X-Git-Url: http://git.pld-linux.org/?a=blobdiff_plain;f=apache-mod_proxy.conf;h=00f9a57347bbff744e3495f670a042925b54757e;hb=56453f0ba42fd2a4df6931bd7f87b7fc669fd716;hp=f1210f8a462716fe511ab6ce58b10c4679703c6a;hpb=40350f98f5f4ae5f33f897a73deeac053e4dd603;p=packages%2Fapache.git diff --git a/apache-mod_proxy.conf b/apache-mod_proxy.conf index f1210f8..00f9a57 100644 --- a/apache-mod_proxy.conf +++ b/apache-mod_proxy.conf @@ -1,19 +1,46 @@ -LoadModule proxy_module lib/apache/mod_proxy.so -LoadModule proxy_connect_module lib/apache/mod_proxy_connect.so -LoadModule proxy_ftp_module lib/apache/mod_proxy_ftp.so -LoadModule proxy_http_module lib/apache/mod_proxy_http.so +LoadModule proxy_module modules/mod_proxy.so + +# FIXME: enable or disable these by default? +# I'd enable if the config is secure. but i'm not sure +#LoadModule lbmethod_bybusyness_module modules/mod_lbmethod_bybusyness.so +#LoadModule lbmethod_byrequests_module modules/mod_lbmethod_byrequests.so +#LoadModule lbmethod_bytraffic_module modules/mod_lbmethod_bytraffic.so +#LoadModule lbmethod_heartbeat_module modules/mod_lbmethod_heartbeat.so +#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so +#LoadModule proxy_ajp_module modules/mod_proxy_ajp.so +#LoadModule proxy_connect_module modules/mod_proxy_connect.so +#LoadModule proxy_express_module modules/mod_proxy_express.so +#LoadModule proxy_fcgi_module modules/mod_proxy_fcgi.so +#LoadModule proxy_fdpass_module modules/mod_proxy_fdpass.so +#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so +#LoadModule proxy_http_module modules/mod_proxy_http.so +#LoadModule proxy_scgi_module modules/mod_proxy_scgi.so +#LoadModule proxy_html_module modules/mod_proxy_html.so +#LoadModule proxy_wstunnel_module modules/mod_proxy_wstunnel.so -# # Proxy Server directives. Uncomment the following lines to # enable the proxy server: # - + ProxyRequests On # -# -# Order deny,allow -# Deny from all -# Allow from .your-domain.com +# +# This prevents spammers from using apache as a relay by posting to +# http://victim:25/ and sending raw data. +# + + Require all denied +# Require host .your-domain.com + + Order deny,allow + Deny from all +# Allow from .your-domain.com + + + +# enable local fcgi proxy request, e.x for php-fpm +# +# Require all granted # # @@ -23,18 +50,6 @@ ProxyRequests On # ProxyVia On -# -# To enable the cache as well, edit and uncomment the following lines: -# (no cacheing without CacheRoot) -# -CacheRoot "/var/cache/apache" -CacheSize 5 -CacheGcInterval 4 -CacheMaxExpire 24 -CacheLastModifiedFactor 0.1 -CacheDefaultExpire 1 -#NoCache a-domain.com another-domain.edu joes.garage-sale.com +# To enable the cache as well, see mod_cache.conf -# End of proxy directives. -