source: server/fedora/config/etc/httpd/conf/httpd.conf @ 820

Last change on this file since 820 was 820, checked in by geofft, 16 years ago
Add server certS for random-hall.mit.edu and mitsoc.mit.edu
File size: 11.7 KB
Line 
1ServerRoot /etc/httpd
2PidFile run/httpd.pid
3Timeout 300
4KeepAlive On
5MaxKeepAliveRequests 1000
6KeepAliveTimeout 15
7
8<IfModule mpm_prefork_module>
9    MinSpareServers 5
10    MaxSpareServers 50
11    StartServers 8
12    ServerLimit 512
13    MaxClients 512
14    MaxRequestsPerChild 100000
15</IfModule>
16
17<IfModule mpm_worker_module>
18    StartServers 3
19    MinSpareThreads 75
20    MaxSpareThreads 250
21    ServerLimit 32
22    ThreadsPerChild 32
23    MaxClients 1024
24    MaxRequestsPerChild 1000000
25</IfModule>
26
27LoadModule auth_basic_module modules/mod_auth_basic.so
28LoadModule auth_digest_module modules/mod_auth_digest.so
29LoadModule authn_file_module modules/mod_authn_file.so
30LoadModule authn_alias_module modules/mod_authn_alias.so
31LoadModule authn_anon_module modules/mod_authn_anon.so
32#LoadModule authn_dbm_module modules/mod_authn_dbm.so
33LoadModule authn_default_module modules/mod_authn_default.so
34LoadModule authz_host_module modules/mod_authz_host.so
35LoadModule authz_user_module modules/mod_authz_user.so
36LoadModule authz_owner_module modules/mod_authz_owner.so
37LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
38#LoadModule authz_dbm_module modules/mod_authz_dbm.so
39LoadModule authz_default_module modules/mod_authz_default.so
40LoadModule ldap_module modules/mod_ldap.so
41#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
42LoadModule include_module modules/mod_include.so
43LoadModule log_config_module modules/mod_log_config.so
44#LoadModule logio_module modules/mod_logio.so
45LoadModule env_module modules/mod_env.so
46LoadModule ext_filter_module modules/mod_ext_filter.so
47#LoadModule mime_magic_module modules/mod_mime_magic.so
48LoadModule expires_module modules/mod_expires.so
49#LoadModule deflate_module modules/mod_deflate.so
50LoadModule headers_module modules/mod_headers.so
51#LoadModule usertrack_module modules/mod_usertrack.so
52LoadModule setenvif_module modules/mod_setenvif.so
53LoadModule mime_module modules/mod_mime.so
54#LoadModule dav_module modules/mod_dav.so
55#LoadModule status_module modules/mod_status.so
56LoadModule autoindex_module modules/mod_autoindex.so
57#LoadModule info_module modules/mod_info.so
58#LoadModule dav_fs_module modules/mod_dav_fs.so
59#LoadModule vhost_alias_module modules/mod_vhost_alias.so
60LoadModule negotiation_module modules/mod_negotiation.so
61LoadModule dir_module modules/mod_dir.so
62LoadModule actions_module modules/mod_actions.so
63#LoadModule speling_module modules/mod_speling.so
64LoadModule userdir_module modules/mod_userdir.so
65LoadModule alias_module modules/mod_alias.so
66LoadModule rewrite_module modules/mod_rewrite.so
67#LoadModule proxy_module modules/mod_proxy.so
68#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
69#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
70#LoadModule proxy_http_module modules/mod_proxy_http.so
71#LoadModule proxy_connect_module modules/mod_proxy_connect.so
72#LoadModule cache_module modules/mod_cache.so
73LoadModule suexec_module modules/mod_suexec.so
74#LoadModule disk_cache_module modules/mod_disk_cache.so
75#LoadModule file_cache_module modules/mod_file_cache.so
76#LoadModule mem_cache_module modules/mod_mem_cache.so
77LoadModule cgi_module modules/mod_cgi.so
78LoadModule ssl_module modules/mod_ssl.so
79LoadModule vhost_ldap_module modules/mod_vhost_ldap.so
80
81User apache
82Group apache
83
84#ErrorDocument  403  /403-404.html
85#ErrorDocument  404  /403-404.html
86#ErrorDocument  500  /script_error.html
87
88UserDir disabled
89
90<Directory />
91    AllowOverride None
92    Options FollowSymLinks IncludesNoExec
93</Directory>
94
95<Directory /afs/*/*/web_scripts>
96    AllowOverride All
97</Directory>
98<Directory /afs/*/*/*/web_scripts>
99    AllowOverride All
100</Directory>
101<Directory /afs/*/*/*/*/web_scripts>
102    AllowOverride All
103</Directory>
104<Directory /afs/*/*/*/*/*/web_scripts>
105    AllowOverride All
106</Directory>
107<Directory /afs/*/*/*/*/*/*/web_scripts>
108    AllowOverride All
109</Directory>
110<Directory /afs/*/*/*/*/*/*/*/web_scripts>
111    AllowOverride All
112</Directory>
113<Directory /afs/*/*/*/*/*/*/*/*/web_scripts>
114    AllowOverride All
115</Directory>
116
117<IfModule mod_dir.c>
118    DirectoryIndex index index.html index.htm index.cgi index.pl index.php index.py index.shtml index.exe
