source: server/fedora/config/etc/httpd/conf/httpd.conf @ 247

Last change on this file since 247 was 247, checked in by andersk, 16 years ago
Close the http://vhost/~wronguser hole.
File size: 11.2 KB
Line 
1#ServerType standalone
2ServerRoot /etc/httpd
3#LockFile /var/lock/apache.lock
4PidFile run/httpd.pid
5#ScoreBoardFile /var/run/apache.scoreboard
6Timeout 300
7KeepAlive On
8MaxKeepAliveRequests 1000
9KeepAliveTimeout 5
10MinSpareServers 5
11MaxSpareServers 20
12StartServers 8
13MaxClients 256
14MaxRequestsPerChild 4000
15
16LoadModule auth_basic_module modules/mod_auth_basic.so
17LoadModule auth_digest_module modules/mod_auth_digest.so
18LoadModule authn_file_module modules/mod_authn_file.so
19LoadModule authn_alias_module modules/mod_authn_alias.so
20LoadModule authn_anon_module modules/mod_authn_anon.so
21#LoadModule authn_dbm_module modules/mod_authn_dbm.so
22LoadModule authn_default_module modules/mod_authn_default.so
23LoadModule authz_host_module modules/mod_authz_host.so
24LoadModule authz_user_module modules/mod_authz_user.so
25LoadModule authz_owner_module modules/mod_authz_owner.so
26LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
27#LoadModule authz_dbm_module modules/mod_authz_dbm.so
28LoadModule authz_default_module modules/mod_authz_default.so
29#LoadModule ldap_module modules/mod_ldap.so
30#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
31LoadModule include_module modules/mod_include.so
32LoadModule log_config_module modules/mod_log_config.so
33#LoadModule logio_module modules/mod_logio.so
34LoadModule env_module modules/mod_env.so
35LoadModule ext_filter_module modules/mod_ext_filter.so
36#LoadModule mime_magic_module modules/mod_mime_magic.so
37#LoadModule expires_module modules/mod_expires.so
38#LoadModule deflate_module modules/mod_deflate.so
39#LoadModule headers_module modules/mod_headers.so
40#LoadModule usertrack_module modules/mod_usertrack.so
41LoadModule setenvif_module modules/mod_setenvif.so
42LoadModule mime_module modules/mod_mime.so
43#LoadModule dav_module modules/mod_dav.so
44LoadModule status_module modules/mod_status.so
45LoadModule autoindex_module modules/mod_autoindex.so
46#LoadModule info_module modules/mod_info.so
47#LoadModule dav_fs_module modules/mod_dav_fs.so
48#LoadModule vhost_alias_module modules/mod_vhost_alias.so
49#LoadModule negotiation_module modules/mod_negotiation.so
50LoadModule dir_module modules/mod_dir.so
51LoadModule actions_module modules/mod_actions.so
52#LoadModule speling_module modules/mod_speling.so
53LoadModule userdir_module modules/mod_userdir.so
54LoadModule alias_module modules/mod_alias.so
55LoadModule rewrite_module modules/mod_rewrite.so
56#LoadModule proxy_module modules/mod_proxy.so
57#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
58#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
59#LoadModule proxy_http_module modules/mod_proxy_http.so
60#LoadModule proxy_connect_module modules/mod_proxy_connect.so
61#LoadModule cache_module modules/mod_cache.so
62LoadModule suexec_module modules/mod_suexec.so
63#LoadModule disk_cache_module modules/mod_disk_cache.so
64#LoadModule file_cache_module modules/mod_file_cache.so
65#LoadModule mem_cache_module modules/mod_mem_cache.so
66LoadModule cgi_module modules/mod_cgi.so
67LoadModule ssl_module modules/mod_ssl.so
68
69User apache
70Group apache
71
72#ErrorDocument  403  /403-404.html
73#ErrorDocument  404  /403-404.html
74#ErrorDocument  500  /script_error.html
75
76UserDir disabled
77
78<Directory />
79    AllowOverride All
80    Options FollowSymLinks IncludesNoExec
81</Directory>
82
83<Directory /mit/*/web_scripts>
84    AllowOverride All
85    Options FollowSymLinks IncludesNoExec
86</Directory>
87
88<Directory /afs/athena.mit.edu/activity/*/*/web_scripts>
89    AllowOverride All
90    Options FollowSymLinks IncludesNoExec
91</Directory>
92
93<Directory /afs/athena.mit.edu/contrib/*/web_scripts>
94    AllowOverride All
95    Options FollowSymLinks IncludesNoExec
96</Directory>
97
98<Directory /afs/athena.mit.edu/course/*/*/web_scripts>
99    AllowOverride All
100    Options FollowSymLinks IncludesNoExec
101</Directory>
102
103<Directory /afs/athena.mit.edu/org/*/*/web_scripts>
104    AllowOverride All
105    Options FollowSymLinks IncludesNoExec
106</Directory>
107
108<Directory /afs/athena.mit.edu/user/*/*/*/web_scripts>
109    AllowOverride All
110    Options FollowSymLinks IncludesNoExec
111</Directory>
112
113<IfModule mod_dir.c>
114    DirectoryIndex index.html index.htm index.cgi index.pl index.php index.py index.shtml
115</IfModule>
116
117AccessFileName .htaccess
118
119<Files ~ "^\.ht">
120        Order Allow,Deny
