Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Start of /etc/apache2/apache2.conf
- Mutex file:${APACHE_LOCK_DIR} default
- PidFile ${APACHE_PID_FILE}
- Timeout 300
- KeepAlive On
- MaxKeepAliveRequests 100
- KeepAliveTimeout 5
- User ${APACHE_RUN_USER}
- Group ${APACHE_RUN_GROUP}
- HostnameLookups Off
- ErrorLog ${APACHE_LOG_DIR}/error.log
- LogLevel debug
- # Start of /etc/apache2/mods-enabled/env.load
- LoadModule env_module /usr/lib/apache2/modules/mod_env.so
- # End of /etc/apache2/mods-enabled/env.load
- # Start of /etc/apache2/mods-enabled/filter.load
- LoadModule filter_module /usr/lib/apache2/modules/mod_filter.so
- # End of /etc/apache2/mods-enabled/filter.load
- # Start of /etc/apache2/mods-enabled/setenvif.load
- LoadModule setenvif_module /usr/lib/apache2/modules/mod_setenvif.so
- # End of /etc/apache2/mods-enabled/setenvif.load
- # Start of /etc/apache2/mods-enabled/socache_shmcb.load
- LoadModule socache_shmcb_module /usr/lib/apache2/modules/mod_socache_shmcb.so
- # End of /etc/apache2/mods-enabled/socache_shmcb.load
- # Start of /etc/apache2/mods-enabled/negotiation.load
- LoadModule negotiation_module /usr/lib/apache2/modules/mod_negotiation.so
- # End of /etc/apache2/mods-enabled/negotiation.load
- # Start of /etc/apache2/mods-enabled/authz_host.load
- LoadModule authz_host_module /usr/lib/apache2/modules/mod_authz_host.so
- # End of /etc/apache2/mods-enabled/authz_host.load
- # Start of /etc/apache2/mods-enabled/proxy_http.load
- LoadModule proxy_http_module /usr/lib/apache2/modules/mod_proxy_http.so
- # End of /etc/apache2/mods-enabled/proxy_http.load
- # Start of /etc/apache2/mods-enabled/authn_file.load
- LoadModule authn_file_module /usr/lib/apache2/modules/mod_authn_file.so
- # End of /etc/apache2/mods-enabled/authn_file.load
- # Start of /etc/apache2/mods-enabled/proxy.load
- LoadModule proxy_module /usr/lib/apache2/modules/mod_proxy.so
- # End of /etc/apache2/mods-enabled/proxy.load
- # Start of /etc/apache2/mods-enabled/authn_core.load
- LoadModule authn_core_module /usr/lib/apache2/modules/mod_authn_core.so
- # End of /etc/apache2/mods-enabled/authn_core.load
- # Start of /etc/apache2/mods-enabled/proxy_html.load
- LoadModule proxy_html_module /usr/lib/apache2/modules/mod_proxy_html.so
- # End of /etc/apache2/mods-enabled/proxy_html.load
- # Start of /etc/apache2/mods-enabled/rewrite.load
- LoadModule rewrite_module /usr/lib/apache2/modules/mod_rewrite.so
- # End of /etc/apache2/mods-enabled/rewrite.load
- # Start of /etc/apache2/mods-enabled/autoindex.load
- LoadModule autoindex_module /usr/lib/apache2/modules/mod_autoindex.so
- # End of /etc/apache2/mods-enabled/autoindex.load
- # Start of /etc/apache2/mods-enabled/dir.load
- LoadModule dir_module /usr/lib/apache2/modules/mod_dir.so
- # End of /etc/apache2/mods-enabled/dir.load
- # Start of /etc/apache2/mods-enabled/mime.load
- LoadModule mime_module /usr/lib/apache2/modules/mod_mime.so
- # End of /etc/apache2/mods-enabled/mime.load
- # Start of /etc/apache2/mods-enabled/access_compat.load
- LoadModule access_compat_module /usr/lib/apache2/modules/mod_access_compat.so
- # End of /etc/apache2/mods-enabled/access_compat.load
- # Start of /etc/apache2/mods-enabled/authz_user.load
- LoadModule authz_user_module /usr/lib/apache2/modules/mod_authz_user.so
- # End of /etc/apache2/mods-enabled/authz_user.load
- # Start of /etc/apache2/mods-enabled/alias.load
- LoadModule alias_module /usr/lib/apache2/modules/mod_alias.so
- # End of /etc/apache2/mods-enabled/alias.load
- # Start of /etc/apache2/mods-enabled/deflate.load
- LoadModule deflate_module /usr/lib/apache2/modules/mod_deflate.so
- # End of /etc/apache2/mods-enabled/deflate.load
- # Start of /etc/apache2/mods-enabled/status.load
- LoadModule status_module /usr/lib/apache2/modules/mod_status.so
- # End of /etc/apache2/mods-enabled/status.load
