Recent Posts

1

HFS ~ HTTP File Server / Re: HFS v2.x security update By DANNY

« Last post by danny on December 14, 2025, 07:32:19 PM »

@Mars   Thanks for the directions to https://github.com/rejetto/hfs2/discussions/
For sure, a forum with one niche topic has a huge disproportion of bots to people; therefore, I agree that a github discussion area is more sustainable, if only because github has a great many more topics and therefore a more favorable proportion of people because of that. 

I guess there's only about 2000 HFS2X servers.  I will try to remember to put a getting started note in the zip.  According to my server's download logs, there are daily downloads of updated HFS2X, by real people, but not in large numbers. 

The uses for HFS2X are niche:  The main specialty is to catalog large numbers of files any way you want to. 

So far as I know, HFS2X is the only server using its own code as the distribution server on Windows, without a CDN buffer. 

At home, there are usually 5000 bots per day and that doesn't have much effect.  However, forum software is a much different case; and, I know that dd-wrt forum (another single-topic stand-alone forum) is also going through some difficulties with bot traffic vs proportion of real people.  I do need mention one thing about putting a wall up; because that is never actually a wall--it is a box.  Indeed, these days, it is probably necessary to relocate forums to a more conglomerate arrangement with more topics on the site also causing a more favorable proportion of real people traffic. 

I have noticed several companies hosting bots in private while advertising defense against bots in public.  So, I can't imagine the frustration of hosting a forum on the same services that power most of the bots.  I wonder if there are some screening filters available?

reminds me of:  https://cybernews.com/security/scam-bots-hitting-website-can-lead-to-financial-loss/

2

HFS ~ HTTP File Server / Re: HFS v2.x security update By DANNY

« Last post by Mars on December 13, 2025, 03:21:12 PM »

what I am about to say may perhaps sound hard to hear, but it is a reality

times change and people grow older, interests are no longer the same, and very often only nostalgics remain to remember the good old days. Even I have hung up my apron and now consult the forum only as a scrapbook of memories.

the desertification of the forum is mainly due to the absence of former members who no longer come, another reason is that the center of interest has migrated to HFS 3.0, which is accessible for possible exchanges on GitHub where an area is also dedicated to HFS2.x  [https://github.com/rejetto/hfs2](https://github.com/rejetto/hfs2)

the forum here is now closed to the validation of new members, this was a necessary decision because only fake profiles created by BOTs were registering, to give an estimate of the situation there is about a false inscription every 10mn on average in normal attendance at the quietest moments, if the activation of all these accounts were left free,

monitoring possible spam messages would take a lot of unnecessary time, moreover managing to identify a real future member among thousands of registrations is more than random, which is why the counter is closed.

from an external point of view, for a guest the forum can be consulted without restriction and all attachments are accessible, even those you provide; only usage feedback cannot be posted, however exchanges can be made on [https://github.com/rejecto/hfs2/discussions] (https://github.com/rejecto/hfs2/discussions)

3

HFS ~ HTTP File Server / Re: HFS v2.x security update By DANNY

« Last post by danny on December 13, 2025, 05:52:06 AM »

There have been a couple of thousand downloads.  So, I'm curious why there are so few new posts on the forum.  Did that go out of style? 

4

HFS ~ HTTP File Server / HFS2.3M oldstyle "purist" edition

« Last post by danny on November 25, 2025, 01:47:12 PM »

For the improvement adverse:  Minimal change.

HFS-23-m-oldstyle.zip is available at http://software.run.place

Built fresh from HFS2.3M original source, adding Leo's macro security patch, and the exec macro is disabled.  Featuring the original defaults, the original default template, etc.... Not recommended for those new to HFS.  But, HFS2.3m-oldstyle can help the "Don't Change" crowd to experience that in a real way.

For somewhat more comfort (optional) there is 'HFS 23 style template V2' included in the zip file.  It is not preinstalled, but you could load it manually if you want to bypass some annoyances and run much faster (optional). 

Edit:  Also compatible with a pre-2025 hfs.ini file; if you happened to have an old backup handy from original M or K (remember to exit before copying the ini file to the same folder as hfs.exe).  That would cause it to simply go back to work as expected. 

