Lightning fast web server designed for security, streaming and static content
For commercial use, please contact the author gvalkov@gmail.com

Change log:

2021-10-21 Use multiuple certificate files, Docker support
Config: Minimal curve strength: 256, 384, 448, 521.
Config: Disable weak ciphers e.g. CBC.
 
2021-10-01 A+ on SSL Labs
require TLS 1.2 or higher, HSTS (Strict-Transport-Security)
 
2021-09-26 Config: block tasks during reload, cert chain file
2021-09-21 Config: list of allowed or blocked file extensions
2021-09-06 Fix incomplete requests may be rejected
2021-09-02 OpenSSL-1.1.1l
2021-09-01 Automatically upgrade to HTTPS
Automatically upgrade to HTTPS if the client wants to. The server sertificate name and expirity date are checked, to make sure we can safely upgrade the connection to secure.
 
2021-08-30 Drop capabilities, minified documents
Drop capabilities on Linux. Add support for minified documents. Fix HTTP/1.0 requests return 500 Internal Server Error.
 
2021-08-24 Add virtual directories, add seteuid for Linux
 
2021-07-29 Added TLS support
OpenSSL is used by default. Can be compiled with:
OpenSSL, LibreSSL, wolfSSL, GnuTLS, Schannel
 
2019-06-23 Linux .deb, .rpm, and .pkg packages.
Support for installing multiple services or daemons, with separate configuration files on both Linux and Windows. FreeBSD support.
 
2017-04-09 Close inactive connections
 
2016-10-27 Stack overflow in the path normaliser
The function responsible for normalising paths was implemented recursively and could exhaust the stack if a specially crafted packet is sent to the server.
The code has been entirely rewriten and no longer relays on recursion. The performance has been improved.
Thanks to websec.nl for discovering and testing this issue!
 
© 2015-2021 George Valkov
httpstorm web server