source: server/fedora/config/etc/httpd/conf/httpd.conf @ 870

Last change on this file since 870 was 842, checked in by andersk, 16 years ago
Run php directly from suexec, so php scripts don’t need to be executable.
File size: 11.7 KB
RevLine 
[39]1ServerRoot /etc/httpd
2PidFile run/httpd.pid
3Timeout 300
[231]4KeepAlive On
[39]5MaxKeepAliveRequests 1000
[734]6KeepAliveTimeout 15
[39]7
[708]8<IfModule mpm_prefork_module>
9    MinSpareServers 5
[759]10    MaxSpareServers 50
[708]11    StartServers 8
[759]12    ServerLimit 512
13    MaxClients 512
[831]14    MaxRequestsPerChild 10000
[708]15</IfModule>
16
17<IfModule mpm_worker_module>
18    StartServers 3
19    MinSpareThreads 75
20    MaxSpareThreads 250
[759]21    ServerLimit 32
22    ThreadsPerChild 32
23    MaxClients 1024
[831]24    MaxRequestsPerChild 10000
[708]25</IfModule>
26
[39]27LoadModule auth_basic_module modules/mod_auth_basic.so
28LoadModule auth_digest_module modules/mod_auth_digest.so
29LoadModule authn_file_module modules/mod_authn_file.so
30LoadModule authn_alias_module modules/mod_authn_alias.so
31LoadModule authn_anon_module modules/mod_authn_anon.so
32#LoadModule authn_dbm_module modules/mod_authn_dbm.so
33LoadModule authn_default_module modules/mod_authn_default.so
34LoadModule authz_host_module modules/mod_authz_host.so
35LoadModule authz_user_module modules/mod_authz_user.so
36LoadModule authz_owner_module modules/mod_authz_owner.so
37LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
38#LoadModule authz_dbm_module modules/mod_authz_dbm.so
39LoadModule authz_default_module modules/mod_authz_default.so
[478]40LoadModule ldap_module modules/mod_ldap.so
[39]41#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
42LoadModule include_module modules/mod_include.so
43LoadModule log_config_module modules/mod_log_config.so
44#LoadModule logio_module modules/mod_logio.so
45LoadModule env_module modules/mod_env.so
46LoadModule ext_filter_module modules/mod_ext_filter.so
47#LoadModule mime_magic_module modules/mod_mime_magic.so
[635]48LoadModule expires_module modules/mod_expires.so
[39]49#LoadModule deflate_module modules/mod_deflate.so
[365]50LoadModule headers_module modules/mod_headers.so
[39]51#LoadModule usertrack_module modules/mod_usertrack.so
52LoadModule setenvif_module modules/mod_setenvif.so
53LoadModule mime_module modules/mod_mime.so
54#LoadModule dav_module modules/mod_dav.so
[779]55#LoadModule status_module modules/mod_status.so
[39]56LoadModule autoindex_module modules/mod_autoindex.so
57#LoadModule info_module modules/mod_info.so
58#LoadModule dav_fs_module modules/mod_dav_fs.so
59#LoadModule vhost_alias_module modules/mod_vhost_alias.so
[520]60LoadModule negotiation_module modules/mod_negotiation.so
[39]61LoadModule dir_module modules/mod_dir.so
62LoadModule actions_module modules/mod_actions.so
63#LoadModule speling_module modules/mod_speling.so
64LoadModule userdir_module modules/mod_userdir.so
65LoadModule alias_module modules/mod_alias.so
66LoadModule rewrite_module modules/mod_rewrite.so
67#LoadModule proxy_module modules/mod_proxy.so
68#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
69#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
70#LoadModule proxy_http_module modules/mod_proxy_http.so
71#LoadModule proxy_connect_module modules/mod_proxy_connect.so
72#LoadModule cache_module modules/mod_cache.so
73LoadModule suexec_module modules/mod_suexec.so
74#LoadModule disk_cache_module modules/mod_disk_cache.so