119</IfModule>
120
121AccessFileName .htaccess
122
123<Files ~ "^\.ht">
124    Order Allow,Deny
125    Deny from all
126</Files>
127
128UseCanonicalName Off
129TypesConfig /etc/mime.types
130DefaultType text/plain
131#MIMEMagicFile conf/magic
132
133HostnameLookups Off
134ErrorLog "/home/logview/error_log"
135LogLevel warn
136LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
137LogFormat "%h %l %u %t \"%r\" %>s %b" common
138#CustomLog /var/log/httpd/access_log combined
139ServerSignature Off
140ServerAdmin scripts@mit.edu
141ServerTokens Prod
142
143<IfModule mod_autoindex.c>
144    Alias /__scripts/icons /var/www/icons
145    <Directory /var/www/icons>
146        Options Indexes
147        AllowOverride None
148        <Files ~ "\.(gif|png)$">
149            SetHandler default-handler
150        </Files>
151    </Directory>
152
153    IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
154
155    AddIconByEncoding (CMP,/__scripts/icons/compressed.gif) x-compress x-gzip
156
157    AddIconByType (TXT,/__scripts/icons/text.gif) text/*
158    AddIconByType (IMG,/__scripts/icons/image2.gif) image/*
159    AddIconByType (SND,/__scripts/icons/sound2.gif) audio/*
160    AddIconByType (VID,/__scripts/icons/movie.gif) video/*
161
162    AddIcon /__scripts/icons/binary.gif .bin .exe
163    AddIcon /__scripts/icons/binhex.gif .hqx
164    AddIcon /__scripts/icons/tar.gif .tar
165    AddIcon /__scripts/icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
166    AddIcon /__scripts/icons/compressed.gif .Z .z .tgz .gz .zip
167    AddIcon /__scripts/icons/a.gif .ps .ai .eps
168    AddIcon /__scripts/icons/layout.gif .html .shtml .htm .pdf
169    AddIcon /__scripts/icons/text.gif .txt
170    AddIcon /__scripts/icons/c.gif .c
171    AddIcon /__scripts/icons/p.gif .pl .py
172    AddIcon /__scripts/icons/f.gif .for
173    AddIcon /__scripts/icons/dvi.gif .dvi
174    AddIcon /__scripts/icons/uuencoded.gif .uu
175    AddIcon /__scripts/icons/script.gif .conf .sh .shar .csh .ksh .tcl
176    AddIcon /__scripts/icons/tex.gif .tex
177    AddIcon /__scripts/icons/bomb.gif core
178
179    AddIcon /__scripts/icons/back.gif ..
180    AddIcon /__scripts/icons/hand.right.gif README
181    AddIcon /__scripts/icons/folder.gif ^^DIRECTORY^^
182    AddIcon /__scripts/icons/blank.gif ^^BLANKICON^^
183
184    DefaultIcon /__scripts/icons/unknown.gif
185
186    ReadmeName README
187    HeaderName HEADER
188   
189    IndexIgnore .??* *~ *# RCS CVS *,v *,t
190</IfModule>
191
192<IfModule mod_mime.c>
193    AddType application/xhtml+xml         .xhtml
194    AddType application/http-index-format .hti
195    AddType text/html                     .html
196    AddType text/css                      .css
197    AddType text/xsl                      .xslt
198    AddType application/x-javascript      .js
199    AddType application/xml               .xml
200    AddType image/svg+xml                 .svg
201    AddType application/vnd.mozilla.xul+xml .xul
202    AddType application/rdf+xml             .rdf
203    AddType application/x-xpinstall         .xpi
204    AddType text/xml .xsl
205    AddType text/html .shtml
206    AddHandler server-parsed .shtml
207
208    AddEncoding x-compress Z
209    AddEncoding x-gzip gz tgz
210
211    AddLanguage da .dk
212    AddLanguage nl .nl
213    AddLanguage en .en
214    AddLanguage et .ee
215    AddLanguage fr .fr
216    AddLanguage de .de
217    AddLanguage el .el
218    AddLanguage it .it
219    AddLanguage ja .ja
220    AddCharset ISO-2022-JP .jis
221    AddLanguage pl .po
222    AddCharset ISO-8859-2 .iso-pl
223    AddLanguage pt .pt
224    AddLanguage pt-br .pt-br
225    AddLanguage ltz .lu
226    AddLanguage ca .ca
227    AddLanguage es .es
228    AddLanguage sv .se
229    AddLanguage cz .cz
230
231    <IfModule mod_negotiation.c>
232        LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
233    </IfModule>
234
235    AddType application/x-tar .tgz
236    AddType image/bmp .bmp
237
238    AddType text/x-hdml .hdml
239</IfModule>
240
241<IfModule mod_setenvif.c>
242    BrowserMatch "Mozilla/2" nokeepalive
243    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
244    BrowserMatch "RealPlayer 4\.0" force-response-1.0
245    BrowserMatch "Java/1\.0" force-response-1.0
246    BrowserMatch "JDK/1\.0" force-response-1.0
247    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
248</IfModule>
249
250Listen 80
251
252RLimitCPU 60 60
253RLimitMEM 536870912 536870912
254RLimitNPROC 1024 1024
255
256SetEnv REDIRECT_STATUS CGI
257SetEnv PHPRC .