121        Deny from all
122</Files>
123
124UseCanonicalName Off
125TypesConfig /etc/mime.types
126DefaultType text/plain
127#MIMEMagicFile conf/magic
128
129AddDefaultCharset on
130
131HostnameLookups Off
132ErrorLog "/home/logview/error_log"
133LogLevel warn
134LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
135LogFormat "%h %l %u %t \"%r\" %>s %b" common
136LogFormat "%{Referer}i -> %U" referer
137LogFormat "%{User-agent}i" agent
138#CustomLog /var/log/httpd/access_log combined
139ServerSignature Off
140ServerAdmin scripts@mit.edu
141ServerTokens Prod
142
143Alias /icons /var/www/icons
144<Directory /var/www/icons>
145        Options None
146        AllowOverride None
147        <Files ~ "\.(gif|png)$">
148                SetHandler default-handler
149        </Files>
150</Directory>
151
152<IfModule mod_autoindex.c>
153    IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
154
155    AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
156
157    AddIconByType (TXT,/icons/text.gif) text/*
158    AddIconByType (IMG,/icons/image2.gif) image/*
159    AddIconByType (SND,/icons/sound2.gif) audio/*
160    AddIconByType (VID,/icons/movie.gif) video/*
161
162    AddIcon /icons/binary.gif .bin .exe
163    AddIcon /icons/binhex.gif .hqx
164    AddIcon /icons/tar.gif .tar
165    AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
166    AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
167    AddIcon /icons/a.gif .ps .ai .eps
168    AddIcon /icons/layout.gif .html .shtml .htm .pdf
169    AddIcon /icons/text.gif .txt
170    AddIcon /icons/c.gif .c
171    AddIcon /icons/p.gif .pl .py
172    AddIcon /icons/f.gif .for
173    AddIcon /icons/dvi.gif .dvi
174    AddIcon /icons/uuencoded.gif .uu
175    AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
176    AddIcon /icons/tex.gif .tex
177    AddIcon /icons/bomb.gif core
178    AddIcon /icons/deb.gif .deb
179
180    AddIcon /icons/back.gif ..
181    AddIcon /icons/hand.right.gif README
182    AddIcon /icons/folder.gif ^^DIRECTORY^^
183    AddIcon /icons/blank.gif ^^BLANKICON^^
184
185    DefaultIcon /icons/unknown.gif
186
187    ReadmeName README
188    HeaderName HEADER
189   
190    IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t
191</IfModule>
192
193<IfModule mod_mime.c>
194        AddType application/xhtml+xml         .xhtml
195        AddType application/http-index-format .hti
196        AddType text/html                     .html
197        AddType text/css                      .css
198        AddType text/xsl                      .xslt
199        AddType application/x-javascript      .js
200        AddType application/xml               .xml
201        AddType image/svg+xml                 .svg
202        AddType application/vnd.mozilla.xul+xml .xul
203        AddType application/rdf+xml             .rdf
204        AddType application/x-xpinstall         .xpi
205        AddType text/xml .xsl
206        #AddOutputFilterByType mod-xslt application/xml
207        AddType text/html .shtml
208        AddHandler server-parsed .shtml
209</IfModule>
210
211<IfModule mod_mime.c>
212    AddEncoding x-compress Z
213    AddEncoding x-gzip gz tgz
214
215    AddLanguage da .dk
216    AddLanguage nl .nl
217    AddLanguage en .en
218    AddLanguage et .ee
219    AddLanguage fr .fr
220    AddLanguage de .de
221    AddLanguage el .el
222    AddLanguage it .it
223    AddLanguage ja .ja
224    AddCharset ISO-2022-JP .jis
225    AddLanguage pl .po
226    AddCharset ISO-8859-2 .iso-pl
227    AddLanguage pt .pt
228    AddLanguage pt-br .pt-br
229    AddLanguage ltz .lu
230    AddLanguage ca .ca
231    AddLanguage es .es
232    AddLanguage sv .se
233    AddLanguage cz .cz
234
235    <IfModule mod_negotiation.c>
236        LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
237    </IfModule>
238
239    #AddType application/x-httpd-php .php
240    #AddType application/x-httpd-php-source .phps
241
242    AddType application/x-tar .tgz
243    AddType image/bmp .bmp
244
245    # hdml
246    AddType text/x-hdml .hdml
247
248    #AddType text/html .shtml
249    #AddHandler server-parsed .shtml
250</IfModule>
251
252<IfModule mod_setenvif.c>
253    BrowserMatch "Mozilla/2" nokeepalive
254    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
255    BrowserMatch "RealPlayer 4\.0" force-response-1.0
256    BrowserMatch "Java/1\.0" force-response-1.0
257    BrowserMatch "JDK/1\.0" force-response-1.0
258    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
259</IfModule>
260
261Listen 80
262
263RLimitCPU 60 60
264RLimitMEM 268435456 268435456
265RLimitNPROC 1024 1024
266
267SetEnv REDIRECT_STATUS CGI
268SetEnv PHPRC .