5

Everything else / Re: Saying Hi again :)

« Last post by rejetto on November 18, 2025, 07:17:58 AM »

i'm glad to see you again and well
good luck with your projects!

6

HFS ~ HTTP File Server / Re: HFS v2.x security update By DANNY

« Last post by danny on November 16, 2025, 05:18:13 PM »

Enjoy summer break!  Perfect timing.  I need to hunt for a better job this season.  HFS is doing fine because there's nothing to fix other than keeping ahead of new browser changes. 

The development/lite version finally showed the progress it was made for--At version 2XF, features can be added to it and it will still run stable.  Thanks for the advice on WinMerge, to analyze differences.  Very helpful!   

Edit:  In December, there's some template updates for dealing with internet noise/bots more efficiently.  https://cybernews.com/security/scam-bots-hitting-website-can-lead-to-financial-loss/  There is also a little txt file included with some bot filter examples for hfs events (menu).   The events filters have been working well for the download server.   

7

HFS ~ HTTP File Server / Taking a summer break...

« Last post by LeoNeeson on November 16, 2025, 02:10:16 PM »

I like the idea in Leo's patch because it is data validation.

Sorry, but I won’t be doing anything related to HFS for a few months, until further notice. Summer is approaching where I live, and as I did last year I’m taking some time off to disconnect from everything. Please carry on without me, Danny and everyone else, since I will not be checking or replying to private messages either.

Take care and rest a bit — this year was tough for me.
Best regards,
Leo.-

8

HFS ~ HTTP File Server / Re: update

« Last post by danny on November 15, 2025, 01:14:28 PM »

I like the idea in Leo's patch because it is data validation.  For sure development with HFS2x will need to add data validation and input validation, mainly because the internet is so different today than it was in the early 2000's when most of the features were introduced.  The fact that browsers are also different, just pales in comparison to the change of connecting a server to a very different internet.  So, when the foundation is not level, adding some validation really helps.  I've been adding a little input validation and update for mobile browsers.

So far, I think there wasn't a speed increase; but for sure, more stability/durability has made a capacity increase. 

9

Everything else / Saying Hi again :)

« Last post by NaitLee on November 10, 2025, 02:09:34 PM »

I'm saying Hi again

If you have ever concerned: I'm living well and happily coding. I'm mostly active on Codeberg: https://codeberg.org/NaitLee

This time I didn't bring an HFS template (or plugin), but my own specialized servers:

• omnisrv: For serving sites based on markdown files. Static or dynamic site? You choose!
  
• servezip: For serving content directly from zip files. Also demonstrates gocryptfs support with fscrypt in "fscrypt" branch.
  
• mfs: Minimal and performant server for media files. Supports anti-leech, though no advanced features like uploading or rate-limiting.
  

They are still in early stage, and should be compiled from source. And they are for using in commandline, not as user-friendly as HFS.

In case you are wondering: I don't oppose modern web frameworks, as used in HFS 3. I personally use web frameworks in some projects too (some of them are not published though). I prefer using Qwik (v2 with Bun) and Fresh.

Here's my personal site you can play with: https://unseen-site.fun/ 
At the moment, it's powered by Qwik. I will switch to omnisrv in later days.

Thanks HFS (both v2 and v3) for telling me how a web server should work, on both backend and frontend. 
And thanks everyone on the forum again, I have learned many things in the old days.

I may stay inactive here as I'm also focusing on system tools and game/GPU programming. 
(a few of these efforts can be discovered in my codeberg or github contributions)

Cheers,
Nait

10

HFS ~ HTTP File Server / Re: update

« Last post by LeoNeeson on November 05, 2025, 04:32:46 PM »

Recently, my server withstood a 2 day ddos attack.  And the good news:  Leo wrote a stability patch which kept HFS on track during edge-conditions where it could go to 0 bandwidth.  But, there was No problem.  Thank you Leo!! 

Thanks, I appreciate the recognition...


Yeah, my ‘minor contribution’ actually involved quite a few hours of debugging issues that came from your recent changes. I haven’t published any patch here, since my fixes weren’t too relevant for the original HFS sources, only for your custom fork. Glad to hear it worked well for your version of HFS though.

As long as it makes you happy (and your server runs faster), that’s cool.