258
259NameVirtualHost *:80
260NameVirtualHost *:443
261NameVirtualHost *:444
262NameVirtualHost 18.181.0.50:80
263NameVirtualHost 18.181.0.50:443
264NameVirtualHost 18.181.0.50:444
265
266ServerName localhost
267DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
268
269#ExtendedStatus On
270RewriteEngine Off
271
272<Location /robots.txt>
273    ErrorDocument 404 "No robots.txt.
274</Location>
275<Location /favicon.ico>
276    ErrorDocument 404 "No favicon.ico.
277</Location>
278
279<VirtualHost 18.181.0.50:80>
280    ServerName scripts-cert.mit.edu
281    ServerAlias scripts-cert
282    Include conf.d/scripts-vhost.conf
283    Include conf.d/vhosts-common.conf
284</VirtualHost>
285
286# LDAP vhost, w00t w00t
287<VirtualHost *:80>
288    Include conf.d/vhost_ldap.conf
289    Include conf.d/vhosts-common.conf
290</VirtualHost>
291
292<VirtualHost *:80>
293    Include conf.d/scripts-vhost-names.conf
294    Include conf.d/scripts-vhost.conf
295    Include conf.d/vhosts-common.conf
296</VirtualHost>
297
298<IfModule ssl_module>
299    Listen 443
300    Listen 444
301
302    AddType application/x-x509-ca-cert .crt
303    AddType application/x-pkcs7-crl    .crl
304
305    SSLPassPhraseDialog  builtin
306    SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
307    SSLSessionCacheTimeout 28800
308    SSLMutex default
309    SSLRandomSeed startup file:/dev/urandom 256
310    SSLRandomSeed connect builtin
311    SSLCryptoDevice builtin
312    SSLCertificateFile /etc/pki/tls/certs/scripts.pem
313    SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
314    SSLCACertificateFile /etc/pki/tls/certs/ca.pem
315    SSLVerifyClient none
316    SSLOptions +StdEnvVars
317    SSLProtocol all -SSLv2
318    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
319    <VirtualHost 18.181.0.50:443 18.181.0.50:444>
320        ServerName scripts-cert.mit.edu
321        ServerAlias scripts-cert
322        Include conf.d/scripts-vhost.conf
323        Include conf.d/vhosts-common-ssl.conf
324        SSLCertificateFile /etc/pki/tls/certs/scripts-cert.pem
325        Include conf.d/vhosts-common-ssl-cert.conf
326    </VirtualHost>
327    # LDAP vhost, w00t w00t
328    <VirtualHost *:443>
329        ServerName localhost
330        Include conf.d/vhost_ldap.conf
331        Include conf.d/vhosts-common-ssl.conf
332    </VirtualHost>
333    <VirtualHost *:443>
334        ServerName scripts.scripts.mit.edu
335        ServerAlias *.scripts.mit.edu *.scripts
336        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
337        Include conf.d/vhost_ldap.conf
338        Include conf.d/vhosts-common-ssl.conf
339    </VirtualHost>
340    <VirtualHost *:443>
341        Include conf.d/scripts-vhost-names.conf
342        Include conf.d/scripts-vhost.conf
343        Include conf.d/vhosts-common-ssl.conf
344    </VirtualHost>
345    # LDAP vhost, w00t w00t
346    <VirtualHost *:444>
347        ServerName localhost
348        Include conf.d/vhost_ldap.conf
349        Include conf.d/vhosts-common-ssl.conf
350        Include conf.d/vhosts-common-ssl-cert.conf
351    </VirtualHost>
352    <VirtualHost *:444>
353        ServerName scripts.scripts.mit.edu
354        ServerAlias *.scripts.mit.edu *.scripts
355        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
356        Include conf.d/vhost_ldap.conf
357        Include conf.d/vhosts-common-ssl.conf
358        Include conf.d/vhosts-common-ssl-cert.conf
359    </VirtualHost>
360    <VirtualHost *:444>
361        Include conf.d/scripts-vhost-names.conf
362        Include conf.d/scripts-vhost.conf
363        Include conf.d/vhosts-common-ssl.conf
364        Include conf.d/vhosts-common-ssl-cert.conf
365    </VirtualHost>
366</IfModule>
367
368LoadModule fcgid_module modules/mod_fcgid.so
369AddHandler fcgid-script fcgi
370<Files *.fcgi>
371        Options +ExecCGI
372</Files>
373SocketPath run/mod_fcgid
374
375Include conf.d/auth_sslcert.conf
376Include conf.d/execsys.conf
377Include conf.d/scripts-special.conf
378Include vhosts.d/*.conf
Note: See TracBrowser for help on using the repository browser.