HTTP File Server / Re: blocking ip-addresses by country

« Last post by rejetto on November 16, 2023, 04:45:05 PM »

I would like to configure the program so that one specific agent can download

this is the server code:
exports.middleware = ctx => ctx.get('user-agent') === 'YOUR_AGENT' || ctx.socket.destroy()

this code check for exact text. Otherwise you can use, for example, ctx.get('user-agent').startsWith('YOUR_AGENT')

be careful, because this code can stop you from using your browser, and to recover you will have to edit file "config.yaml" with an editor

https://github.com/rejetto/hfs/wiki/Middlewares

8

HFS ~ HTTP File Server / Re: blocking ip-addresses by country

« Last post by ALEX on November 16, 2023, 02:58:40 AM »

yes, plugins, but if you don't intend to distribut your scripts/changes, you can just use "custom html" and "server code".
It depends on what you want to do....

I would like to configure the program so that one specific agent can download

9

HFS ~ HTTP File Server / Re: how can old config.vfs settings file user data convert config.yaml

« Last post by rejetto on November 15, 2023, 10:41:09 PM »

sorry, i missed your post for long.
there's no automatic conversion, best way is to re-do the vfs by hand.
thanks for your contribution, i'll see to add it to next version.

10

Pусский / Re: Ищу адекватный шаблон

« Last post by rejetto on November 15, 2023, 10:36:03 PM »

sorry I don't speak russian, but you may want to have a look at next version https://github.com/rejetto/hfs

video files are playable only for formats supported by the browser