source: server/fedora/config/etc/httpd/conf/httpd.conf @ 842

Last change on this file since 842 was 842, checked in by andersk, 16 years ago
Run php directly from suexec, so php scripts don’t need to be executable.
File size: 11.7 KB
Line 
1ServerRoot /etc/httpd
2PidFile run/httpd.pid
3Timeout 300
4KeepAlive On
5MaxKeepAliveRequests 1000
6KeepAliveTimeout 15
7
8<IfModule mpm_prefork_module>
9    MinSpareServers 5
10    MaxSpareServers 50
11    StartServers 8
12    ServerLimit 512
13    MaxClients 512
14    MaxRequestsPerChild 10000
15</IfModule>
16
17<IfModule mpm_worker_module>
18    StartServers 3
19    MinSpareThreads 75
20    MaxSpareThreads 250
21    ServerLimit 32
22    ThreadsPerChild 32
23    MaxClients 1024
24    MaxRequestsPerChild 10000
25</IfModule>
26
27LoadModule auth_basic_module modules/mod_auth_basic.so
28LoadModule auth_digest_module modules/mod_auth_digest.so
29LoadModule authn_file_module modules/mod_authn_file.so
30LoadModule authn_alias_module modules/mod_authn_alias.so
31LoadModule authn_anon_module modules/mod_authn_anon.so
32#LoadModule authn_dbm_module modules/mod_authn_dbm.so
33LoadModule authn_default_module modules/mod_authn_default.so
34LoadModule authz_host_module modules/mod_authz_host.so
35LoadModule authz_user_module modules/mod_authz_user.so
36LoadModule authz_owner_module modules/mod_authz_owner.so
37LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
38#LoadModule authz_dbm_module modules/mod_authz_dbm.so
39LoadModule authz_default_module modules/mod_authz_default.so
40LoadModule ldap_module modules/mod_ldap.so
41#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
42LoadModule include_module modules/mod_include.so
43LoadModule log_config_module modules/mod_log_config.so
44#LoadModule logio_module modules/mod_logio.so
45LoadModule env_module modules/mod_env.so
46LoadModule ext_filter_module modules/mod_ext_filter.so
47#LoadModule mime_magic_module modules/mod_mime_magic.so
48LoadModule expires_module modules/mod_expires.so
49#LoadModule deflate_module modules/mod_deflate.so
50LoadModule headers_module modules/mod_headers.so
51#LoadModule usertrack_module modules/mod_usertrack.so
52LoadModule setenvif_module modules/mod_setenvif.so
53LoadModule mime_module modules/mod_mime.so
54#LoadModule dav_module modules/mod_dav.so
55#LoadModule status_module modules/mod_status.so
56LoadModule autoindex_module modules/mod_autoindex.so
57#LoadModule info_module modules/mod_info.so
58#LoadModule dav_fs_module modules/mod_dav_fs.so
59#LoadModule vhost_alias_module modules/mod_vhost_alias.so
60LoadModule negotiation_module modules/mod_negotiation.so
61LoadModule dir_module modules/mod_dir.so
62LoadModule actions_module modules/mod_actions.so
63#LoadModule speling_module modules/mod_speling.so
64LoadModule userdir_module modules/mod_userdir.so
65LoadModule alias_module modules/mod_alias.so
66LoadModule rewrite_module modules/mod_rewrite.so
67#LoadModule proxy_module modules/mod_proxy.so
68#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
69#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
70#LoadModule proxy_http_module modules/mod_proxy_http.so
71#LoadModule proxy_connect_module modules/mod_proxy_connect.so
72#LoadModule cache_module modules/mod_cache.so
73LoadModule suexec_module modules/mod_suexec.so
74#LoadModule disk_cache_module modules/mod_disk_cache.so
75#LoadModule file_cache_module modules/mod_file_cache.so
76#LoadModule mem_cache_module modules/mod_mem_cache.so
77LoadModule cgi_module modules/mod_cgi.so
78LoadModule ssl_module modules/mod_ssl.so
79LoadModule vhost_ldap_module modules/mod_vhost_ldap.so
80
81User apache
82Group apache
83
84#ErrorDocument  403  /403-404.html
85#ErrorDocument  404  /403-404.html
86#ErrorDocument  500  /script_error.html
87
88UserDir disabled
89
90<Directory />
91    AllowOverride None
92    Options FollowSymLinks IncludesNoExec
93</Directory>
94
95<Directory /afs/*/*/web_scripts>
96    AllowOverride All
97</Directory>
98<Directory /afs/*/*/*/web_scripts>
99    AllowOverride All
100</Directory>
101<Directory /afs/*/*/*/*/web_scripts>
102    AllowOverride All
103</Directory>
104<Directory /afs/*/*/*/*/*/web_scripts>
105    AllowOverride All
106</Directory>
107<Directory /afs/*/*/*/*/*/*/web_scripts>
108    AllowOverride All
109</Directory>
110<Directory /afs/*/*/*/*/*/*/*/web_scripts>
111    AllowOverride All
112</Directory>
113<Directory /afs/*/*/*/*/*/*/*/*/web_scripts>
114    AllowOverride All
115</Directory>
116
117<IfModule mod_dir.c>
118    DirectoryIndex index index.html index.htm index.cgi index.pl index.php index.py index.shtml index.exe
119</IfModule>
120
121AccessFileName .htaccess
122
123<Files ~ "^\.ht">
124    Order Allow,Deny
125    Deny from all
126</Files>
127
128UseCanonicalName Off
129TypesConfig /etc/mime.types
130DefaultType text/plain
131#MIMEMagicFile conf/magic
132
133HostnameLookups Off
134ErrorLog "/home/logview/error_log"