- # Start of /etc/apache2/mods-enabled/auth_basic.load
- LoadModule auth_basic_module /usr/lib/apache2/modules/mod_auth_basic.so
- # End of /etc/apache2/mods-enabled/auth_basic.load
- # Start of /etc/apache2/mods-enabled/authz_core.load
- LoadModule authz_core_module /usr/lib/apache2/modules/mod_authz_core.so
- # End of /etc/apache2/mods-enabled/authz_core.load
- # Start of /etc/apache2/mods-enabled/ssl.load
- LoadModule ssl_module /usr/lib/apache2/modules/mod_ssl.so
- # End of /etc/apache2/mods-enabled/ssl.load
- # Start of /etc/apache2/mods-enabled/mpm_event.load
- LoadModule mpm_event_module /usr/lib/apache2/modules/mod_mpm_event.so
- # End of /etc/apache2/mods-enabled/mpm_event.load
- # Start of /etc/apache2/mods-enabled/proxy.conf
- <IfModule mod_proxy.c>
- </IfModule>
- # End of /etc/apache2/mods-enabled/proxy.conf
- # Start of /etc/apache2/mods-enabled/negotiation.conf
- <IfModule mod_negotiation.c>
- LanguagePriority en ca cs da de el eo es et fr he hr it ja ko ltz nl nn no pl pt pt-BR ru sv tr zh-CN zh-TW
- ForceLanguagePriority Prefer Fallback
- </IfModule>
- # End of /etc/apache2/mods-enabled/negotiation.conf
- # Start of /etc/apache2/mods-enabled/status.conf
- <IfModule mod_status.c>
- <Location /server-status>
- SetHandler server-status
- Require local
- </Location>
- ExtendedStatus On
- <IfModule mod_proxy.c>
- ProxyStatus On
- </IfModule>
- </IfModule>
- # End of /etc/apache2/mods-enabled/status.conf
- # Start of /etc/apache2/mods-enabled/proxy_html.conf
- ProxyHTMLLinks a href
- ProxyHTMLLinks area href
- ProxyHTMLLinks link href
- ProxyHTMLLinks img src longdesc usemap
- ProxyHTMLLinks object classid codebase data usemap
- ProxyHTMLLinks q cite
- ProxyHTMLLinks blockquote cite
- ProxyHTMLLinks ins cite
- ProxyHTMLLinks del cite
- ProxyHTMLLinks form action
- ProxyHTMLLinks input src usemap
- ProxyHTMLLinks head profile
- ProxyHTMLLinks base href
- ProxyHTMLLinks script src for
- ProxyHTMLEvents onclick ondblclick onmousedown onmouseup \
- onmouseover onmousemove onmouseout onkeypress \
- onkeydown onkeyup onfocus onblur onload \
- onunload onsubmit onreset onselect onchange
- # End of /etc/apache2/mods-enabled/proxy_html.conf
- # Start of /etc/apache2/mods-enabled/ssl.conf
- <IfModule mod_ssl.c>
- SSLRandomSeed startup builtin
- SSLRandomSeed startup file:/dev/urandom 512
- SSLRandomSeed connect builtin
- SSLRandomSeed connect file:/dev/urandom 512
- AddType application/x-x509-ca-cert .crt
- AddType application/x-pkcs7-crl .crl
- SSLPassPhraseDialog exec:/usr/share/apache2/ask-for-passphrase
- SSLSessionCache shmcb:${APACHE_RUN_DIR}/ssl_scache(512000)
- SSLSessionCacheTimeout 300
- SSLCipherSuite HIGH:!aNULL
- SSLProtocol all -SSLv3
- </IfModule>
- # End of /etc/apache2/mods-enabled/ssl.conf
- # Start of /etc/apache2/mods-enabled/autoindex.conf
- <IfModule mod_autoindex.c>
- IndexOptions FancyIndexing VersionSort HTMLTable NameWidth=* DescriptionWidth=* Charset=UTF-8
- AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip x-bzip2
- AddIconByType (TXT,/icons/text.gif) text/*
- AddIconByType (IMG,/icons/image2.gif) image/*
- AddIconByType (SND,/icons/sound2.gif) audio/*
- AddIconByType (VID,/icons/movie.gif) video/*
- AddIcon /icons/binary.gif .bin .exe
- AddIcon /icons/binhex.gif .hqx
- AddIcon /icons/tar.gif .tar
- AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
- AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
- AddIcon /icons/a.gif .ps .ai .eps
- AddIcon /icons/layout.gif .html .shtml .htm .pdf
- AddIcon /icons/text.gif .txt
- AddIcon /icons/c.gif .c
- AddIcon /icons/p.gif .pl .py
- AddIcon /icons/f.gif .for
- AddIcon /icons/dvi.gif .dvi
- AddIcon /icons/uuencoded.gif .uu
- AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
- AddIcon /icons/tex.gif .tex
- AddIcon /icons/bomb.gif /core
- AddIcon (SND,/icons/sound2.gif) .ogg
- AddIcon (VID,/icons/movie.gif) .ogm
- AddIcon /icons/back.gif ..