75#LoadModule file_cache_module modules/mod_file_cache.so
76#LoadModule mem_cache_module modules/mod_mem_cache.so
77LoadModule cgi_module modules/mod_cgi.so
78LoadModule ssl_module modules/mod_ssl.so
[478]79LoadModule vhost_ldap_module modules/mod_vhost_ldap.so
[39]80
81User apache
82Group apache
83
84#ErrorDocument  403  /403-404.html
85#ErrorDocument  404  /403-404.html
86#ErrorDocument  500  /script_error.html
87
[247]88UserDir disabled
[39]89
90<Directory />
[642]91    AllowOverride None
[39]92    Options FollowSymLinks IncludesNoExec
93</Directory>
94
[642]95<Directory /afs/*/*/web_scripts>
96    AllowOverride All
97</Directory>
98<Directory /afs/*/*/*/web_scripts>
99    AllowOverride All
100</Directory>
101<Directory /afs/*/*/*/*/web_scripts>
102    AllowOverride All
103</Directory>
104<Directory /afs/*/*/*/*/*/web_scripts>
105    AllowOverride All
106</Directory>
107<Directory /afs/*/*/*/*/*/*/web_scripts>
108    AllowOverride All
109</Directory>
110<Directory /afs/*/*/*/*/*/*/*/web_scripts>
111    AllowOverride All
112</Directory>
113<Directory /afs/*/*/*/*/*/*/*/*/web_scripts>
114    AllowOverride All
115</Directory>
116
[39]117<IfModule mod_dir.c>
[520]118    DirectoryIndex index index.html index.htm index.cgi index.pl index.php index.py index.shtml index.exe
[39]119</IfModule>
120
121AccessFileName .htaccess
122
123<Files ~ "^\.ht">
[257]124    Order Allow,Deny
125    Deny from all
[39]126</Files>
127
128UseCanonicalName Off
129TypesConfig /etc/mime.types
130DefaultType text/plain
131#MIMEMagicFile conf/magic
132
133HostnameLookups Off
[149]134ErrorLog "/home/logview/error_log"
[39]135LogLevel warn
136LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
137LogFormat "%h %l %u %t \"%r\" %>s %b" common
138#CustomLog /var/log/httpd/access_log combined
139ServerSignature Off
140ServerAdmin scripts@mit.edu
141ServerTokens Prod
142
[257]143<IfModule mod_autoindex.c>
[602]144    Alias /__scripts/icons /var/www/icons
[257]145    <Directory /var/www/icons>
[802]146        Options Indexes
[257]147        AllowOverride None
148        <Files ~ "\.(gif|png)$">
149            SetHandler default-handler
150        </Files>
151    </Directory>
[39]152
153    IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
154
[602]155    AddIconByEncoding (CMP,/__scripts/icons/compressed.gif) x-compress x-gzip
[39]156
[602]157    AddIconByType (TXT,/__scripts/icons/text.gif) text/*
158    AddIconByType (IMG,/__scripts/icons/image2.gif) image/*
159    AddIconByType (SND,/__scripts/icons/sound2.gif) audio/*
160    AddIconByType (VID,/__scripts/icons/movie.gif) video/*
[39]161
[602]162    AddIcon /__scripts/icons/binary.gif .bin .exe
163    AddIcon /__scripts/icons/binhex.gif .hqx
164    AddIcon /__scripts/icons/tar.gif .tar
165    AddIcon /__scripts/icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
166    AddIcon /__scripts/icons/compressed.gif .Z .z .tgz .gz .zip
167    AddIcon /__scripts/icons/a.gif .ps .ai .eps
168    AddIcon /__scripts/icons/layout.gif .html .shtml .htm .pdf
169    AddIcon /__scripts/icons/text.gif .txt
170    AddIcon /__scripts/icons/c.gif .c
171    AddIcon /__scripts/icons/p.gif .pl .py
172    AddIcon /__scripts/icons/f.gif .for
173    AddIcon /__scripts/icons/dvi.gif .dvi
174    AddIcon /__scripts/icons/uuencoded.gif .uu
175    AddIcon /__scripts/icons/script.gif .conf .sh .shar .csh .ksh .tcl
176    AddIcon /__scripts/icons/tex.gif .tex
177    AddIcon /__scripts/icons/bomb.gif core
[39]178
[602]179    AddIcon /__scripts/icons/back.gif ..
