################################################################################

1. #################################################################################
2. # This is the config file for apt-cacher. On most Debian systems you can safely #
3. # leave the defaults alone. #
4. # #
5. # Commented defaults or examples are given. They can be changed here, or #
6. # overridden using a fragment placed in ./conf.d/ #
7. #################################################################################
8.  
9. ### GENERAL ###
10.  
11. # The location of the local cache/working directory. This can become quite
12. # large, so make sure it is somewhere with plenty of space.
13. #
14. #cache_dir = /var/cache/apt-cacher
15.  
16. # The directory to use for apt-cacher access and error logs.
17. # The access log records every request in the format:
18. #
19. # date-time|PID|client IP address|HIT/HEAD/MISS/EXPIRED/NOTMOD|object size|object name
20. #
21. # The error log is slightly more free-form, and is also used for debug messages
22. # if debug mode is turned on.
23. #
24. #log_dir = /var/log/apt-cacher
25.  
26. # The email address of the administrator is displayed in the info page and
27. # traffic reports.
28. #
29. #admin_email = root@localhost
30.  
31. # Daemon port setting, only useful in stand-alone mode. You need to run the
32. # daemon as root to use privileged ports (<1024).
33. #
34. # For standalone daemon auto startup settings please edit the file
35. # /etc/default/apt-cacher.
36. #
37. #daemon_port = 3142
38.  
39. # Optional settings, user and group to run the daemon as. Make sure they have
40. # sufficient permissions within the cache and log directories. Comment the
41. # settings to run apt-cacher as the invoking user.
42. #
43. group = www-data
44. user = www-data
45.  
46. # optional setting, binds the listening daemon to specified IP(s).
47. #
48. #daemon_addr = localhost
49.  
50. # Apt-cacher can be used in offline mode which just uses files already cached,
51. # but doesn't make any new outgoing connections by setting this to 1.
52. #
53. #offline_mode = 1
54.  
55. # To enable data checksumming, install libberkeleydb-perl and set this option to
56. # 1. Then wait until the Packages/Sources files have been refreshed once (and so
57. # the database has been built up). You can also delete them from the cache to
58. # trigger the database update.
59. #
60. #checksum = 1
61.  
62. # Importing checksums from new index files into the checksum database can cause
63. # high CPU usage on slower systems. This option sets a limit to the number of
64. # index files that are imported simultaneously, thereby limiting CPU load
65. # average, but, possibly, taking longer. Set to 0 for no limit.
66. #
67. #concurrent_import_limit = 1
68.  
69. # CGI mode is deprecated.
70. #
71. # Send a 410 (Gone) HTTP message with the specified text when accessed via
72. # CGI. Useful to tell users to adapt their sources.list files when the
73. # apt-cacher server is being relocated (via apt-get's error messages while
74. # running "update")
75. #
76. #cgi_advise_to_use = Please use http://cacheserver:3142/ as apt-cacher access URL
77. #cgi_advise_to_use = Server relocated. To change sources.list, run
78. # perl -pe "s,/apt-cacher??,:3142," -i /etc/apt/sources.list
79. #
80. # To further facilitate migration from CGI to daemon mode this setting will
81. # automatically redirect incoming CGI requests to the specified daemon URL.
82. #
83. #cgi_redirect = http://localhost:3142/
84.  
85. ### UPSTREAM PROXY ###
86.  
87. # Apt-cacher can pass all its requests to an external HTTP proxy like Squid,
88. # which could be very useful if you are using an ISP that blocks port 80 and
89. # requires all web traffic to go through its proxy. The format is
90. # 'hostname:port', eg: 'proxy.example.com:8080'.
91. #
92. #http_proxy = proxy.example.com:8080
93.  
94. # External http proxy sometimes need authentication to get full access. The
95. # format is 'username:password'.
96. #
97. #http_proxy_auth = proxyuser:proxypass
98.  
99. # Use of the configured external proxy can be turned on or off with this flag.
100. # Value should be either 0 (off) or 1 (on).
101. #
102. #use_proxy = 0
103.  
104. # Use of external proxy authentication can be turned on or off with this flag.
105. # Value should be either 0 (off) or 1 (on).
106. #
107. #use_proxy_auth = 0
108.  
109. # This sets the interface to use for the upstream connection.
110. # Specify an interface name, an IP address or a host name.
111. # If unset, the default route is used.
112. #
113. #interface = eth0
114.  
115. # Rate limiting sets the maximum bandwidth in bytes per second to use for
116. # fetching packages. Use 0 value for no rate limiting.
117. #
118. #limit = 0
119.  
120. ### ACCESS and SECURITY ###
121.  