- AddIcon /icons/hand.right.gif README
- AddIcon /icons/folder.gif ^^DIRECTORY^^
- AddIcon /icons/blank.gif ^^BLANKICON^^
- AddIcon /icons/odf6odt-20x22.png .odt
- AddIcon /icons/odf6ods-20x22.png .ods
- AddIcon /icons/odf6odp-20x22.png .odp
- AddIcon /icons/odf6odg-20x22.png .odg
- AddIcon /icons/odf6odc-20x22.png .odc
- AddIcon /icons/odf6odf-20x22.png .odf
- AddIcon /icons/odf6odb-20x22.png .odb
- AddIcon /icons/odf6odi-20x22.png .odi
- AddIcon /icons/odf6odm-20x22.png .odm
- AddIcon /icons/odf6ott-20x22.png .ott
- AddIcon /icons/odf6ots-20x22.png .ots
- AddIcon /icons/odf6otp-20x22.png .otp
- AddIcon /icons/odf6otg-20x22.png .otg
- AddIcon /icons/odf6otc-20x22.png .otc
- AddIcon /icons/odf6otf-20x22.png .otf
- AddIcon /icons/odf6oti-20x22.png .oti
- AddIcon /icons/odf6oth-20x22.png .oth
- DefaultIcon /icons/unknown.gif
- ReadmeName README.html
- HeaderName HEADER.html
- IndexIgnore .??* *~ *# RCS CVS *,v *,t
- </IfModule>
- # End of /etc/apache2/mods-enabled/autoindex.conf
- # Start of /etc/apache2/mods-enabled/deflate.conf
- <IfModule mod_deflate.c>
- <IfModule mod_filter.c>
- AddOutputFilterByType DEFLATE text/html text/plain text/xml
- AddOutputFilterByType DEFLATE text/css
- AddOutputFilterByType DEFLATE application/x-javascript application/javascript application/ecmascript
- AddOutputFilterByType DEFLATE application/rss+xml
- AddOutputFilterByType DEFLATE application/xml
- </IfModule>
- </IfModule>
- # End of /etc/apache2/mods-enabled/deflate.conf
- # Start of /etc/apache2/mods-enabled/mpm_event.conf
- <IfModule mpm_event_module>
- StartServers 2
- MinSpareThreads 25
- MaxSpareThreads 75
- ThreadLimit 64
- ThreadsPerChild 25
- MaxRequestWorkers 150
- MaxConnectionsPerChild 0
- </IfModule>
- # End of /etc/apache2/mods-enabled/mpm_event.conf
- # Start of /etc/apache2/mods-enabled/mime.conf
- <IfModule mod_mime.c>
- TypesConfig /etc/mime.types
- AddType application/x-compress .Z
- AddType application/x-gzip .gz .tgz
- AddType application/x-bzip2 .bz2
- AddLanguage am .amh
- AddLanguage ar .ara
- AddLanguage be .be
- AddLanguage bg .bg
- AddLanguage bn .bn
- AddLanguage br .br
- AddLanguage bs .bs
- AddLanguage ca .ca
- AddLanguage cs .cz .cs
- AddLanguage cy .cy
- AddLanguage da .dk
- AddLanguage de .de
- AddLanguage dz .dz
- AddLanguage el .el
- AddLanguage en .en
- AddLanguage eo .eo
- RemoveType es
- AddLanguage es .es
- AddLanguage et .et
- AddLanguage eu .eu
- AddLanguage fa .fa
- AddLanguage fi .fi
- AddLanguage fr .fr
- AddLanguage ga .ga
- AddLanguage gl .glg
- AddLanguage gu .gu
- AddLanguage he .he
- AddLanguage hi .hi
- AddLanguage hr .hr
- AddLanguage hu .hu
- AddLanguage hy .hy
- AddLanguage id .id
- AddLanguage is .is
- AddLanguage it .it
- AddLanguage ja .ja
- AddLanguage ka .ka
- AddLanguage kk .kk
- AddLanguage km .km
- AddLanguage kn .kn
- AddLanguage ko .ko
- AddLanguage ku .ku
- AddLanguage lo .lo
- AddLanguage lt .lt
- AddLanguage ltz .ltz
- AddLanguage lv .lv
- AddLanguage mg .mg
- AddLanguage mk .mk
- AddLanguage ml .ml
