cgi-httpd.conf.in 2.14 KB
Newer Older
1
PidFile "{{ httpd_configuration.get('pid-file') }}"
2 3 4
ServerName example.com
ServerAdmin someone@email
<IfDefine !MonitorPort>
5
Listen [{{ httpd_configuration.get('listening-ip') }}]:{{ monitor_parameters.get('port') }}
6 7
Define MonitorPort
</IfDefine>
8 9
DocumentRoot "{{ directory.get('www') }}"
ErrorLog "{{ httpd_configuration.get('error-log') }}"
10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
LoadModule unixd_module modules/mod_unixd.so
LoadModule access_compat_module modules/mod_access_compat.so
LoadModule authz_core_module modules/mod_authz_core.so
LoadModule authn_core_module modules/mod_authn_core.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule mime_module modules/mod_mime.so
LoadModule cgid_module modules/mod_cgid.so
LoadModule dir_module modules/mod_dir.so
LoadModule ssl_module modules/mod_ssl.so
LoadModule alias_module modules/mod_alias.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authn_file_module modules/mod_authn_file.so

# SSL Configuration
<IfDefine !SSLConfigured>
Define SSLConfigured
28 29
SSLCertificateFile {{ httpd_configuration.get('certificate') }}
SSLCertificateKeyFile {{ httpd_configuration.get('key') }}
30 31 32 33 34 35 36 37 38
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
SSLRandomSeed startup /dev/urandom 256
SSLRandomSeed connect builtin
SSLProtocol -ALL +SSLv3 +TLSv1
SSLHonorCipherOrder On
SSLCipherSuite RC4-SHA:HIGH:!ADH
</IfDefine>
SSLEngine   On
39 40
ScriptSock {{ httpd_configuration.get('cgid-pid-file') }}
<Directory {{ directory.get('www') }}>
41 42 43 44 45 46
  SSLVerifyDepth    1
  SSLRequireSSL
  SSLOptions        +StrictRequire
  # XXX: security????
  Options +ExecCGI
  AddHandler cgi-script .cgi
47
  DirectoryIndex {{ monitor_parameters.get('index-filename') }}
48
</Directory>
49 50
Alias /private/ {{ directory.get('private-directory') }}/
<Directory {{ directory.get('private-directory') }}>
51 52 53 54 55 56 57 58
Order Deny,Allow
Deny from env=AUTHREQUIRED
<Files ".??*">
  Order Allow,Deny
  Deny from all
</Files>
AuthType Basic
AuthName "Private access"
59
AuthUserFile "{{ monitor_parameters.get('htaccess-file') }}"
60 61 62 63
Require valid-user
Options Indexes FollowSymLinks
Satisfy all
</Directory>