про ридми опять забыли(

added ability to change banlist file
added banlist
2025-08-14 21:31:58 +00:00 · 2025-08-15 00:27:32 +03:00 · 2025-08-15 00:25:49 +03:00
6 changed files with 22 additions and 6 deletions
--- a/README.md
+++ b/README.md
@@ -26,6 +26,7 @@ pip install aiofiles
 - `log_file` - файл логов (по умолчанию вывод в консоль)
 - `preset_file` - файл пресета
 - `banlist_file` - файл с айпишниками, которые будут получать 403
 - `directory` - рабочая директория
 ## буферы
--- a/banlist.lol
+++ b/banlist.lol
--- a/config.py
+++ b/config.py
@@ -1,4 +1,4 @@
-name="debweb 1.2.2"
+name="debweb 1.2.3"
 proxied=False
 addr="localhost"
@@ -6,6 +6,7 @@ port=7856
 log_file=None
 preset_file="preset.html"
 banlist_file="banlist.lol"
 directory="files/"
 read_buffer=16384
--- a/html/403.html
+++ b/html/403.html
@@ -1,7 +1,7 @@
 <html>
-<head><title>404 Forbidden</title></head>
+<head><title>403 Forbidden</title></head>
 <body>
-<center><h1>404 Forbidden</h1></center>
+<center><h1>403 Forbidden</h1></center>
 <hr><center>debweb</center>
 </body>
 </html> 
--- a/main.py
+++ b/main.py
@@ -77,7 +77,6 @@ class WebServer:
        if real_addr and config.proxied:
            addr = (real_addr, addr[1])
        request = data.split("\n")[0]
        parts = request.split()
        if len(parts) < 2: return
@@ -86,7 +85,7 @@ class WebServer:
        file_name = path[1:] if path.startswith('/') else path
        file_path = os.path.abspath(os.path.join(config.directory, file_name))
-        if not file_path.startswith(os.path.abspath(config.directory)):
+        if not file_path.startswith(os.path.abspath(config.directory)): # directory traversal
            await self.log(config.err_msgs[418], addr, file_path)
            file_size = os.path.getsize(config.err_files[418])
            await self.send_headers(writer, 418, file_size)
@@ -95,6 +94,17 @@ class WebServer:
            writer.close()
            await writer.wait_closed()
            return
        if addr[0] in utils.get_banlist(config.banlist_file): # banlist for pidors
            await self.log(config.err_msgs[403], addr, file_path)
            file_size = os.path.getsize(config.err_files[403])
            await self.send_headers(writer, 403, file_size)
            await self.send_file(writer, config.err_files[403], file_size)
            writer.close()
            await writer.wait_closed()
            return
        if os.path.isfile(file_path):
--- a/utils.py
+++ b/utils.py
@@ -10,4 +10,8 @@ def get_mod_time(path: str, format: str="%a %b %e %H:%M:%S %Z %Y") -> str:
 def get_create_time(path: str, format: str="%a %b %e %H:%M:%S %Z %Y") -> str:
    create_time = os.path.getctime(path)
    create_datetime = datetime.datetime.fromtimestamp(create_time)
-    return create_datetime.strftime(format)
+    return create_datetime.strftime(format)
 def get_banlist(path: str) -> list:
    return list(set(open("banlist.lol").readlines()))
Author	SHA1	Message	Date
pablusha	beba1cad05	про ридми опять забыли(	2025-08-14 21:31:58 +00:00
pablusha	36a76c4af7	added ability to change banlist file	2025-08-15 00:27:32 +03:00
pablusha	4c8f908f18	added banlist	2025-08-15 00:25:49 +03:00