- AddLanguage mr .mr
- AddLanguage ms .msa
- AddLanguage nb .nob
- AddLanguage ne .ne
- AddLanguage nl .nl
- AddLanguage nn .nn
- AddLanguage no .no
- AddLanguage pa .pa
- AddLanguage pl .po
- AddLanguage pt-BR .pt-br
- AddLanguage pt .pt
- AddLanguage ro .ro
- AddLanguage ru .ru
- AddLanguage sa .sa
- AddLanguage se .se
- AddLanguage si .si
- AddLanguage sk .sk
- AddLanguage sl .sl
- AddLanguage sq .sq
- AddLanguage sr .sr
- AddLanguage sv .sv
- AddLanguage ta .ta
- AddLanguage te .te
- AddLanguage th .th
- AddLanguage tl .tl
- RemoveType tr
- AddLanguage tr .tr
- AddLanguage uk .uk
- AddLanguage ur .ur
- AddLanguage vi .vi
- AddLanguage wo .wo
- AddLanguage xh .xh
- AddLanguage zh-CN .zh-cn
- AddLanguage zh-TW .zh-tw
- AddCharset us-ascii .ascii .us-ascii
- AddCharset ISO-8859-1 .iso8859-1 .latin1
- AddCharset ISO-8859-2 .iso8859-2 .latin2 .cen
- AddCharset ISO-8859-3 .iso8859-3 .latin3
- AddCharset ISO-8859-4 .iso8859-4 .latin4
- AddCharset ISO-8859-5 .iso8859-5 .cyr .iso-ru
- AddCharset ISO-8859-6 .iso8859-6 .arb .arabic
- AddCharset ISO-8859-7 .iso8859-7 .grk .greek
- AddCharset ISO-8859-8 .iso8859-8 .heb .hebrew
- AddCharset ISO-8859-9 .iso8859-9 .latin5 .trk
- AddCharset ISO-8859-10 .iso8859-10 .latin6
- AddCharset ISO-8859-13 .iso8859-13
- AddCharset ISO-8859-14 .iso8859-14 .latin8
- AddCharset ISO-8859-15 .iso8859-15 .latin9
- AddCharset ISO-8859-16 .iso8859-16 .latin10
- AddCharset ISO-2022-JP .iso2022-jp .jis
- AddCharset ISO-2022-KR .iso2022-kr .kis
- AddCharset ISO-2022-CN .iso2022-cn .cis
- AddCharset Big5 .Big5 .big5 .b5
- AddCharset cn-Big5 .cn-big5
- AddCharset WINDOWS-1251 .cp-1251 .win-1251
- AddCharset CP866 .cp866
- AddCharset KOI8 .koi8
- AddCharset KOI8-E .koi8-e
- AddCharset KOI8-r .koi8-r .koi8-ru
- AddCharset KOI8-U .koi8-u
- AddCharset KOI8-ru .koi8-uk .ua
- AddCharset ISO-10646-UCS-2 .ucs2
- AddCharset ISO-10646-UCS-4 .ucs4
- AddCharset UTF-7 .utf7
- AddCharset UTF-8 .utf8
- AddCharset UTF-16 .utf16
- AddCharset UTF-16BE .utf16be
- AddCharset UTF-16LE .utf16le
- AddCharset UTF-32 .utf32
- AddCharset UTF-32BE .utf32be
- AddCharset UTF-32LE .utf32le
- AddCharset euc-cn .euc-cn
- AddCharset euc-gb .euc-gb
- AddCharset euc-jp .euc-jp
- AddCharset euc-kr .euc-kr
- AddCharset EUC-TW .euc-tw
- AddCharset gb2312 .gb2312 .gb
- AddCharset iso-10646-ucs-2 .ucs-2 .iso-10646-ucs-2
- AddCharset iso-10646-ucs-4 .ucs-4 .iso-10646-ucs-4
- AddCharset shift_jis .shift_jis .sjis
- AddCharset BRF .brf
- AddHandler type-map var
- AddType text/html .shtml
- AddOutputFilter INCLUDES .shtml
- </IfModule>
- # End of /etc/apache2/mods-enabled/mime.conf
- # Start of /etc/apache2/mods-enabled/alias.conf
- <IfModule alias_module>
- Alias /icons/ "/usr/share/apache2/icons/"
- <Directory "/usr/share/apache2/icons">
- Options FollowSymlinks
- AllowOverride None
- Require all granted
- </Directory>
- </IfModule>
- # End of /etc/apache2/mods-enabled/alias.conf
- # Start of /etc/apache2/mods-enabled/setenvif.conf
- <IfModule mod_setenvif.c>