135LogLevel warn
136LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
137LogFormat "%h %l %u %t \"%r\" %>s %b" common
138#CustomLog /var/log/httpd/access_log combined
139ServerSignature Off
140ServerAdmin scripts@mit.edu
141ServerTokens Prod
142
143<IfModule mod_autoindex.c>
144    Alias /__scripts/icons /var/www/icons
145    <Directory /var/www/icons>
146        Options Indexes
147        AllowOverride None
148        <Files ~ "\.(gif|png)$">
149            SetHandler default-handler
150        </Files>
151    </Directory>
152
153    IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
154
155    AddIconByEncoding (CMP,/__scripts/icons/compressed.gif) x-compress x-gzip
156
157    AddIconByType (TXT,/__scripts/icons/text.gif) text/*
158    AddIconByType (IMG,/__scripts/icons/image2.gif) image/*
159    AddIconByType (SND,/__scripts/icons/sound2.gif) audio/*
160    AddIconByType (VID,/__scripts/icons/movie.gif) video/*
161
162    AddIcon /__scripts/icons/binary.gif .bin .exe
163    AddIcon /__scripts/icons/binhex.gif .hqx
164    AddIcon /__scripts/icons/tar.gif .tar
165    AddIcon /__scripts/icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
166    AddIcon /__scripts/icons/compressed.gif .Z .z .tgz .gz .zip
167    AddIcon /__scripts/icons/a.gif .ps .ai .eps
168    AddIcon /__scripts/icons/layout.gif .html .shtml .htm .pdf
169    AddIcon /__scripts/icons/text.gif .txt
170    AddIcon /__scripts/icons/c.gif .c
171    AddIcon /__scripts/icons/p.gif .pl .py
172    AddIcon /__scripts/icons/f.gif .for
173    AddIcon /__scripts/icons/dvi.gif .dvi
174    AddIcon /__scripts/icons/uuencoded.gif .uu
175    AddIcon /__scripts/icons/script.gif .conf .sh .shar .csh .ksh .tcl
176    AddIcon /__scripts/icons/tex.gif .tex
177    AddIcon /__scripts/icons/bomb.gif core
178
179    AddIcon /__scripts/icons/back.gif ..
180    AddIcon /__scripts/icons/hand.right.gif README
181    AddIcon /__scripts/icons/folder.gif ^^DIRECTORY^^
182    AddIcon /__scripts/icons/blank.gif ^^BLANKICON^^
183
184    DefaultIcon /__scripts/icons/unknown.gif
185
186    ReadmeName README
187    HeaderName HEADER
188   
189    IndexIgnore .??* *~ *# RCS CVS *,v *,t
190</IfModule>
191
192<IfModule mod_mime.c>
193    AddType application/xhtml+xml         .xhtml
194    AddType application/http-index-format .hti
195    AddType text/html                     .html
196    AddType text/css                      .css
197    AddType text/xsl                      .xslt
198    AddType application/x-javascript      .js
199    AddType application/xml               .xml
200    AddType image/svg+xml                 .svg
201    AddType application/vnd.mozilla.xul+xml .xul
202    AddType application/rdf+xml             .rdf
203    AddType application/x-xpinstall         .xpi
204    AddType text/xml .xsl
205    AddType text/html .shtml
206    AddHandler server-parsed .shtml
207
208    AddEncoding x-compress Z
209    AddEncoding x-gzip gz tgz
210
211    AddLanguage da .dk
212    AddLanguage nl .nl
213    AddLanguage en .en
214    AddLanguage et .ee
215    AddLanguage fr .fr
216    AddLanguage de .de
217    AddLanguage el .el
218    AddLanguage it .it
219    AddLanguage ja .ja
220    AddCharset ISO-2022-JP .jis
221    AddLanguage pl .po
222    AddCharset ISO-8859-2 .iso-pl
223    AddLanguage pt .pt
224    AddLanguage pt-br .pt-br
225    AddLanguage ltz .lu
226    AddLanguage ca .ca
227    AddLanguage es .es
228    AddLanguage sv .se
229    AddLanguage cz .cz
230
231    <IfModule mod_negotiation.c>
232        LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
233    </IfModule>
234
235    AddType application/x-tar .tgz
236    AddType image/bmp .bmp
237
238    AddType text/x-hdml .hdml
239</IfModule>
240
241<IfModule mod_setenvif.c>
242    BrowserMatch "Mozilla/2" nokeepalive
243    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
244    BrowserMatch "RealPlayer 4\.0" force-response-1.0
245    BrowserMatch "Java/1\.0" force-response-1.0
246    BrowserMatch "JDK/1\.0" force-response-1.0
247    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
248</IfModule>
249
250Listen 80
251
252RLimitCPU 60 60
253RLimitMEM 536870912 536870912