180    AddIcon /__scripts/icons/hand.right.gif README
181    AddIcon /__scripts/icons/folder.gif ^^DIRECTORY^^
182    AddIcon /__scripts/icons/blank.gif ^^BLANKICON^^
[39]183
[602]184    DefaultIcon /__scripts/icons/unknown.gif
[39]185
186    ReadmeName README
187    HeaderName HEADER
188   
[477]189    IndexIgnore .??* *~ *# RCS CVS *,v *,t
[39]190</IfModule>
191
192<IfModule mod_mime.c>
[257]193    AddType application/xhtml+xml         .xhtml
194    AddType application/http-index-format .hti
195    AddType text/html                     .html
196    AddType text/css                      .css
197    AddType text/xsl                      .xslt
198    AddType application/x-javascript      .js
199    AddType application/xml               .xml
200    AddType image/svg+xml                 .svg
201    AddType application/vnd.mozilla.xul+xml .xul
202    AddType application/rdf+xml             .rdf
203    AddType application/x-xpinstall         .xpi
204    AddType text/xml .xsl
205    AddType text/html .shtml
206    AddHandler server-parsed .shtml
[39]207
208    AddEncoding x-compress Z
209    AddEncoding x-gzip gz tgz
210
211    AddLanguage da .dk
212    AddLanguage nl .nl
213    AddLanguage en .en
214    AddLanguage et .ee
215    AddLanguage fr .fr
216    AddLanguage de .de
217    AddLanguage el .el
218    AddLanguage it .it
219    AddLanguage ja .ja
220    AddCharset ISO-2022-JP .jis
221    AddLanguage pl .po
222    AddCharset ISO-8859-2 .iso-pl
223    AddLanguage pt .pt
224    AddLanguage pt-br .pt-br
225    AddLanguage ltz .lu
226    AddLanguage ca .ca
227    AddLanguage es .es
228    AddLanguage sv .se
229    AddLanguage cz .cz
230
231    <IfModule mod_negotiation.c>
232        LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
233    </IfModule>
234
235    AddType application/x-tar .tgz
236    AddType image/bmp .bmp
237
238    AddType text/x-hdml .hdml
239</IfModule>
240
241<IfModule mod_setenvif.c>
242    BrowserMatch "Mozilla/2" nokeepalive
243    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
244    BrowserMatch "RealPlayer 4\.0" force-response-1.0
245    BrowserMatch "Java/1\.0" force-response-1.0
246    BrowserMatch "JDK/1\.0" force-response-1.0
247    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
248</IfModule>
249
250Listen 80
251
252RLimitCPU 60 60
[301]253RLimitMEM 536870912 536870912
[39]254RLimitNPROC 1024 1024
255
256SetEnv REDIRECT_STATUS CGI
257
258NameVirtualHost *:80
259NameVirtualHost *:443
[332]260NameVirtualHost *:444
[151]261NameVirtualHost 18.181.0.50:80
262NameVirtualHost 18.181.0.50:443
[332]263NameVirtualHost 18.181.0.50:444
[39]264
265ServerName localhost
266DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
[151]267
[779]268#ExtendedStatus On
[151]269RewriteEngine Off
270
[330]271<Location /robots.txt>
272    ErrorDocument 404 "No robots.txt.
[151]273</Location>
[330]274<Location /favicon.ico>
275    ErrorDocument 404 "No favicon.ico.
276</Location>
[151]277
278<VirtualHost 18.181.0.50:80>
[257]279    ServerName scripts-cert.mit.edu
280    ServerAlias scripts-cert
[330]281    Include conf.d/scripts-vhost.conf
[257]282    Include conf.d/vhosts-common.conf
[151]283</VirtualHost>
284
[454]285# LDAP vhost, w00t w00t
[478]286<VirtualHost *:80>
287    Include conf.d/vhost_ldap.conf
288    Include conf.d/vhosts-common.conf
289</VirtualHost>
[454]290
[151]291<VirtualHost *:80>
[332]292    Include conf.d/scripts-vhost-names.conf
