- apxs not used runtime, moved to -devel

[packages/apache.git] / apache-mod_ssl-vhost.conf

diff --git a/apache-mod_ssl-vhost.conf b/apache-mod_ssl-vhost.conf
index 59a2a32e3ca99cf13de6996093a7c7e6f582a94d..4824d827ee8f2bb314e5cb70c8bcb3b7f0f99730 100644 (file)
--- a/apache-mod_ssl-vhost.conf
+++ b/apache-mod_ssl-vhost.conf
@@ -41,12 +41,6 @@ Listen 443
 ##  the main server and all SSL-enabled virtual hosts.
 ##
 
-#
-#   Some MIME-types for downloading Certificates and CRLs
-#
-AddType application/x-x509-ca-cert .crt
-AddType application/x-pkcs7-crl        .crl
-
 #   Pass Phrase Dialog:
 #   Configure the pass phrase gathering process.
 #   The filtering dialog program (`builtin' is a internal
@@ -56,28 +50,21 @@ SSLPassPhraseDialog  builtin
 #   Inter-Process Session Cache:
 #   Configure the SSL Session Cache: First the mechanism
 #   to use and second the expiring timeout (in seconds).
-#SSLSessionCache                dbm:/var/run/ssl_scache
-SSLSessionCache                shmcb:/var/run/ssl_scache(512000)
+#SSLSessionCache                dbm:/var/cache/httpd/ssl_scache
+#SSLSessionCache               shmcb:/var/run/ssl_scache(512000)
+SSLSessionCache                shmcb:/var/cache/httpd/ssl_scache(512000)
 SSLSessionCacheTimeout  300
 
 #   Semaphore:
 #   Configure the path to the mutual exclusion semaphore the
 #   SSL engine uses internally for inter-process synchronization.
-SSLMutex  file:/var/run/ssl_mutex
+SSLMutex  file:/var/run/httpd/ssl_mutex
 
 ##
 ## SSL Virtual Host Context
 ##
 
 <VirtualHost _default_:443>
-
-#   General setup for the virtual host
-DocumentRoot "/home/services/httpd/html"
-ServerName www.example.com:443
-ServerAdmin you@example.com
-ErrorLog logs/error_log
-TransferLog logs/access_log
-
 #   SSL Engine Switch:
 #   Enable/Disable SSL for this virtual host.
 SSLEngine on
@@ -216,14 +203,16 @@ SSLCertificateKeyFile /etc/httpd/ssl/server.key
 #   Similarly, one has to force some clients to use HTTP/1.0 to workaround
 #   their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
 #   "force-response-1.0" for this.
-BrowserMatch ".*MSIE.*" \
-                nokeepalive ssl-unclean-shutdown \
-                downgrade-1.0 force-response-1.0
+<IfModule mod_setenvif.c>
+       BrowserMatch ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
+</IfModule>
 
 #   Per-Server Logging:
 #   The home of a custom SSL log file. Use this when you want a
 #   compact non-error SSL logfile on a virtual host basis.
-CustomLog logs/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
+<IfModule mod_log_config.c>
+       CustomLog logs/ssl_request_log "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
+</IfModule>
 
 </VirtualHost>