122. # Server mapping - this allows mapping virtual paths that appear in the access
123. # URL to real server names. The syntax is the part of the beginning of the URL
124. # to replace (the key), followed by a list of mirror URLs, all space
125. # separated. Multiple mappings are separated by semicolons or commas, as
126. # usual. Note that you need to specify all keys (or use the 'PATH_MAP'
127. # shorthand) in the allowed_locations option, if you make use of it. Also note
128. # that the paths should not overlap each other.
129. #
130. # The keys are also used to separate the caching of multiple distributions
131. # within a single apt-cacher instance if distinct_namespaces is also set.
132. #
133. #path_map = debian ftp.uni-kl.de/pub/linux/debian ftp2.de.debian.org/debian ;
134. # ubuntu archive.ubuntu.com/ubuntu ;
135. # security security.debian.org/debian-security ftp2.de.debian.org/debian-security
136. #
137. # There are 2 default internal path_map settings for the Debian and Ubuntu
138. # changelog servers which will be merged with this option.
139. #
140. # debian-changelogs packages.debian.org
141. # ubuntu-changelogs changelogs.ubuntu.com
142. #
143. # These can be overridden by specifying an alternative mirror for that key, or
144. # deleted by just specifying the key with no mirror.
145. #
146. #path_map = debian-changelogs
147.  
148. # From version 1.7.0 there is support for caching multiple distibutions (eg
149. # Debian and Ubuntu) within the same apt-cacher instance. Enable this by setting
150. # distinct_namespaces to 1. Distribution package files are cached in separate
151. # directories whose names are derived from the relevant path_map key. So
152. # generally there will be a path_map key => server(s) setting for each
153. # distribution that is cached. Having enabled distinct_namespaces, existing
154. # packages can be imported into the correct directory by running (as root)
155. #
156. # /usr/share/apt-cacher/apt-cacher-import.pl -u {cache_dir}/packages
157. #
158. #distinct_namespaces = 0
159.  
160. # If the apt-cacher machine is directly exposed to the Internet and you are
161. # worried about unauthorised machines fetching packages through it, you can
162. # specify a list of IP addresses which are allowed to use it and another list of
163. # IP addresses which are prohibited.
164. #
165. # Localhost (127.0.0.1/8, ::ffff:127.0.0.1/8 and ::1) are always allowed. Other
166. # addresses must be matched by allowed_hosts and not by denied_hosts to be
167. # permitted to use the cache. Setting allowed_hosts to "*" means "allow all"
168. # (which was the default before version 1.7.0). The default is now ''.
169. #
170. # The format is a comma-separated list containing addresses, optionally with
171. # masks (like 10.0.0.0/24 or 10.0.0.0/255.255.255.0), or ranges of addresses
172. # (two addresses separated by a hyphen with no masks, specifying a valid subnet,
173. # like '192.168.0.0-63' or '192.168.0.0 - 192.168.0.63') or a DNS resolvable
174. # hostname. The corresponding IPv6 options allowed_hosts_6 and denied_hosts_6
175. # are deprecated (but will still be honoured, if set). IPv6 addresses can now be
176. # added directly to allowed_hosts and denied_hosts along with IPv4 addresses.
177. #
178. allowed_hosts = *
179. #denied_hosts =
180.  
181. # Only allow HTTPS/SSL proxy CONNECT to hosts or IPs which match an item in this
182. # list.
183. #
184. #allowed_ssl_locations =
185.  
186. # Only allow HTTPS/SSL proxy CONNECT to ports which match an item in this list.
187. # Adding further items to this option can pose a significant security risk. DO
188. # NOT do it unless you understand the full implications.
189. #
190. #allowed_ssl_ports = 443
191.  
192. # Optional setting to limit access to upstream mirrors based on server names in
193. # the URLs. This is matched before any path_map settings are expanded. If
194. # 'PATH_MAP' in included in this option, it will be expanded to the keys of the
195. # path_map setting. Note these items are strings, not regexps.
196. #
197. #allowed_locations = ftp.uni-kl.de, ftp.nerim.net, debian.tu-bs.de/debian
198. #allowed_locations = ftp.debian.org, PATH_MAP
199. #allowed_locations = PATH_MAP
200.  
201. # List of Ubuntu release names used to expand UBUNTU_RELEASE_NAMES in
202. # installer_files_regexp (see below). This is required to allow the Ubuntu
203. # installer to fetch upgrade information. As the naming scheme is unpredictable,
204. # new release names need to be added to this list.
205. #
206. #ubuntu_release_names = dapper, edgy, feisty, gutsy, hardy, intrepid, jaunty, karmic, lucid, maverick, natty, oneiric, precise, quantal
207.  
208. ### HOUSEKEEPING ###
209.  
210. # Apt-cacher can generate usage reports every 24 hours if you set this directive
211. # to 1. You can view the reports in a web browser by pointing to your cache
212. # machine with 'report' on the end, like this:
213. #
214. # http://yourcache.example.com:3142/report
215. #
216. # Generating reports is very fast even with many thousands of logfile lines, so
217. # you can safely turn this on without creating much additional system load.
