source: server/fedora/config/etc/httpd/conf/httpd.conf @ 973

Last change on this file since 973 was 973, checked in by geofft, 14 years ago
Change default cert to *.scripts except for 18.181.0.43.
File size: 12.4 KB
Line 
1ServerRoot /etc/httpd
2PidFile run/httpd.pid
3Timeout 300
4KeepAlive On
5MaxKeepAliveRequests 1000
6KeepAliveTimeout 15
7
8<IfModule mpm_prefork_module>
9    MinSpareServers 5
10    MaxSpareServers 50
11    StartServers 8
12    ServerLimit 512
13    MaxClients 512
14    MaxRequestsPerChild 10000
15</IfModule>
16
17<IfModule mpm_worker_module>
18    StartServers 3
19    MinSpareThreads 75
20    MaxSpareThreads 250
21    ServerLimit 64
22    ThreadsPerChild 32
23    MaxClients 1024
24    MaxRequestsPerChild 10000
25</IfModule>
26
27<IfModule mpm_event_module>
28    StartServers 3
29    MinSpareThreads 75
30    MaxSpareThreads 250
31    ServerLimit 64
32    ThreadsPerChild 32
33    MaxClients 2048
34    MaxRequestsPerChild 10000
35</IfModule>
36
37LoadModule auth_basic_module modules/mod_auth_basic.so
38LoadModule auth_digest_module modules/mod_auth_digest.so
39LoadModule authn_file_module modules/mod_authn_file.so
40LoadModule authn_alias_module modules/mod_authn_alias.so
41LoadModule authn_anon_module modules/mod_authn_anon.so
42#LoadModule authn_dbm_module modules/mod_authn_dbm.so
43LoadModule authn_default_module modules/mod_authn_default.so
44LoadModule authz_host_module modules/mod_authz_host.so
45LoadModule authz_user_module modules/mod_authz_user.so
46LoadModule authz_owner_module modules/mod_authz_owner.so
47LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
48#LoadModule authz_dbm_module modules/mod_authz_dbm.so
49LoadModule authz_default_module modules/mod_authz_default.so
50LoadModule ldap_module modules/mod_ldap.so
51#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
52LoadModule include_module modules/mod_include.so
53LoadModule log_config_module modules/mod_log_config.so
54#LoadModule logio_module modules/mod_logio.so
55LoadModule env_module modules/mod_env.so
56LoadModule ext_filter_module modules/mod_ext_filter.so
57#LoadModule mime_magic_module modules/mod_mime_magic.so
58LoadModule expires_module modules/mod_expires.so
59#LoadModule deflate_module modules/mod_deflate.so
60LoadModule headers_module modules/mod_headers.so
61#LoadModule usertrack_module modules/mod_usertrack.so
62LoadModule setenvif_module modules/mod_setenvif.so
63LoadModule mime_module modules/mod_mime.so
64#LoadModule dav_module modules/mod_dav.so
65LoadModule status_module modules/mod_status.so
66LoadModule autoindex_module modules/mod_autoindex.so
67#LoadModule info_module modules/mod_info.so
68#LoadModule dav_fs_module modules/mod_dav_fs.so
69#LoadModule vhost_alias_module modules/mod_vhost_alias.so
70LoadModule negotiation_module modules/mod_negotiation.so
71LoadModule dir_module modules/mod_dir.so
72LoadModule actions_module modules/mod_actions.so
73#LoadModule speling_module modules/mod_speling.so
74LoadModule userdir_module modules/mod_userdir.so
75LoadModule alias_module modules/mod_alias.so
76LoadModule rewrite_module modules/mod_rewrite.so
77#LoadModule proxy_module modules/mod_proxy.so
78#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
79#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
80#LoadModule proxy_http_module modules/mod_proxy_http.so
81#LoadModule proxy_connect_module modules/mod_proxy_connect.so
82#LoadModule cache_module modules/mod_cache.so
83LoadModule suexec_module modules/mod_suexec.so
84#LoadModule disk_cache_module modules/mod_disk_cache.so
85#LoadModule file_cache_module modules/mod_file_cache.so
86#LoadModule mem_cache_module modules/mod_mem_cache.so
87LoadModule cgi_module modules/mod_cgi.so
88LoadModule ssl_module modules/mod_ssl.so
89LoadModule vhost_ldap_module modules/mod_vhost_ldap.so
90
91User apache
92Group apache
93
94#ErrorDocument  403  /403-404.html
95#ErrorDocument  404  /403-404.html
96#ErrorDocument  500  /script_error.html
97
98UserDir disabled
99
100<Directory />
101    AllowOverride None
102    Options FollowSymLinks IncludesNoExec
103</Directory>
104
105<Directory /afs/*/*/web_scripts>
106    AllowOverride All
107</Directory>
108<Directory /afs/*/*/*/web_scripts>
109    AllowOverride All
110</Directory>
111<Directory /afs/*/*/*/*/web_scripts>
112    AllowOverride All
113</Directory>
114<Directory /afs/*/*/*/*/*/web_scripts>
115    AllowOverride All
116</Directory>
117<Directory /afs/*/*/*/*/*/*/web_scripts>
118    AllowOverride All
119</Directory>
120<Directory /afs/*/*/*/*/*/*/*/web_scripts>
121    AllowOverride All
122</Directory>
123<Directory /afs/*/*/*/*/*/*/*/*/web_scripts>
124    AllowOverride All
125</Directory>
126
127<IfModule mod_dir.c>
128    DirectoryIndex index index.html index.htm index.cgi index.pl index.php index.py index.shtml index.exe
129</IfModule>
130
131AccessFileName .htaccess
132
133<Files ~ "^\.ht">
134    Order Allow,Deny
135    Deny from all
136</Files>
137
138UseCanonicalName Off
139TypesConfig /etc/mime.types
140DefaultType text/plain
141#MIMEMagicFile conf/magic
142
143HostnameLookups Off
144ErrorLog "/home/logview/error_log"
