2 ## httpd.conf -- Apache HTTP server configuration file
7 LockFile /var/lock/httpd.lock
8 PidFile /var/run/httpd.pid
9 ScoreBoardFile /var/run/httpd.scoreboard
12 MaxKeepAliveRequests 100
18 MaxRequestsPerChild 100
24 ServerAdmin root@localhost
26 DocumentRoot /home/httpd/html
27 # Limit track/trace requests
29 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
36 <Directory /home/httpd/html>
42 <DirectoryMatch "/home/httpd/html/(graphs|sgraph)">
43 AuthName "IPFire - Restricted"
45 AuthUserFile /var/ipfire/auth/users
48 ScriptAlias /cgi-bin/ /home/httpd/cgi-bin/
49 <Directory /home/httpd/cgi-bin>
52 AuthName "IPFire - Restricted"
54 AuthUserFile /var/ipfire/auth/users
69 Require user admin dial
73 DirectoryIndex index.html index.htm index.shtml index.cgi
75 AccessFileName .htaccess
81 TypesConfig /etc/mime.types
83 DefaultType text/plain
86 ErrorLog /var/log/httpd/error_log
88 LogFormat "%h %l %u %t \"%r\" %>s %b" common
89 CustomLog /var/log/httpd/access_log common
91 AddHandler cgi-script .cgi
92 <IfModule mod_setenvif.c>
93 BrowserMatch "Mozilla/2" nokeepalive
94 BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
95 BrowserMatch "RealPlayer 4\.0" force-response-1.0
96 BrowserMatch "Java/1\.0" force-response-1.0
97 BrowserMatch "JDK/1\.0" force-response-1.0
101 ### SSL Configuration
103 AddType application/x-x509-ca-cert .crt
104 AddType application/x-pkcs7-crl .crl
106 SSLPassPhraseDialog builtin
107 SSLSessionCache dbm:/var/log/httpd/ssl_scache
108 SSLSessionCacheTimeout 900
109 SSLMutex file:/var/log/httpd/ssl_mutex
110 SSLRandomSeed startup builtin
111 SSLRandomSeed connect builtin
112 SSLLog /var/log/httpd/ssl_engine_log
115 <VirtualHost _default_:444>
117 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
119 DocumentRoot /home/httpd/html
120 ServerAdmin root@localhost
121 ErrorLog /var/log/httpd/error_log
122 TransferLog /var/log/httpd/access_log
124 SSLProtocol all -SSLv2
125 SSLCipherSuite ALL:!ADH:!EXPORT56:!eNULL:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+EXP
126 SSLCertificateFile /etc/httpd/server.crt
127 SSLCertificateKeyFile /etc/httpd/server.key
128 <Files ~ "\.(cgi|shtml?)$">
129 SSLOptions +StdEnvVars
131 <Directory /home/httpd/cgi-bin>
132 SSLOptions +StdEnvVars
134 SetEnv HOME /home/nobody
135 SetEnvIf User-Agent ".*MSIE.*" \
136 nokeepalive ssl-unclean-shutdown \
137 downgrade-1.0 force-response-1.0
138 CustomLog /var/log/httpd/ssl_request_log \
139 "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
142 <Directory /home/httpd/html/backup>
145 AuthName "IPFire - Restricted"
147 AuthUserFile /var/ipfire/auth/users
151 include /etc/httpd/conf/hostname.conf