Home

Info

Documentation

Installation

Configuration

History

Download

Mailing list

Feedback

---

0.4.2

FTP/HTTP server

• General information
  • Features
  • Problems
  • Credits
• Documentation
  • Installation
    • Configuration file
  • HTTP request processing [New] [Unfinished]
  • Special files and URLs for directory listings
  • Design notes
    • Processes handling
    • Protocol
    • API
• Applications
• History
• Mailing list

PHP 3.0.10 released with fhttpd fix

PHP 3.0.10 release incorporates changes from the patch of 15-Jun-99 -- use it instead of PHP 3.0.9 patched. See PHP download page for the nearest mirror.

PHP3 patch

PHP3, when compiled as fhttpd module doesn't work with gd GIF files creation/manipulation library. Fix is in PHP3 CVS, and this patch can be applied to the released PHP 3.0.9 source to fix the problem.

Copy the php3.patch file into the PHP 3.0.9 source directory, use

to apply the patch, then compile PHP3.

Version 0.4.2

fhttpd 0.4.2 is released. Another fix -- this time for y2k-compliant date format.

Version 0.4.1

fhttpd 0.4.1 is released. A fix for buglike feature of Linux 2.2.x kernels -- see message in the mailing list.

Version 0.4.0

fhttpd 0.4.0 is released. Finally, a new version after 0.3.x series.

This version supports logger modules and has few bugfixes. Some possible ways of denial of service attacks are prevented, resource limits introduced, clean way to indicate backend process death is added.

Logger module moves all logging of requests from fhttpd.log to its own file (fhttpd-log.log by default) and new design leaves only startup/shutdown/errors messages in fhttpd.log.

Development is alive and well

I haven't posted any updated versions yet, however I am glad to announce that new logging modules support and some internal changes are finished, and I'm making final changes before the release. It looks like I will spend few days fixing name inconsistencies in messages and testing things, but now it works, and fhttpd.log "debugging-oriented" hideous format is gone. I have also fixed some "too inflexible" things in a command line parser, so dk's s/key patches will become usable, however it will take me a week to fix and test things.

It probably will be a good idea to put the whole thing into CVS, and allow readonly anonymous access to it -- I realize that 1-2 releases per year isn't acceptable for a project like this.

Version 0.3.5

fhttpd 0.3.5 is released with major updates. Release 0.3.5 makes 0.3.4 patches obsolete.

New features added:

• Users' directories support. For a long time fhttpd had no support for automatic mapping of user directories. Now it's possible to enable ~username translation to some directory under user's home directory (default is public_html). Also fhttpd can be configured to use user's userid to access those files, run CGIs and modules. Userid 0 is the exception from this rule, module can run as it only if explicitly configured for that, and automatic mapping does not work on usernames with userid 0.
• Modules can be configured to receive usernames/passwords for authentication. Default configuration is to never pass passwords to modules and scripts.
• SCRIPT_NAME_ORIGINAL entry is added to modules interface -- it contains the SCRIPT_NAME value from the requested URL even if it was rewritten.
• Scripts, running from FTP can have original filename in parameters.
• GetRule allows case-insensitive matching for values, and field names matching is changed to case-insensitive.
• In FTP directory creation mode can be specified for wildcard-mask, just like file creation mask.
• File creation mask (umask) can be specified.
• Ports can be bound to specific addresses, so it's possible to bind remote modules processes support to particular address (or localhost if remote processes should not be used) to coexist with other servers on the same host with multiple IP addresses.
• Content-Type now can contain spaces.

Bugs fixed:

• OutExec didn't work on systems where mmap() is supported.
• On files with zero length some browsers don't stop reading when in Keep-Alive mode. fhttpd now drops the connection on such files.
• FTP timeout was counted even when transfer was in progress, just with longer value. Now timeout for control connection is disabled while transfer is in progress, and sender process reporting is used for data connection timeout.
• FreeBSD and Solaris versions didn't handle Last-Modified/If-Modified-Since field properly -- that caused cached files to be "stuck" in a browser even if file on the server was changed. (from existing patch)
• Errors handling in fhttpd-file module fixed (from existing patch)
• Configuration file lines are now checked for length (previously were assumed to be always reasonably short because they can be made by sysadmin and therefore can't be a source of anything malicious).
• Error messages for configuration file problems are now more clear.

Old announcements (mostly obsolete)

fhttpd