145LogLevel warn
146LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
147LogFormat "%h %l %u %t \"%r\" %>s %b" common
148#CustomLog /var/log/httpd/access_log combined
149ServerSignature Off
150ServerAdmin scripts@mit.edu
151ServerTokens Prod
152
153<IfModule mod_autoindex.c>
154    Alias /__scripts/icons /var/www/icons
155    <Directory /var/www/icons>
156        Options Indexes
157        AllowOverride None
158        <Files ~ "\.(gif|png)$">
159            SetHandler default-handler
160        </Files>
161    </Directory>
162
163    IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
164
165    AddIconByEncoding (CMP,/__scripts/icons/compressed.gif) x-compress x-gzip
166
167    AddIconByType (TXT,/__scripts/icons/text.gif) text/*
168    AddIconByType (IMG,/__scripts/icons/image2.gif) image/*
169    AddIconByType (SND,/__scripts/icons/sound2.gif) audio/*
170    AddIconByType (VID,/__scripts/icons/movie.gif) video/*
171
172    AddIcon /__scripts/icons/binary.gif .bin .exe
173    AddIcon /__scripts/icons/binhex.gif .hqx
174    AddIcon /__scripts/icons/tar.gif .tar
175    AddIcon /__scripts/icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
176    AddIcon /__scripts/icons/compressed.gif .Z .z .tgz .gz .zip
177    AddIcon /__scripts/icons/a.gif .ps .ai .eps
178    AddIcon /__scripts/icons/layout.gif .html .shtml .htm .pdf
179    AddIcon /__scripts/icons/text.gif .txt
180    AddIcon /__scripts/icons/c.gif .c
181    AddIcon /__scripts/icons/p.gif .pl .py
182    AddIcon /__scripts/icons/f.gif .for
183    AddIcon /__scripts/icons/dvi.gif .dvi
184    AddIcon /__scripts/icons/uuencoded.gif .uu
185    AddIcon /__scripts/icons/script.gif .conf .sh .shar .csh .ksh .tcl
186    AddIcon /__scripts/icons/tex.gif .tex
187    AddIcon /__scripts/icons/bomb.gif core
188
189    AddIcon /__scripts/icons/back.gif ..
190    AddIcon /__scripts/icons/hand.right.gif README
191    AddIcon /__scripts/icons/folder.gif ^^DIRECTORY^^
192    AddIcon /__scripts/icons/blank.gif ^^BLANKICON^^
193
194    DefaultIcon /__scripts/icons/unknown.gif
195
196    ReadmeName README
197    HeaderName HEADER
198   
199    IndexIgnore .??* *~ *# RCS CVS *,v *,t
200</IfModule>
201
202<IfModule mod_mime.c>
203    AddType application/xhtml+xml         .xhtml
204    AddType application/http-index-format .hti
205    AddType text/html                     .html
206    AddType text/css                      .css
207    AddType text/xsl                      .xslt
208    AddType application/x-javascript      .js
209    AddType application/xml               .xml
210    AddType image/svg+xml                 .svg
211    AddType application/vnd.mozilla.xul+xml .xul
212    AddType application/rdf+xml             .rdf
213    AddType application/x-xpinstall         .xpi
214    AddType text/xml .xsl
215    AddType text/html .shtml
216    AddHandler server-parsed .shtml
217
218    AddEncoding x-compress Z
219    AddEncoding x-gzip gz tgz
220
221    AddLanguage da .dk