269
270NameVirtualHost *:80
271NameVirtualHost *:443
272NameVirtualHost 18.181.0.50:80
273NameVirtualHost 18.181.0.50:443
274
275ServerName localhost
276DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
277
278ExtendedStatus On
279RewriteEngine Off
280
281<Location ~ "/(robots\.txt|favicon\.ico)">
282        RewriteEngine On
283        RewriteBase /~scripts
284        RewriteCond %{REQUEST_FILENAME} !-f
285        RewriteRule .*(favicon\.ico) $1 [L,NS]
286        RewriteCond %{REQUEST_FILENAME} !-f
287        RewriteRule .*(robots\.txt) $1 [L,NS]
288</Location>
289
290Alias /heartbeat /afs/athena.mit.edu/contrib/scripts/web_scripts/heartbeat
291
292<VirtualHost _default_:80>
293        ServerName vhosts.mit.edu
294        DocumentRoot /afs/athena.mit.edu/contrib/scripts/vhosts/server.php
295        Include conf.d/vhosts-common.conf
296</VirtualHost>
297
298<VirtualHost 18.181.0.50:80>
299        ServerName scripts-cert.mit.edu
300        ServerAlias scripts-cert
301        DocumentRoot /afs/athena.mit.edu/contrib/scripts/web_scripts/home
302        SuExecUserGroup scripts users
303        UserDir web_scripts
304        RewriteEngine Off
305        Include conf.d/vhosts-common.conf
306</VirtualHost>
307
308<VirtualHost *:80>
309        ServerName scripts.mit.edu
310        ServerAlias scripts scripts-test.mit.edu scripts-test
311        DocumentRoot /afs/athena.mit.edu/contrib/scripts/web_scripts/home
312        SuExecUserGroup scripts users
313        UserDir web_scripts
314        RewriteEngine Off
315        Alias /src /afs/athena.mit.edu/contrib/scripts/src
316        Redirect /sql https://scripts.mit.edu/~sql
317        Include conf.d/vhosts-common.conf
318</VirtualHost>
319
320<IfModule ssl_module>
321        Listen 443
322
323        AddType application/x-x509-ca-cert .crt
324        AddType application/x-pkcs7-crl    .crl
325
326        SSLPassPhraseDialog  builtin
327        SSLSessionCache dbm:/var/run/ssl_scache
328        SSLSessionCacheTimeout 300
329        SSLMutex file:/var/run/ssl_mutex
330        SSLRandomSeed startup builtin
331        SSLRandomSeed connect builtin
332        SSLCertificateFile /etc/pki/tls/certs/cert-new.pem
333        SSLCertificateKeyFile /etc/pki/tls/private/localhost.key
334        SSLCACertificateFile /etc/pki/tls/certs/ca.pem
335        SSLVerifyClient none
336        SSLOptions +StdEnvVars
337        SSLUserName SSL_CLIENT_S_DN_Email
338        <VirtualHost 18.181.0.50:443>
339                ServerName scripts-cert.mit.edu
340                ServerAlias scripts-cert
341                DocumentRoot /afs/athena.mit.edu/contrib/scripts/web_scripts/home
342                SuExecUserGroup scripts users
343                UserDir web_scripts
344                RewriteEngine Off
345                Include conf.d/vhosts-common-ssl.conf
346                SSLCertificateFile /etc/pki/tls/certs/scripts-cert-new.pem
347                SSLVerifyClient require
348                SSLVerifyDepth 1
349        </VirtualHost>
350        <VirtualHost *:443>
351                ServerName vhosts.mit.edu
352                ServerAlias vhosts
353                DocumentRoot /afs/athena.mit.edu/contrib/scripts/vhosts/server.php
354                RewriteEngine Off
355                Include conf.d/vhosts-common-ssl.conf
356        </VirtualHost>
357        <VirtualHost *:443>
358                ServerName scripts.mit.edu
359                ServerAlias scripts scripts-test.mit.edu scripts-test
360                DocumentRoot /afs/athena.mit.edu/contrib/scripts/web_scripts/home
361                SuExecUserGroup scripts users
362                UserDir web_scripts
363                RewriteEngine Off
364                Include conf.d/vhosts-common-ssl.conf
365        </VirtualHost>
366</IfModule>
367
368Include vhosts.d/*.conf
369
370LoadModule fcgid_module modules/mod_fcgid.so
371AddHandler fcgid-script fcgi
372<Files *.fcgi>
373        Options +ExecCGI
374</Files>
375SocketPath run/mod_fcgid
376
377Include conf.d/auth_sslcert.conf
378Include conf.d/execsys.conf
Note: See TracBrowser for help on using the repository browser.