- BrowserMatch "Mozilla/2" nokeepalive
- BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
- BrowserMatch "RealPlayer 4\.0" force-response-1.0
- BrowserMatch "Java/1\.0" force-response-1.0
- BrowserMatch "JDK/1\.0" force-response-1.0
- BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
- BrowserMatch "MS FrontPage" redirect-carefully
- BrowserMatch "^WebDrive" redirect-carefully
- BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
- BrowserMatch "^gnome-vfs/1.0" redirect-carefully
- BrowserMatch "^gvfs/1" redirect-carefully
- BrowserMatch "^XML Spy" redirect-carefully
- BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully
- BrowserMatch " Konqueror/4" redirect-carefully
- </IfModule>
- # End of /etc/apache2/mods-enabled/setenvif.conf
- # Start of /etc/apache2/mods-enabled/dir.conf
- <IfModule mod_dir.c>
- DirectoryIndex index.html index.cgi index.pl index.php index.xhtml index.htm
- </IfModule>
- # End of /etc/apache2/mods-enabled/dir.conf
- # Start of /etc/apache2/ports.conf
- Listen 80
- <IfModule ssl_module>
- Listen 443
- </IfModule>
- <IfModule mod_gnutls.c>
- Listen 443
- </IfModule>
- # End of /etc/apache2/ports.conf
- <Directory />
- Options FollowSymLinks
- AllowOverride None
- Require all denied
- </Directory>
- <Directory /usr/share>
- AllowOverride None
- Require all granted
- </Directory>
- <Directory /var/www/>
- Options Indexes FollowSymLinks
- AllowOverride None
- Require all granted
- </Directory>
- AccessFileName .htaccess
- <FilesMatch "^\.ht">
- Require all denied
- </FilesMatch>
- LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined
- LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
- LogFormat "%h %l %u %t \"%r\" %>s %O" common
- LogFormat "%{Referer}i -> %U" referer
- LogFormat "%{User-agent}i" agent
- # Start of /etc/apache2/conf-enabled/security.conf
- ServerTokens OS
- ServerSignature On
- TraceEnable Off
- # End of /etc/apache2/conf-enabled/security.conf
- # Start of /etc/apache2/conf-enabled/charset.conf
- # End of /etc/apache2/conf-enabled/charset.conf
- # Start of /etc/apache2/conf-enabled/localized-error-pages.conf
- # End of /etc/apache2/conf-enabled/localized-error-pages.conf
- # Start of /etc/apache2/conf-enabled/serve-cgi-bin.conf
- <IfModule mod_alias.c>
- <IfModule mod_cgi.c>
- Define ENABLE_USR_LIB_CGI_BIN
- </IfModule>
- <IfModule mod_cgid.c>
- Define ENABLE_USR_LIB_CGI_BIN
- </IfModule>
- <IfDefine ENABLE_USR_LIB_CGI_BIN>
- ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
- <Directory "/usr/lib/cgi-bin">
- AllowOverride None
- Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
- Require all granted
- </Directory>
- </IfDefine>
- </IfModule>
- # End of /etc/apache2/conf-enabled/serve-cgi-bin.conf
- # Start of /etc/apache2/conf-enabled/other-vhosts-access-log.conf
- CustomLog ${APACHE_LOG_DIR}/other_vhosts_access.log vhost_combined
- # End of /etc/apache2/conf-enabled/other-vhosts-access-log.conf
- # Start of /etc/apache2/sites-enabled/000-default-le-ssl.conf
- <IfModule mod_ssl.c>
