]>
Commit | Line | Data |
---|---|---|
1 | <VirtualHost *:81> | |
2 | ||
3 | DocumentRoot /srv/web/ipfire/html | |
4 | ||
5 | RewriteEngine on | |
6 | RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS) | |
7 | RewriteRule .* - [F] | |
8 | ||
9 | Header always set X-Content-Type-Options nosniff | |
10 | Header always set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'" | |
11 | Header always set Referrer-Policy strict-origin | |
12 | Header always set X-Frame-Options sameorigin | |
13 | ||
14 | <Directory /srv/web/ipfire/html> | |
15 | Options ExecCGI | |
16 | AllowOverride None | |
17 | Require all granted | |
18 | </Directory> | |
19 | <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)"> | |
20 | Options SymLinksIfOwnerMatch | |
21 | RewriteEngine on | |
22 | RewriteCond %{HTTPS} off | |
23 | RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L] | |
24 | </DirectoryMatch> | |
25 | ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/ | |
26 | <Directory /srv/web/ipfire/cgi-bin> | |
27 | Options SymLinksIfOwnerMatch | |
28 | RewriteEngine on | |
29 | RewriteCond %{HTTPS} off | |
30 | RewriteRule (.*) https://%{SERVER_NAME}:444/$1 [R=301,L] | |
31 | </Directory> | |
32 | Alias /updatecache/ /var/updatecache/ | |
33 | <Directory /var/updatecache> | |
34 | Options ExecCGI | |
35 | AllowOverride None | |
36 | Require all granted | |
37 | </Directory> | |
38 | Alias /repository/ /var/urlrepo/ | |
39 | <Directory /var/urlrepo> | |
40 | Options ExecCGI | |
41 | AllowOverride None | |
42 | Require all granted | |
43 | </Directory> | |
44 | Alias /wpad.dat /srv/web/ipfire/html/proxy.pac | |
45 | </VirtualHost> |