4 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
6 DocumentRoot /srv/web/ipfire/html
7 ServerAdmin root@localhost
8 ErrorLog /var/log/httpd/error_log
9 TransferLog /var/log/httpd/access_log
11 SSLProtocol all -SSLv2 -SSLv3
12 SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:CAMELLIA128-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA
13 SSLHonorCipherOrder on
14 SSLCertificateFile /etc/httpd/server.crt
15 SSLCertificateKeyFile /etc/httpd/server.key
16 SSLCertificateFile /etc/httpd/server-ecdsa.crt
17 SSLCertificateKeyFile /etc/httpd/server-ecdsa.key
19 <Directory /srv/web/ipfire/html>
24 <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)">
25 AuthName "IPFire - Restricted"
27 AuthUserFile /var/ipfire/auth/users
30 ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
31 <Directory /srv/web/ipfire/cgi-bin>
34 AuthName "IPFire - Restricted"
36 AuthUserFile /var/ipfire/auth/users
45 <Files ~ "\.(cgi|shtml?)$">
46 SSLOptions +StdEnvVars
48 <Directory /srv/web/ipfire/cgi-bin>
49 SSLOptions +StdEnvVars
51 SetEnv HOME /home/nobody
52 SetEnvIf User-Agent ".*MSIE.*" \
53 nokeepalive ssl-unclean-shutdown \
54 downgrade-1.0 force-response-1.0
55 CustomLog /var/log/httpd/ssl_request_log \
56 "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
58 Alias /updatecache/ /var/updatecache/
59 <Directory /var/updatecache>
65 Alias /repository/ /var/urlrepo/
66 <Directory /var/urlrepo>
72 Alias /proxy-reports/ /var/log/sarg/
73 <Directory /var/log/sarg>
76 AuthName "IPFire - Restricted"
78 AuthUserFile /var/ipfire/auth/users