254RLimitNPROC 1024 1024
255
256SetEnv REDIRECT_STATUS CGI
257
258NameVirtualHost *:80
259NameVirtualHost *:443
260NameVirtualHost *:444
261NameVirtualHost 18.181.0.50:80
262NameVirtualHost 18.181.0.50:443
263NameVirtualHost 18.181.0.50:444
264
265ServerName localhost
266DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
267
268#ExtendedStatus On
269RewriteEngine Off
270
271<Location /robots.txt>
272    ErrorDocument 404 "No robots.txt.
273</Location>
274<Location /favicon.ico>
275    ErrorDocument 404 "No favicon.ico.
276</Location>
277
278<VirtualHost 18.181.0.50:80>
279    ServerName scripts-cert.mit.edu
280    ServerAlias scripts-cert
281    Include conf.d/scripts-vhost.conf
282    Include conf.d/vhosts-common.conf
283</VirtualHost>
284
285# LDAP vhost, w00t w00t
286<VirtualHost *:80>
287    Include conf.d/vhost_ldap.conf
288    Include conf.d/vhosts-common.conf
289</VirtualHost>
290
291<VirtualHost *:80>
292    Include conf.d/scripts-vhost-names.conf
293    Include conf.d/scripts-vhost.conf
294    Include conf.d/vhosts-common.conf
295</VirtualHost>
296
297<IfModule ssl_module>
298    Listen 443
299    Listen 444
300
301    AddType application/x-x509-ca-cert .crt
302    AddType application/x-pkcs7-crl    .crl
303
304    SSLPassPhraseDialog  builtin
305    SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
306    SSLSessionCacheTimeout 28800
307    SSLMutex default
308    SSLRandomSeed startup file:/dev/urandom 256
309    SSLRandomSeed connect builtin
310    SSLCryptoDevice builtin
311    SSLCertificateFile /etc/pki/tls/certs/scripts.pem
312    SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
313    SSLCACertificateFile /etc/pki/tls/certs/ca.pem
314    SSLVerifyClient none
315    SSLOptions +StdEnvVars
316    SSLProtocol all -SSLv2
317    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
318    <VirtualHost 18.181.0.50:443 18.181.0.50:444>
319        ServerName scripts-cert.mit.edu
320        ServerAlias scripts-cert
321        Include conf.d/scripts-vhost.conf
322        Include conf.d/vhosts-common-ssl.conf
323        SSLCertificateFile /etc/pki/tls/certs/scripts-cert.pem
324        Include conf.d/vhosts-common-ssl-cert.conf
325    </VirtualHost>
326    # LDAP vhost, w00t w00t
327    <VirtualHost *:443>
328        ServerName localhost
329        Include conf.d/vhost_ldap.conf
330        Include conf.d/vhosts-common-ssl.conf
331    </VirtualHost>
332    <VirtualHost *:443>
333        ServerName scripts.scripts.mit.edu
334        ServerAlias *.scripts.mit.edu *.scripts
335        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
336        Include conf.d/vhost_ldap.conf
337        Include conf.d/vhosts-common-ssl.conf
338    </VirtualHost>
339    <VirtualHost *:443>
340        Include conf.d/scripts-vhost-names.conf
341        Include conf.d/scripts-vhost.conf
342        Include conf.d/vhosts-common-ssl.conf
343    </VirtualHost>
344    # LDAP vhost, w00t w00t
345    <VirtualHost *:444>
346        ServerName localhost
347        Include conf.d/vhost_ldap.conf
348        Include conf.d/vhosts-common-ssl.conf
349        Include conf.d/vhosts-common-ssl-cert.conf
350    </VirtualHost>
351    <VirtualHost *:444>
352        ServerName scripts.scripts.mit.edu
353        ServerAlias *.scripts.mit.edu *.scripts
354        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
355        Include conf.d/vhost_ldap.conf
356        Include conf.d/vhosts-common-ssl.conf
357        Include conf.d/vhosts-common-ssl-cert.conf
358    </VirtualHost>
359    <VirtualHost *:444>
360        Include conf.d/scripts-vhost-names.conf
361        Include conf.d/scripts-vhost.conf
362        Include conf.d/vhosts-common-ssl.conf
363        Include conf.d/vhosts-common-ssl-cert.conf
364    </VirtualHost>
365</IfModule>
366
367LoadModule fcgid_module modules/mod_fcgid.so
368AddHandler fcgid-script fcgi
369<Files *.fcgi>
370        Options +ExecCGI
371</Files>
372SocketPath run/mod_fcgid
373
374Include conf.d/auth_sslcert.conf
375Include conf.d/execsys.conf
376Include conf.d/scripts-special.conf
377Include vhosts.d/*.conf
Note: See TracBrowser for help on using the repository browser.