218. #
219. #generate_reports = 1
220.  
221. # Apt-cacher can clean up its cache directory every 24 hours if you set this
222. # directive to 1. Cleaning the cache can take some time to run (generally in the
223. # order of a few minutes) and removes all package files that are not mentioned
224. # in any existing 'Packages' lists. This has the effect of deleting packages
225. # that have been superseded by an updated 'Packages' list.
226. #
227. #clean_cache = 1
228.  
229. ### INTERNALS ###
230.  
231. # Debug mode makes apt-cacher write a lot of extra debug information to the
232. # error log (whose location is defined with the 'log_dir' directive). Leave
233. # this off unless you need it, or your error log will get very big. Acceptable
234. # values are 0 or an integer up to 7. See man apt-cacher (1) for further
235. # details.
236. #
237. #debug = 0
238.  
239. # You shouldn't need to change anything below here. If you do, ensure you
240. # understand the full implications of doing so.
241.  
242. # Permitted package files -- this is a perl regular expression which matches all
243. # package-type files (files that are uniquely identified by their filename).
244. #
245. #package_files_regexp = (?:^[-+.a-z0-9]+_(?:\d:)?[-+.~a-zA-Z0-9]+(?:_[-a-z0-9]+\.(?:u|d)?deb|\.dsc|\.tar(?:\.gz|\.bz2|\.xz)|\.diff\.gz)|\.rpm|index\.db-.+\.gz|\.jigdo|\.template)$
246.  
247. # Permitted APT pdiff files -- this is a perl regular expression which matches
248. # APT pdiff files which are ed(1) scripts used to patch index files rather than
249. # redownloading the whole file afresh.
250. #
251. #pdiff_files_regexp = ^2\d{3}-\d{2}-\d{2}-\d{4}\.\d{2}\.gz$
252.  
253. # Permitted Index files -- this is the perl regular expression which matches all
254. # index-type files (files that are uniquely identified by their full path and
255. # need to be checked for freshness).
256. #
257. #index_files_regexp = ^(?:Index(?:\.bz2)?|Packages(?:\.gz|\.bz2)?|Release(?:\.gpg)?|InRelease|Sources(?:\.gz|\.bz2)?|Contents-(?:[a-z]+-)?[a-zA-Z0-9]+\.gz|(?:srclist|pkglist)\.[a-z-]+\.bz2|release(?:\.gz|\.bz2)?|Translation-[a-z]{2,3}(?:_[A-Z]{2})?(?:\.gz|\.bz2|\.xz)?)$
258.  
259. # Permitted installer files -- this is the perl regular expression which matches
260. # all installer-type files (files that are uniquely identified by their full
261. # path but don’t need to be checked for freshness). These are typically files
262. # used by Debian/Ubuntu Installer, Debian Live and apt. Within this option, the
263. # shorthand 'UBUNTU_RELEASE_NAMES' will be expanded to the list configured in
264. # ubuntu_release_names as regexp alternatives.
265. #
266. #installer_files_regexp = ^(?:vmlinuz|linux|initrd\.gz|changelog|NEWS.Debian|UBUNTU_RELEASE_NAMES\.tar\.gz(?:\.gpg)?|(?:Devel|EOL)?ReleaseAnnouncement(?:\.html)?|meta-release(?:-lts)?(?:-(?:development|proposed))?)$
267. installer_files_regexp = ^(?:vmlinuz|linux|initrd\.gz|changelog|NEWS.Debian|[a-z]+\.tar\.gz(?:\.gpg)?|UBUNTU_RELEASE_NAMES\.tar\.gz(?:\.gpg)?|(?:Devel|EOL)?ReleaseAnnouncement(?:\.html)?|meta-release(?:-lts)?(?:-(?:development|proposed))?)$
268.  
269. # Perl regular expression which matches Index files from which to read checksums
270. # if checksum is enabled.
271. #
272. #checksum_files_regexp = ^(?:Packages(?:\.gz|\.bz2)?|Sources(?:\.gz|\.bz2)?|(?:In)?Release|Index(?:\.bz2)?)$
273.  
274. # Perl regular expression which matches files for which checksum validation is
275. # not performed. NB files matched by installer_files_regexp are skipped
276. # automatically and do not need to be added here as well.
277. #
278. #skip_checksum_files_regexp = ^(?:(?:In)?Release|Release\.gpg)$
279.  
280. # Perl regular expression which matches URLs to be permitted for Debian bugs
281. # SOAP requests as made by apt-listbugs(1).
282. #
283. #soap_url_regexp = ^(?:http://)?bugs\.debian\.org(?::80)?/cgi-bin/soap.cgi$