Context Navigation

source: trunk/server/fedora/config/etc/httpd/conf/httpd.conf @ 2592

Last change on this file since 2592 was 2592, checked in by achernya, 10 years ago
Add mod_filter to Apache
File size: 13.3 KB

Line
1	ServerRoot /etc/httpd
2	PidFile run/httpd.pid
3	Timeout 300
4	KeepAlive On
5	MaxKeepAliveRequests 1000
6	KeepAliveTimeout 15
7
8	LoadModule mpm_worker_module modules/mod_mpm_worker.so
9
10	<IfModule mpm_prefork_module>
11	MinSpareServers 5
12	MaxSpareServers 50
13	StartServers 8
14	ServerLimit 512
15	MaxClients 512
16	MaxRequestsPerChild 10000
17	</IfModule>
18
19	<IfModule mpm_worker_module>
20	StartServers 3
21	MinSpareThreads 75
22	MaxSpareThreads 250
23	ServerLimit 64
24	ThreadsPerChild 32
25	MaxClients 1024
26	MaxRequestsPerChild 10000
27	</IfModule>
28
29	<IfModule mpm_event_module>
30	StartServers 3
31	MinSpareThreads 75
32	MaxSpareThreads 250
33	ServerLimit 64
34	ThreadsPerChild 32
35	MaxClients 2048
36	MaxRequestsPerChild 10000
37	</IfModule>
38
39	# This file configures systemd module:
40	LoadModule systemd_module modules/mod_systemd.so
41
42	# Enable .htaccess files to use the legacy Order By syntax
43	LoadModule access_compat_module modules/mod_access_compat.so
44
45	LoadModule auth_basic_module modules/mod_auth_basic.so
46	LoadModule auth_digest_module modules/mod_auth_digest.so
47	LoadModule authn_core_module modules/mod_authn_core.so
48	LoadModule authn_file_module modules/mod_authn_file.so
49	LoadModule authn_anon_module modules/mod_authn_anon.so
50	#LoadModule authn_dbm_module modules/mod_authn_dbm.so
51	LoadModule authz_core_module modules/mod_authz_core.so
52	LoadModule authz_host_module modules/mod_authz_host.so
53	LoadModule authz_user_module modules/mod_authz_user.so
54	LoadModule authz_owner_module modules/mod_authz_owner.so
55	LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
56	#LoadModule authz_dbm_module modules/mod_authz_dbm.so
57	LoadModule ldap_module modules/mod_ldap.so
58	#LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
59	LoadModule include_module modules/mod_include.so
60	LoadModule log_config_module modules/mod_log_config.so
61	#LoadModule logio_module modules/mod_logio.so
62	LoadModule env_module modules/mod_env.so
63	LoadModule ext_filter_module modules/mod_ext_filter.so
64	#LoadModule mime_magic_module modules/mod_mime_magic.so
65	LoadModule expires_module modules/mod_expires.so
66	LoadModule deflate_module modules/mod_deflate.so
67	LoadModule headers_module modules/mod_headers.so
68	#LoadModule usertrack_module modules/mod_usertrack.so
69	LoadModule setenvif_module modules/mod_setenvif.so
70	LoadModule mime_module modules/mod_mime.so
71	#LoadModule dav_module modules/mod_dav.so
72	LoadModule status_module modules/mod_status.so
73	LoadModule autoindex_module modules/mod_autoindex.so
74	#LoadModule info_module modules/mod_info.so
75	#LoadModule dav_fs_module modules/mod_dav_fs.so
76	#LoadModule vhost_alias_module modules/mod_vhost_alias.so
77	LoadModule negotiation_module modules/mod_negotiation.so
78	LoadModule dir_module modules/mod_dir.so
79	LoadModule actions_module modules/mod_actions.so
80	#LoadModule speling_module modules/mod_speling.so
81	LoadModule userdir_module modules/mod_userdir.so
82	LoadModule alias_module modules/mod_alias.so
83	LoadModule rewrite_module modules/mod_rewrite.so
84	LoadModule proxy_module modules/mod_proxy.so
85	LoadModule proxy_http_module modules/mod_proxy_http.so
86	#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
87	#LoadModule proxy_connect_module modules/mod_proxy_connect.so
88	#LoadModule cache_module modules/mod_cache.so
89	LoadModule suexec_module modules/mod_suexec.so
90	#LoadModule disk_cache_module modules/mod_disk_cache.so
91	#LoadModule file_cache_module modules/mod_file_cache.so
92	#LoadModule mem_cache_module modules/mod_mem_cache.so
93	LoadModule cgi_module modules/mod_cgi.so
94	LoadModule ssl_module modules/mod_ssl.so
95	LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
96	LoadModule vhost_ldap_module modules/mod_vhost_ldap.so
97	LoadModule unixd_module modules/mod_unixd.so
98	LoadModule filter_module modules/mod_filter.so
99
100	User apache
101	Group apache
102
103	#ErrorDocument 403 /403-404.html
104	#ErrorDocument 404 /403-404.html
105	#ErrorDocument 500 /script_error.html
106
107	UserDir disabled
108
109	<Directory />
110	AllowOverride None
111	Options FollowSymLinks IncludesNoExec
112	# The new syntax wasn't added until 2.4,
113	# so there's simply no way any deployed sites
114	# are already using the new syntax.
