4 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
6 DocumentRoot /srv/web/ipfire/html
7 ServerAdmin root@localhost
8 ErrorLog /var/log/httpd/error_log
9 TransferLog /var/log/httpd/access_log
11 SSLProtocol all -SSLv2 -SSLv3
12 SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:CAMELLIA128-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA
13 SSLHonorCipherOrder on
14 SSLCertificateFile /etc/httpd/server.crt
15 SSLCertificateKeyFile /etc/httpd/server.key
16 SSLCertificateFile /etc/httpd/server-ecdsa.crt
17 SSLCertificateKeyFile /etc/httpd/server-ecdsa.key
19 <Directory /srv/web/ipfire/html>
24 <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)">
25 AuthName "IPFire - Restricted"
27 AuthUserFile /var/ipfire/auth/users
33 ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
34 <Directory /srv/web/ipfire/cgi-bin>
37 AuthName "IPFire - Restricted"
39 AuthUserFile /var/ipfire/auth/users
51 <Files ~ "\.(cgi|shtml?)$">
52 SSLOptions +StdEnvVars
54 <Directory /srv/web/ipfire/cgi-bin>
55 SSLOptions +StdEnvVars
57 SetEnv HOME /home/nobody
58 SetEnvIf User-Agent ".*MSIE.*" \
59 nokeepalive ssl-unclean-shutdown \
60 downgrade-1.0 force-response-1.0
61 CustomLog /var/log/httpd/ssl_request_log \
62 "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
64 Alias /updatecache/ /var/updatecache/
65 <Directory /var/updatecache>
71 Alias /repository/ /var/urlrepo/
72 <Directory /var/urlrepo>
78 Alias /proxy-reports/ /var/log/sarg/
79 <Directory /var/log/sarg>
82 AuthName "IPFire - Restricted"
84 AuthUserFile /var/ipfire/auth/users