static-web-server
gixy
Our great sponsors
static-web-server | gixy | |
---|---|---|
8 | 9 | |
1,178 | 8,150 | |
11.0% | 0.5% | |
9.2 | 4.3 | |
1 day ago | 4 months ago | |
Rust | Python | |
Apache License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
static-web-server
-
Grant Kubernetes Pods Access to AWS Services Using OpenID Connect
In here, we will fetch the OIDC configuration from the Kubernetes API server and expose them to the internet on HTTPS using the newly acquired TLS certificate with the help of static web server.
- Static Web Server
-
Best Practice For Serving Static (Frontend) Files with NGINX in K8s?
I swapped to static-web-server for exclusively static files, it's only 4MB and its envvars are much easier than nginx's config files
-
Leaking Bitwarden's Vault with a Nginx vulnerability
I use https://static-web-server.net/
Cross-platform, written in Rust, straightforward configuration, secure defaults, also has a hardened container image and a hardened NixOS module.
I wouldn't recommend Caddy. Their official docker image runs as root unnecessarily (and the reasoning suggests a lack of understanding) [1], and they don't provide a properly sandboxed systemd unit file [2].
[1]: https://github.com/caddyserver/caddy-docker/issues/104
-
apache2 vs ngenix
but for security, maybe something rust (like this )would do.
-
Ask HN: What's your favorite rust binaries?
I like rust binaries because they are cross-platform. I've found cool ones like
- https://github.com/static-web-server/static-web-server/
- https://github.com/Qovery/Replibyte
If you know any repos where I may find compilation of tools I'll be thankful!
-
Hosting Hugo site with docker and reverse proxing it with nginx
I use static web server to host the image.
gixy
- If is Evil when used in location context
- Gixy is a tool to prevent Nginx security misconfiguration
- GitHub - yandex/gixy: Nginx configuration static analyzer
- Gixy: Nginx Configuration Static Analyzer
-
Leaking Bitwarden's Vault with a Nginx vulnerability
https://github.com/yandex/gixy/blob/master/docs/en/plugins/a...
(and nixos automatically runs gixy on a configuration generated through it, so the system refuses to build <3)
-
Avoiding the Top Nginx Configuration Mistakes
* [alias_traversal] Path traversal via misconfigured alias
The alias traversal gotcha is one of the most pernicious I've seen. A single, seemingly innocuous '/' is the difference between a path traversal vulnerability or not.
[0]: https://github.com/yandex/gixy#what-it-can-do
-
2 of my servers got hacked last night around the same time.
not sure what is the exact reason but, nginx has vulnerability of of misconfigured ngnix.conf, I recommend using https://github.com/yandex/gixy and check if your nginx config files any sort of misconfig or not.
- GIXY – Nginx configuration static analyzer
- Common Nginx misconfigurations that leave your web server open to attack
What are some alternatives?
sysctl-rs - A simplified Rust interface to the sysctl system call
Caddy - Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS
gsmartcontrol - GSmartControl - Hard disk drive and SSD health inspection tool
dist - Resources for packaging and distributing Caddy
mg - Micro (GNU) Emacs-like text editor ❤️ public-domain
caddy-ratelimit
cross - “Zero setup” cross compilation and “cross testing” of Rust crates [Moved to: https://github.com/cross-rs/cross]
materialize - Materialize, a web framework based on Material Design
dosbox-staging - DOSBox Staging is a modern continuation of DOSBox with advanced features and current development practices.
manix - A fast CLI documentation searcher for Nix.
merecat - Small and made-easy HTTP/HTTPS server based on Jef Poskanzer's thttpd