X-Git-Url: http://git.pld-linux.org/?p=packages%2Fapache.git;a=blobdiff_plain;f=apache-mod_proxy.conf;h=00f9a57347bbff744e3495f670a042925b54757e;hp=cd7d435f34a533e18d903e7682e38c18cb01802b;hb=HEAD;hpb=691b9a5c673b1e14b4d5f8372ed3b6678e876b8d diff --git a/apache-mod_proxy.conf b/apache-mod_proxy.conf index cd7d435..00f9a57 100644 --- a/apache-mod_proxy.conf +++ b/apache-mod_proxy.conf @@ -1,33 +1,55 @@ +LoadModule proxy_module modules/mod_proxy.so + +# FIXME: enable or disable these by default? +# I'd enable if the config is secure. but i'm not sure +#LoadModule lbmethod_bybusyness_module modules/mod_lbmethod_bybusyness.so +#LoadModule lbmethod_byrequests_module modules/mod_lbmethod_byrequests.so +#LoadModule lbmethod_bytraffic_module modules/mod_lbmethod_bytraffic.so +#LoadModule lbmethod_heartbeat_module modules/mod_lbmethod_heartbeat.so +#LoadModule proxy_balancer_module modules/mod_proxy_balancer.so +#LoadModule proxy_ajp_module modules/mod_proxy_ajp.so +#LoadModule proxy_connect_module modules/mod_proxy_connect.so +#LoadModule proxy_express_module modules/mod_proxy_express.so +#LoadModule proxy_fcgi_module modules/mod_proxy_fcgi.so +#LoadModule proxy_fdpass_module modules/mod_proxy_fdpass.so +#LoadModule proxy_ftp_module modules/mod_proxy_ftp.so +#LoadModule proxy_http_module modules/mod_proxy_http.so +#LoadModule proxy_scgi_module modules/mod_proxy_scgi.so +#LoadModule proxy_html_module modules/mod_proxy_html.so +#LoadModule proxy_wstunnel_module modules/mod_proxy_wstunnel.so + # Proxy Server directives. Uncomment the following lines to # enable the proxy server: # -# -#ProxyRequests On + +ProxyRequests On +# +# +# This prevents spammers from using apache as a relay by posting to +# http://victim:25/ and sending raw data. # -# -# Order deny,allow -# Deny from all -# Allow from .your_domain.com -# + + Require all denied +# Require host .your-domain.com + + Order deny,allow + Deny from all +# Allow from .your-domain.com + + + +# enable local fcgi proxy request, e.x for php-fpm +# +# Require all granted +# # # Enable/disable the handling of HTTP/1.1 "Via:" headers. # ("Full" adds the server version; "Block" removes all outgoing Via: headers) # Set to one of: Off | On | Full | Block # -#ProxyVia On +ProxyVia On -# -# To enable the cache as well, edit and uncomment the following lines: -# (no cacheing without CacheRoot) -# -CacheRoot "/var/cache/www/apache" -CacheSize 5 -CacheGcInterval 4 -CacheMaxExpire 24 -CacheLastModifiedFactor 0.1 -CacheDefaultExpire 1 -#NoCache a_domain.com another_domain.edu joes.garage_sale.com +# To enable the cache as well, see mod_cache.conf -# -# End of proxy directives. +