115	<IfModule include_module>
116	SSILegacyExprParser on
117	</IfModule>
118	</Directory>
119
120	<Directory /afs///web_scripts>
121	AllowOverride All
122	</Directory>
123	<Directory /afs///*/web_scripts>
124	AllowOverride All
125	</Directory>
126	<Directory /afs/////web_scripts>
127	AllowOverride All
128	</Directory>
129	<Directory /afs/////*/web_scripts>
130	AllowOverride All
131	</Directory>
132	<Directory /afs///////web_scripts>
133	AllowOverride All
134	</Directory>
135	<Directory /afs///////*/web_scripts>
136	AllowOverride All
137	</Directory>
138	<Directory /afs/////////web_scripts>
139	AllowOverride All
140	</Directory>
141
142	<IfModule mod_dir.c>
143	DirectoryIndex index index.html index.htm index.cgi index.pl index.php index.py index.shtml index.exe index.fcgi
144	</IfModule>
145
146	AccessFileName .htaccess
147
148	<Files ~ "^\.ht">
149	Require all denied
150	</Files>
151
152	UseCanonicalName Off
153	TypesConfig /etc/mime.types
154	#MIMEMagicFile conf/magic
155
156	HostnameLookups Off
157	ErrorLog "/home/logview/error_log"
158	LogLevel warn
159	LogFormat "%V %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
160	LogFormat "%h %l %u %t \"%r\" %>s %b" common
161	LogFormat "%a %V %U" statistics
162	#CustomLog /var/log/httpd/access_log combined
163	#CustomLog "\|/etc/httpd/statistics_log_mitonly.sh" statistics
164	ServerSignature Off
165	ServerAdmin scripts@mit.edu
166	ServerTokens Prod
167	Header add Scripts-IP "%{SERVER_ADDR}e"
168
169	<IfModule mod_autoindex.c>
170	Alias /__scripts/icons /usr/share/httpd/icons/
171	<Directory /usr/share/httpd/icons/>
172	Options Indexes
173	AllowOverride None
174	<Files ~ "\.(gif\|png)$">
175	SetHandler default-handler
176	</Files>
177	</Directory>
178
179	IndexOptions FancyIndexing VersionSort NameWidth=* HTMLTable
180
181	AddIconByEncoding (CMP,/__scripts/icons/compressed.gif) x-compress x-gzip
182
183	AddIconByType (TXT,/__scripts/icons/text.gif) text/*
184	AddIconByType (IMG,/__scripts/icons/image2.gif) image/*
185	AddIconByType (SND,/__scripts/icons/sound2.gif) audio/*
186	AddIconByType (VID,/__scripts/icons/movie.gif) video/*
187
188	AddIcon /__scripts/icons/binary.gif .bin .exe
189	AddIcon /__scripts/icons/binhex.gif .hqx
190	AddIcon /__scripts/icons/tar.gif .tar
191	AddIcon /__scripts/icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
192	AddIcon /__scripts/icons/compressed.gif .Z .z .tgz .gz .zip
193	AddIcon /__scripts/icons/a.gif .ps .ai .eps
194	AddIcon /__scripts/icons/layout.gif .html .shtml .htm .pdf
195	AddIcon /__scripts/icons/text.gif .txt
196	AddIcon /__scripts/icons/c.gif .c
197	AddIcon /__scripts/icons/p.gif .pl .py
198	AddIcon /__scripts/icons/f.gif .for
199	AddIcon /__scripts/icons/dvi.gif .dvi
200	AddIcon /__scripts/icons/uuencoded.gif .uu
201	AddIcon /__scripts/icons/script.gif .conf .sh .shar .csh .ksh .tcl
202	AddIcon /__scripts/icons/tex.gif .tex
203	AddIcon /__scripts/icons/bomb.gif core
204
205	AddIcon /__scripts/icons/back.gif ..
206	AddIcon /__scripts/icons/hand.right.gif README
207	AddIcon /__scripts/icons/folder.gif ^^DIRECTORY^^
208	AddIcon /__scripts/icons/blank.gif ^^BLANKICON^^
209
210	DefaultIcon /__scripts/icons/unknown.gif
211
212	ReadmeName README
213	HeaderName HEADER
214
215	IndexIgnore .??* ~ # RCS CVS ,v ,t
216	</IfModule>
217
218	<IfModule mod_mime.c>
219	AddType application/xhtml+xml .xhtml
220	AddType application/http-index-format .hti
221	AddType text/html .html
222	AddType text/css .css
223	AddType text/xsl .xslt
224	AddType application/x-javascript .js
225	AddType application/xml .xml
226	AddType image/svg+xml .svg
227	AddType application/vnd.mozilla.xul+xml .xul
228	AddType application/rdf+xml .rdf
229	AddType application/x-xpinstall .xpi
230	AddType text/xml .xsl
231	AddType text/html .shtml
232	AddHandler server-parsed .shtml
233
234	AddEncoding x-compress Z
235	AddEncoding x-gzip gz tgz
236
237	AddLanguage da .dk
238	AddLanguage nl .nl
239	AddLanguage en .en
240	AddLanguage et .ee
241	AddLanguage fr .fr
242	AddLanguage de .de
243	AddLanguage el .el
244	AddLanguage it .it
245	AddLanguage ja .ja
246	AddCharset ISO-2022-JP .jis
247	AddLanguage pl .po
248	AddCharset ISO-8859-2 .iso-pl
249	AddLanguage pt .pt
250	AddLanguage pt-br .pt-br
251	AddLanguage ltz .lu
252	AddLanguage ca .ca
253	AddLanguage es .es
254	AddLanguage sv .se
255	AddLanguage cz .cz
256
257	<IfModule mod_negotiation.c>
258	LanguagePriority en da nl et fr de el it ja pl pt pt-br ltz ca es sv
259	</IfModule>
260
261	AddType application/x-tar .tgz
262	AddType image/bmp .bmp
263
264	AddType text/x-hdml .hdml
265	</IfModule>
266
267	<IfModule mod_setenvif.c>
268	BrowserMatch "Mozilla/2" nokeepalive
269	BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
270	BrowserMatch "RealPlayer 4\.0" force-response-1.0
271	BrowserMatch "Java/1\.0" force-response-1.0
272	BrowserMatch "JDK/1\.0" force-response-1.0
273	SetEnvIf User-Agent ".MSIE." nokeepalive ssl-unclean-shutdown
274	</IfModule>
275
276	Listen 80
277
278	RLimitCPU 300 300
279	RLimitMEM 1610612736 1610612736
280	RLimitNPROC 4096 4096
281
282	ServerName localhost
283	DocumentRoot /afs/athena.mit.edu/contrib/scripts/www
284
285	ExtendedStatus On
286	RewriteEngine Off
287
288	ProxyRequests Off
289
290	<Location /robots.txt>
291	ErrorDocument 404 "No robots.txt.
292	</Location>
293	<Location /favicon.ico>
294	ErrorDocument 404 "No favicon.ico.
295	</Location>
296
297	<VirtualHost 18.181.0.50:80>
298	ServerName scripts-cert.mit.edu
299	ServerAlias scripts-cert
300	Include conf.d/scripts-vhost.conf
301	Include conf.d/vhosts-common.conf
302	</VirtualHost>
303
304	# LDAP vhost, w00t w00t
305	<VirtualHost *:80>
306	Include conf.d/vhost_ldap.conf
307	Include conf.d/vhosts-common.conf
308	</VirtualHost>
309
310	<VirtualHost *:80>
311	Include conf.d/scripts-vhost-names.conf
312	Include conf.d/scripts-vhost.conf
313	Include conf.d/vhosts-common.conf
314	</VirtualHost>
315
316	<IfModule ssl_module>
317	Listen 443
318	Listen 444
319
320	AddType application/x-x509-ca-cert .crt
321	AddType application/x-pkcs7-crl .crl
322
323	# This directive allows insecure renegotiations to succeed for browsers
324	# that do not yet support RFC 5746. It should be removed when enough
325	# of the world has caught up.
