8d1a04cb27Fix minor bugs on OpenBSD-only code, after discovering easy of cross-compilation in Go.Solderpunk2023-02-22 21:16:11 +0100
40203a8856Use net/http.DetectContentType as a last resort for MIME, rather than hardcoding application/octet-stream.Solderpunk2023-02-21 19:22:19 +0100
f63fcdb6d1Do not request client certificates if we're never going to need them.Solderpunk2023-02-19 15:17:45 +0100
7a89b307a1Just use the log package's default logger as the error log.Solderpunk2023-02-19 15:04:34 +0100
072669a167Avoid use of log.Fatal() or os.Exit() in main so defers are guaranteed to run.Solderpunk2023-02-19 14:40:54 +0100
7fad754ff2Drop privileges much more thoroughly, thanks nervuri! (see issue #16)Solderpunk2023-02-19 13:17:24 +0100
182e58ffe3Make unprivileged user configurable, thanks nervuri! (see issue #16)Solderpunk2023-02-15 21:16:49 +0100
c0c67f7ba6Whoops, don't ignore error from filepath.Abs.Solderpunk2023-02-15 21:15:14 +0100
8372142843Add support for chroot()ing server early after startup, more work toward issue #16.Solderpunk2023-02-15 21:10:22 +0100
06c6d190a6Guard against symbolic links escaping the document base.Solderpunk2023-02-13 22:15:42 +0100
bb0a04d2c7Add a little bit of extra security advice to the README, a tiny extra step toward closing issue #16.Solderpunk2023-02-13 21:52:08 +0100
4e6a8fcd05Use setuid() systemcall wherever possible to reduce privileges before accepting network connections. First step toward solving issue #16.Solderpunk2023-02-13 20:26:52 +0100
56d8dde14aChdir to / so that Molly doesn't interfere with unmounting.Solderpunk2023-02-10 16:16:57 +0100
b16fe0b8d4Absolutise DocBase before trying to absolutise anything else relative to it.Solderpunk2023-02-08 20:32:17 +0100
17d17a1629Catch SIGTERM and shutdown gracefully.Solderpunk2023-02-08 19:56:27 +0100
86720131d3Declare dependenc upon x/sys to support OpenBSD security features.Solderpunk2023-02-08 19:54:58 +0100
b16a8584a6Merge pull request 'Added pledge(2) and unveil(2) system calls to improve security on OpenBSD.' (#13) from kvothe/molly-brown:master into masterSolderpunk2023-02-08 17:54:29 +0000
bc34e10445add go.mod and go.sum
Travis J Parker
2022-06-14 18:42:29 +0200
c77111e512bugfixes from testing
Travis J Parker
2022-06-17 10:33:27 +0200
505ad17819run substitutions on args in CGICommand
Travis J Parker
2022-06-15 17:47:38 +0200
50f9d49e6cmove shlex parsing to server startup time
#33
Travis J Parker
2022-06-14 18:39:10 +0200
c9838f3f29implement CGICommand as a CGI program override
Travis J Parker
2022-06-13 22:57:51 +0200
2dcaf941e4Sort directory listings with directories before files
#27
Russ Magee
2021-08-11 14:05:38 -0700
e42c366565Merge pull request 'Add FreeBSD example rc script' (#25) from ecliptik/molly-brown:freebsd-rc-example into masterSolderpunk2021-05-01 14:48:48 +0000
3d4d830e98Merge pull request 'Add "AUTH_TYPE" environment variable when client cert is present' (#14) from khuxkm/molly-brown:master into masterSolderpunk2020-12-27 20:21:49 +0000
2e4a10297eMerge pull request 'Don't include port in REMOTE_ADDR' (#18) from makeworld/molly-brown:master into masterSolderpunk2020-12-27 17:40:18 +0000
06ae7c0442Add "AUTH_TYPE" environment variable when client cert is present
#14
Robert Miles2020-11-28 10:07:27 +0000
1c0fb0d856Fixed a typo in the OpenBSD enableSecurityRestrictions docs.
#13
kvothe.2020-09-16 23:49:03 -0400
a8f59868f3Update requirements list for OpenBSD.kvothe.2020-09-16 23:32:35 -0400
fb77a13088Finished the OpenBSD pledge/unveil implementation after testing SCGI procs.kvothe.2020-09-16 23:24:41 -0400
69a253f820Tested unveiling CGI dirs and globs as executable.kvothe.2020-09-15 22:14:12 -0400
03ca12d0c1First pass at a pledge/unveil implementation for OpenBSD.kvothe.2020-09-14 22:21:05 -0400
48f9a206c0Merge pull request 'Added more details on the OpenBSD setup and pointed molly-brown.openbsd.example to the default molly.conf.' (#12) from kvothe/molly-brown:master into masterSolderpunk2020-08-19 18:48:24 +0000
d71b43f35cAdded more details on the OpenBSD setup and pointed molly-brown.openbsd.example to the default molly.conf.
#12
kvothe.2020-08-02 09:41:57 -0400
02dc6a82c6Add trailing slash to subdirectory links in directory listings.
Solderpunk
2020-07-30 18:49:59 +0200
b26fb875a7Fix configuration option name typo in README. Thanks, acdw! Closes#11.
Solderpunk
2020-07-26 17:35:58 +0200
2e510328efFix serious bug whereby config changes made in .molly files apply everywhere and persist until server restart!
Solderpunk
2020-07-06 19:08:03 +0200
7d8bacdc90Log stderr from CGI processes which exit with non-zero status to the error log. Closes#7.
Solderpunk
2020-07-06 16:13:56 +0200
b9334e07a9Fix bug with long filenames or titles.
Solderpunk
2020-07-04 13:13:58 +0200
48aed1398dLog remote IP address when reading a request fails.
Solderpunk
2020-07-03 11:16:07 +0200
2241302856Order log columns more sensibly and drop port from remote addresses.
Solderpunk
2020-07-01 23:44:59 +0200