![]() It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the programs' code. Stunnel - a free, opensource multiplatform SSL tunneling proxyprogram- "is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server. While most modern browsers can handle encrypted traffic, the HFS server only supports insecure HTTP. Only encrypted traffic (HTTPS) between server and client can protect precious private data against sniffing.īy encrypting the traffic between a server and its clients, a sniffer still is able to see which client IP is exchanging data with a certain web server at a certain time, but it is practically impossible (as long as the sniffer does not have the randomly generated private key) to decrypt the transmitted data. Even encoded usernames and passwords, which should protect web servers against unauthorized access, are easy to reveal. HTTP-traffic is transmitted in plain text and every bit of data travelling between a web server and a client (browser) can be intercepted and read by everyone who is in the chain passing data to the final destination. It can even travel on a disk or pendrive to serve from any PC at hand and addressable from the Net (keyword: portforwarding) or within a network.Īll web servers (not only HFS), which use HTTP, have a common weakness: HFS is a free, opensource http-file/web server for the win32 platform (Windows), it's very easy to use and runs "right out-of-the box" for down- and uploading files as well as for serving web pages directly from a PC at home. External hosting to serve private web pages or to share files is not necessary anymore. Today’s widespread cable- and ADSL internet access offers a permanent connection to the worldwide web for home users. You can read an article on our forum where this discussed in detail.Įasy & secure data sharing on Windows with HFS & Stunnel for free. In the meantime, you can try adding HTTPS support by using STunnel. HTTPS is not supported natively at the moment. They always address known security problems of other server software, not HFS.Īt the moment I write there's no known real security problem. If you see scary requests in the log, don't worry. If you comply with these rules, the risks are very low. Keep Windows updated with Windows Update.To secure your computer, follow this advice: They are all freewares.īefore worrying about HFS, you should be concerned about your Windows system. YOU MAY WANT TO DOWNLOAD THEM ALL NOW DIRECTLY FROM THESE LINKS HERE SO YOU DON'T HAVE TO WORRY ABOUT IT LATER REFERENCES IN YOUR READINGĪll the available versions above are as of date. OpenSSL v1.0] - choose Light version x86 would do The tutorial was written and tested on HFS version 2.0, and also worked for 2.2f and 2.3 beta built 226 on my setup. It helped me with the basic understand and got my setup to work. I went through pages 1-5 out of 10pages >here in the forum at time of this writing. ![]() I only reorganized and clarified on some of the points where I found it unclear or confusing for beginner readers as I was and leave majority of it content intact.Ĭredit goes to: ~GeeS~ and rejetto, and others who asked questions and contributed >here in the forum)Ī) ~GeeS~ made the first attempt step-by-step tutorial in implementing HTTPS with HFS)ī) ~GeeS~ later submitted a updated revision which can be found here)Ĭ) rejetto (the admin) who wiki ~GeeS~ works in (a & b) above which you will be reading below) So my attempt is to revise it to make it more clearer for beginners. Email: this wiki has helped me, I read it a couple of times before it makes sense to me.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |