4 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
6 DocumentRoot /srv/web/ipfire/html
7 ServerAdmin root@localhost
8 ErrorLog /var/log/httpd/error_log
9 TransferLog /var/log/httpd/access_log
11 SSLProtocol all -SSLv2 -SSLv3
12 SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES128-SHA256:AES128-SHA:CAMELLIA128-SHA:AES256-GCM-SHA384:AES256-SHA256:AES256-SHA:CAMELLIA256-SHA
13 SSLHonorCipherOrder on
16 SSLCertificateFile /etc/httpd/server.crt
17 SSLCertificateKeyFile /etc/httpd/server.key
18 SSLCertificateFile /etc/httpd/server-ecdsa.crt
19 SSLCertificateKeyFile /etc/httpd/server-ecdsa.key
21 <Directory /srv/web/ipfire/html>
26 <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)">
27 AuthName "IPFire - Restricted"
29 AuthUserFile /var/ipfire/auth/users
35 ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
36 <Directory /srv/web/ipfire/cgi-bin>
39 AuthName "IPFire - Restricted"
41 AuthUserFile /var/ipfire/auth/users
53 <Files ~ "\.(cgi|shtml?)$">
54 SSLOptions +StdEnvVars
56 <Directory /srv/web/ipfire/cgi-bin>
57 SSLOptions +StdEnvVars
59 SetEnv HOME /home/nobody
60 SetEnvIf User-Agent ".*MSIE.*" \
61 nokeepalive ssl-unclean-shutdown \
62 downgrade-1.0 force-response-1.0
63 CustomLog /var/log/httpd/ssl_request_log \
64 "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
66 Alias /updatecache/ /var/updatecache/
67 <Directory /var/updatecache>
73 Alias /repository/ /var/urlrepo/
74 <Directory /var/urlrepo>
80 Alias /proxy-reports/ /var/log/sarg/
81 <Directory /var/log/sarg>
84 AuthName "IPFire - Restricted"
86 AuthUserFile /var/ipfire/auth/users