222    AddLanguage nl .nl
223    AddLanguage en .en
224    AddLanguage et .ee
225    AddLanguage fr .fr
226    AddLanguage de .de
227    AddLanguage el .el
228    AddLanguage it .it
229    AddLanguage ja .ja
230    AddCharset ISO-2022-JP .jis
231    AddLanguage pl .po
232    AddCharset ISO-8859-2 .iso-pl
233    AddLanguage pt .pt
234    AddLanguage pt-br .pt-br
235    AddLanguage ltz .lu
236    AddLanguage ca .ca
237    AddLanguage es .es
238    AddLanguage sv .se
239    AddLanguage cz .cz
240
241    <IfModule mod_negotiation.c>
242        LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
243    </IfModule>
244
245    AddType application/x-tar .tgz
246    AddType image/bmp .bmp
247
248    AddType text/x-hdml .hdml
249</IfModule>
250
251<IfModule mod_setenvif.c>
252    BrowserMatch "Mozilla/2" nokeepalive
253    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
254    BrowserMatch "RealPlayer 4\.0" force-response-1.0
255    BrowserMatch "Java/1\.0" force-response-1.0
256    BrowserMatch "JDK/1\.0" force-response-1.0
257    SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
258</IfModule>
259
260Listen 80
261
262RLimitCPU 60 60
263RLimitMEM 536870912 536870912
264RLimitNPROC 4096 4096
265
266SetEnv REDIRECT_STATUS CGI
267
268NameVirtualHost *:80
269NameVirtualHost *:443
270NameVirtualHost *:444
271NameVirtualHost 18.181.0.50:80
272NameVirtualHost 18.181.0.50:443
273NameVirtualHost 18.181.0.50:444
274
275ServerName localhost
276DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
277
278ExtendedStatus On
279RewriteEngine Off
280
281<Location /robots.txt>
282    ErrorDocument 404 "No robots.txt.
283</Location>
284<Location /favicon.ico>
285    ErrorDocument 404 "No favicon.ico.
286</Location>
287
288<VirtualHost 18.181.0.50:80>
289    ServerName scripts-cert.mit.edu
290    ServerAlias scripts-cert
291    Include conf.d/scripts-vhost.conf
292    Include conf.d/vhosts-common.conf
293</VirtualHost>
294
295# LDAP vhost, w00t w00t
296<VirtualHost *:80>
297    Include conf.d/vhost_ldap.conf
298    Include conf.d/vhosts-common.conf
299</VirtualHost>
300
301<VirtualHost *:80>
302    Include conf.d/scripts-vhost-names.conf
303    Include conf.d/scripts-vhost.conf
304    Include conf.d/vhosts-common.conf
305</VirtualHost>
306
307<IfModule ssl_module>
308    Listen 443
309    Listen 444
310
311    AddType application/x-x509-ca-cert .crt
312    AddType application/x-pkcs7-crl    .crl
313
314    SSLPassPhraseDialog  builtin
315    SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
316    SSLSessionCacheTimeout 28800
317    SSLMutex default
318    SSLRandomSeed startup file:/dev/urandom 256
319    SSLRandomSeed connect builtin
320    SSLCryptoDevice builtin
321    SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
322    SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
323    SSLCACertificateFile /etc/pki/tls/certs/ca.pem
324    SSLVerifyClient none
325    SSLOptions +StdEnvVars
326    SSLProtocol all -SSLv2