326	SSLInsecureRenegotiation on
327
328	# Temporary fix for presumed CRIME attack against SSL
329	SSLCompression off
330
331	SSLPassPhraseDialog builtin
332	SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
333	SSLSessionCacheTimeout 28800
334	SSLRandomSeed startup file:/dev/urandom 256
335	SSLRandomSeed connect builtin
336	SSLCryptoDevice builtin
337	SSLCACertificateFile /etc/pki/tls/certs/ca.pem
338	SSLVerifyClient none
339	SSLOptions +StdEnvVars
340	SSLProtocol all -SSLv2
341	SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
342	<VirtualHost 18.181.0.50:443 18.181.0.50:444>
343	ServerName scripts-cert.mit.edu
344	ServerAlias scripts-cert
345	Include conf.d/scripts-vhost.conf
346	Include conf.d/vhosts-common-ssl.conf
347	SSLCertificateFile /etc/pki/tls/certs/scripts-cert.pem
348	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
349	Include conf.d/vhosts-common-ssl-cert.conf
350	</VirtualHost>
351	<VirtualHost 18.181.0.43:443>
352	Include conf.d/scripts-vhost-names.conf
353	Include conf.d/scripts-vhost.conf
354	Include conf.d/vhosts-common-ssl.conf
355	SSLCertificateFile /etc/pki/tls/certs/scripts.pem
356	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
357	</VirtualHost>
358	<VirtualHost 18.181.0.43:444>
359	Include conf.d/scripts-vhost-names.conf
360	Include conf.d/scripts-vhost.conf
361	Include conf.d/vhosts-common-ssl.conf
362	Include conf.d/vhosts-common-ssl-cert.conf
363	SSLCertificateFile /etc/pki/tls/certs/scripts.pem
364	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
365	</VirtualHost>
366	# LDAP vhost, w00t w00t
367	<VirtualHost *:443>
368	ServerName localhost
369	SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
370	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
371	Include conf.d/vhost_ldap.conf
372	Include conf.d/vhosts-common-ssl.conf
373	</VirtualHost>
374	# LDAP vhost, w00t w00t
375	<VirtualHost *:444>
376	ServerName localhost
377	SSLCertificateFile /etc/pki/tls/certs/star.scripts.pem
378	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
379	Include conf.d/vhost_ldap.conf
380	Include conf.d/vhosts-common-ssl.conf
381	Include conf.d/vhosts-common-ssl-cert.conf
382	</VirtualHost>
383	</IfModule>
384	Include vhosts.d/*.conf
385	<IfModule ssl_module>
386	<VirtualHost *:443>
387	SSLCertificateFile /etc/pki/tls/certs/scripts.pem
388	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
389	Include conf.d/scripts-vhost-names.conf
390	Include conf.d/scripts-vhost.conf
391	Include conf.d/vhosts-common-ssl.conf
392	</VirtualHost>
393	<VirtualHost *:444>
394	SSLCertificateFile /etc/pki/tls/certs/scripts.pem
395	SSLCertificateKeyFile /etc/pki/tls/private/scripts.key
396	Include conf.d/scripts-vhost-names.conf
397	Include conf.d/scripts-vhost.conf
398	Include conf.d/vhosts-common-ssl.conf
399	Include conf.d/vhosts-common-ssl-cert.conf
400	</VirtualHost>
401	</IfModule>
402
403	LoadModule fcgid_module modules/mod_fcgid.so
404	AddHandler fcgid-script fcgi
405	<Files *.fcgi>
406	Options +ExecCGI
407	</Files>
408	SocketPath /var/run/mod_fcgid
409	SharememPath /var/run/mod_fcgid/fcgid_shm
410	IPCCommTimeout 300
411	FcgidMaxRequestLen 209715200
412	FcgidIdleTimeout 600
413	FcgidMaxProcessesPerClass 10
414	FcgidMinProcessesPerClass 0
415	FcgidMaxRequestsPerProcess 10000
416
417	Include conf.d/auth_sslcert.conf
418	Include conf.d/execsys.conf
419	Include conf.d/scripts-special.conf

Note: See TracBrowser for help on using the repository browser.

Download in other formats: