4 RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS)
6 DocumentRoot /srv/web/ipfire/html
7 ServerAdmin root@localhost
8 ErrorLog /var/log/httpd/error_log
9 TransferLog /var/log/httpd/access_log
11 SSLProtocol all -SSLv2 -SSLv3
12 SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128:AES256:HIGH:!RC4:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK
13 SSLHonorCipherOrder on
14 SSLCertificateFile /etc/httpd/server.crt
15 SSLCertificateKeyFile /etc/httpd/server.key
17 <Directory /srv/web/ipfire/html>
22 <DirectoryMatch "/srv/web/ipfire/html/(graphs|sgraph)">
23 AuthName "IPFire - Restricted"
25 AuthUserFile /var/ipfire/auth/users
28 ScriptAlias /cgi-bin/ /srv/web/ipfire/cgi-bin/
29 <Directory /srv/web/ipfire/cgi-bin>
32 AuthName "IPFire - Restricted"
34 AuthUserFile /var/ipfire/auth/users
46 <Directory /srv/web/ipfire/cgi-bin/dial>
49 AuthName "IPFire - Restricted"
51 AuthUserFile /var/ipfire/auth/users
52 Require user dial admin
54 <Files ~ "\.(cgi|shtml?)$">
55 SSLOptions +StdEnvVars
57 <Directory /srv/web/ipfire/cgi-bin>
58 SSLOptions +StdEnvVars
60 SetEnv HOME /home/nobody
61 SetEnvIf User-Agent ".*MSIE.*" \
62 nokeepalive ssl-unclean-shutdown \
63 downgrade-1.0 force-response-1.0
64 CustomLog /var/log/httpd/ssl_request_log \
65 "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
67 Alias /updatecache/ /var/updatecache/
68 <Directory /var/updatecache>
74 Alias /repository/ /var/urlrepo/
75 <Directory /var/urlrepo>
81 Alias /proxy-reports/ /var/log/sarg/
82 <Directory /var/log/sarg>
85 AuthName "IPFire - Restricted"
87 AuthUserFile /var/ipfire/auth/users