[330]293    Include conf.d/scripts-vhost.conf
[257]294    Include conf.d/vhosts-common.conf
[151]295</VirtualHost>
296
[244]297<IfModule ssl_module>
[257]298    Listen 443
[332]299    Listen 444
[233]300
[257]301    AddType application/x-x509-ca-cert .crt
302    AddType application/x-pkcs7-crl    .crl
[233]303
[257]304    SSLPassPhraseDialog  builtin
[740]305    SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
[734]306    SSLSessionCacheTimeout 28800
[740]307    SSLMutex default
308    SSLRandomSeed startup file:/dev/urandom 256
[257]309    SSLRandomSeed connect builtin
[740]310    SSLCryptoDevice builtin
[369]311    SSLCertificateFile /etc/pki/tls/certs/scripts.pem
[370]312    SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
[257]313    SSLCACertificateFile /etc/pki/tls/certs/ca.pem
314    SSLVerifyClient none
315    SSLOptions +StdEnvVars
[740]316    SSLProtocol all -SSLv2
317    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
[332]318    <VirtualHost 18.181.0.50:443 18.181.0.50:444>
[257]319        ServerName scripts-cert.mit.edu
320        ServerAlias scripts-cert
[330]321        Include conf.d/scripts-vhost.conf
[257]322        Include conf.d/vhosts-common-ssl.conf
[369]323        SSLCertificateFile /etc/pki/tls/certs/scripts-cert.pem
[270]324        Include conf.d/vhosts-common-ssl-cert.conf
[257]325    </VirtualHost>
[478]326    # LDAP vhost, w00t w00t
[257]327    <VirtualHost *:443>
[648]328        ServerName localhost
[478]329        Include conf.d/vhost_ldap.conf
330        Include conf.d/vhosts-common-ssl.conf
331    </VirtualHost>
332    <VirtualHost *:443>
[648]333        ServerName scripts.scripts.mit.edu
[687]334        ServerAlias *.scripts.mit.edu *.scripts
[648]335        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
336        Include conf.d/vhost_ldap.conf
337        Include conf.d/vhosts-common-ssl.conf
338    </VirtualHost>
339    <VirtualHost *:443>
[332]340        Include conf.d/scripts-vhost-names.conf
[330]341        Include conf.d/scripts-vhost.conf
[257]342        Include conf.d/vhosts-common-ssl.conf
343    </VirtualHost>
[478]344    # LDAP vhost, w00t w00t
[332]345    <VirtualHost *:444>
[649]346        ServerName localhost
[478]347        Include conf.d/vhost_ldap.conf
[648]348        Include conf.d/vhosts-common-ssl.conf
349        Include conf.d/vhosts-common-ssl-cert.conf
[478]350    </VirtualHost>
351    <VirtualHost *:444>
[649]352        ServerName scripts.scripts.mit.edu
[687]353        ServerAlias *.scripts.mit.edu *.scripts
[649]354        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
355        Include conf.d/vhost_ldap.conf
356        Include conf.d/vhosts-common-ssl.conf
357        Include conf.d/vhosts-common-ssl-cert.conf
358    </VirtualHost>
359    <VirtualHost *:444>
[332]360        Include conf.d/scripts-vhost-names.conf
361        Include conf.d/scripts-vhost.conf
362        Include conf.d/vhosts-common-ssl.conf
363        Include conf.d/vhosts-common-ssl-cert.conf
364    </VirtualHost>
[151]365</IfModule>
366
367LoadModule fcgid_module modules/mod_fcgid.so
368AddHandler fcgid-script fcgi
369<Files *.fcgi>
370        Options +ExecCGI
371</Files>
372SocketPath run/mod_fcgid
373
[70]374Include conf.d/auth_sslcert.conf
[40]375Include conf.d/execsys.conf
[603]376Include conf.d/scripts-special.conf
[820]377Include vhosts.d/*.conf
Note: See TracBrowser for help on using the repository browser.