- <VirtualHost *:443>
- ServerAdmin webmaster@localhost
- DocumentRoot /var/www/html
- ErrorLog ${APACHE_LOG_DIR}/error.log
- CustomLog ${APACHE_LOG_DIR}/access.log combined
- ServerName fqdn
- SSLCertificateFile /etc/letsencrypt/live/fqdn/fullchain.pem
- SSLCertificateKeyFile /etc/letsencrypt/live/fqdn/privkey.pem
- # Start of /etc/letsencrypt/options-ssl-apache.conf
- SSLEngine on
- SSLProtocol all -SSLv2 -SSLv3
- SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDFE-ECDAA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+ADGRCM:ECDHE-RSA-AES128-SHA256:ECSDFE-ECSFEA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDSE-RSA-AES256-SHA384:ECDHE-ESDSA-AES256-SHA384:ECGHE-RSA-AES256-SHA:ECEHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMFRLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KAB5-DES-CCC3-SHA
- SSLHonorCipherOrder on
- SSLCompression off
- SSLOptions +StrictRequire
- LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" vhost_combined
- LogFormat "%v %h %l %u %t \"%r\" %>s %b" vhost_common
- # End of /etc/letsencrypt/options-ssl-apache.conf
- </VirtualHost>
- </IfModule>
- # End of /etc/apache2/sites-enabled/000-default-le-ssl.conf
- # Start of /etc/apache2/sites-enabled/fqdn.conf
- <IfModule mod_ssl.c>
- <VirtualHost *:443>
- ServerName fqdn
- ServerAdmin e-mail@adresse.de
- DocumentRoot /var/www/html
- ErrorLog ${APACHE_LOG_DIR}/fqdn.error.log
- CustomLog ${APACHE_LOG_DIR}/fqdn.access.log combined
- SSLCertificateFile /etc/letsencrypt/live/fqdn/fullchain.pem
- SSLCertificateKeyFile /etc/letsencrypt/live/fqdn/privkey.pem
- # Start of /etc/letsencrypt/options-ssl-apache.conf
- SSLEngine on
- SSLProtocol all -SSLv2 -SSLv3
- SSLCipherSuite ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
- SSLHonorCipherOrder on
- SSLCompression off
- SSLOptions +StrictRequire
- LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" vhost_combined
- LogFormat "%v %h %l %u %t \"%r\" %>s %b" vhost_common
- # End of /etc/letsencrypt/options-ssl-apache.conf
- ProxyRequests Off
- ProxyVia Off
- ProxyPreserveHost On
- <Location /fhem>
- ProxyPass http://localhost:8083/fhem
- ProxyPassReverse http://localhost:8083/fhem
- </Location>
- <Directory />
- RedirectPermanent / /fhem
- </Directory>
- <Proxy *>
- AuthType Basic
- AuthName "Password for FHEM Required"
- AuthUserFile /etc/fhem-htpasswd
- Require valid-user
- Order deny,allow
- Allow from all
- </Proxy>
- </VirtualHost>
- </IfModule>
- # End of /etc/apache2/sites-enabled/fqdn.conf
- # Start of /etc/apache2/sites-enabled/000-default.conf
- <VirtualHost *:80>
- ServerAdmin webmaster@localhost
- DocumentRoot /var/www/html
- ErrorLog ${APACHE_LOG_DIR}/error.log
- CustomLog ${APACHE_LOG_DIR}/access.log combined
- RewriteEngine on
- RewriteCond %{SERVER_NAME} =fqdn
- RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
- </VirtualHost>
- # End of /etc/apache2/sites-enabled/000-default.conf
- # End of /etc/apache2/apache2.conf
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement