]>
Commit | Line | Data |
---|---|---|
90c973a6 MT |
1 | <VirtualHost *:81> |
2 | ||
d733119b | 3 | DocumentRoot /srv/web/ipfire/html |
90c973a6 MT |
4 | |
5 | RewriteEngine on | |
6 | RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS) | |
7 | RewriteRule .* - [F] | |
8 | ||
0cabaf35 | 9 | Header always set X-Content-Type-Options nosniff |
eb6d7151 | 10 | Header always set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'" |
583687a8 | 11 | Header always set Referrer-Policy strict-origin |
be8afd15 | 12 | Header always set X-Frame-Options sameorigin |
0cabaf35 | 13 | |
d733119b | 14 | <Directory /srv/web/ipfire/html> |
90c973a6 MT |
15 | Options ExecCGI |
16 | AllowOverride None | |
d41fe99f | 17 | Require all granted |
90c973a6 | 18 | </Directory> |
d733119b | 19 | <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)"> |
6c6c1e3f PM |
20 | Options SymLinksIfOwnerMatch |
21 | RewriteEngine on | |
22 | RewriteCond %{HTTPS} off | |
23 | RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L] | |
90c973a6 | 24 | </DirectoryMatch> |
d733119b MT |
25 | ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/ |
26 | <Directory /srv/web/ipfire/cgi-bin> | |
6c6c1e3f PM |
27 | Options SymLinksIfOwnerMatch |
28 | RewriteEngine on | |
29 | RewriteCond %{HTTPS} off | |
30 | RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L] | |
90c973a6 | 31 | </Directory> |
381f2e71 | 32 | Alias /updatecache/ /var/updatecache/ |
e9007fef CS |
33 | <Directory /var/updatecache> |
34 | Options ExecCGI | |
35 | AllowOverride None | |
d41fe99f | 36 | Require all granted |
e9007fef CS |
37 | </Directory> |
38 | Alias /repository/ /var/urlrepo/ | |
39 | <Directory /var/urlrepo> | |
40 | Options ExecCGI | |
41 | AllowOverride None | |
d41fe99f | 42 | Require all granted |
e9007fef | 43 | </Directory> |
5af32f5c | 44 | Alias /wpad.dat /srv/web/ipfire/html/proxy.pac |
381f2e71 | 45 | </VirtualHost> |