327    SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
328    <VirtualHost 18.181.0.50:443 18.181.0.50:444>
329        ServerName scripts-cert.mit.edu
330        ServerAlias scripts-cert
331        Include conf.d/scripts-vhost.conf
332        Include conf.d/vhosts-common-ssl.conf
333        SSLCertificateFile /etc/pki/tls/certs/scripts-cert.pem
334        Include conf.d/vhosts-common-ssl-cert.conf
335    </VirtualHost>
336    <VirtualHost 18.181.0.43:443>
337        Include conf.d/scripts-vhost-names.conf
338        Include conf.d/scripts-vhost.conf
339        Include conf.d/vhosts-common-ssl.conf
340        SSLCertificateFile /etc/pki/tls/certs/scripts.pem
341    </VirtualHost>
342    <VirtualHost 18.181.0.43:444>
343        Include conf.d/scripts-vhost-names.conf
344        Include conf.d/scripts-vhost.conf
345        Include conf.d/vhosts-common-ssl.conf
346        Include conf.d/vhosts-common-ssl-cert.conf
347        SSLCertificateFile /etc/pki/tls/certs/scripts.pem
348    </VirtualHost>
349    # LDAP vhost, w00t w00t
350    <VirtualHost *:443>
351        ServerName localhost
352        Include conf.d/vhost_ldap.conf
353        Include conf.d/vhosts-common-ssl.conf
354    </VirtualHost>
355    <VirtualHost *:443>
356        ServerName scripts.scripts.mit.edu
357        ServerAlias *.scripts.mit.edu *.scripts
358        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
359        Include conf.d/vhost_ldap.conf
360        Include conf.d/vhosts-common-ssl.conf
361    </VirtualHost>
362    <VirtualHost *:443>
363        Include conf.d/scripts-vhost-names.conf
364        Include conf.d/scripts-vhost.conf
365        Include conf.d/vhosts-common-ssl.conf
366    </VirtualHost>
367    # LDAP vhost, w00t w00t
368    <VirtualHost *:444>
369        ServerName localhost
370        Include conf.d/vhost_ldap.conf
371        Include conf.d/vhosts-common-ssl.conf
372        Include conf.d/vhosts-common-ssl-cert.conf
373    </VirtualHost>
374    <VirtualHost *:444>
375        ServerName scripts.scripts.mit.edu
376        ServerAlias *.scripts.mit.edu *.scripts
377        SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
378        Include conf.d/vhost_ldap.conf
379        Include conf.d/vhosts-common-ssl.conf
380        Include conf.d/vhosts-common-ssl-cert.conf
381    </VirtualHost>
382    <VirtualHost *:444>
383        Include conf.d/scripts-vhost-names.conf
384        Include conf.d/scripts-vhost.conf
385        Include conf.d/vhosts-common-ssl.conf
386        Include conf.d/vhosts-common-ssl-cert.conf
387    </VirtualHost>
388</IfModule>
389
390LoadModule fcgid_module modules/mod_fcgid.so
391AddHandler fcgid-script fcgi
392<Files *.fcgi>
393        Options +ExecCGI
394</Files>
395SocketPath run/mod_fcgid
396
397Include conf.d/auth_sslcert.conf
398Include conf.d/execsys.conf
399Include conf.d/scripts-special.conf
400Include vhosts.d/*.conf
Note: See TracBrowser for help on using the repository browser.