[packages/apache.git] / apache-common.conf


# TODO
# - split each section to module's config fragment
# - move LoadModule's to each module's config
#
#
# Dynamic Shared Object (DSO) Support
#
# To be able to use the functionality of a module which was built as a DSO you
# have to place corresponding `LoadModule' lines at this location so the
# directives contained in it are actually available _before_ they are used.
# Statically compiled modules (those listed by `httpd -l') do not need
# to be loaded here.
#
# Example:
# LoadModule foo_module modules/mod_foo.so
#
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authn_dbm_module modules/mod_authn_dbm.so
LoadModule authn_anon_module modules/mod_authn_anon.so
LoadModule authn_dbd_module modules/mod_authn_dbd.so
LoadModule authn_default_module modules/mod_authn_default.so
LoadModule authn_alias_module modules/mod_authn_alias.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule authz_dbm_module modules/mod_authz_dbm.so
LoadModule authz_owner_module modules/mod_authz_owner.so
LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
LoadModule authz_default_module modules/mod_authz_default.so
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule dbd_module modules/mod_dbd.so
LoadModule bucketeer_module modules/mod_bucketeer.so
LoadModule dumpio_module modules/mod_dumpio.so
LoadModule echo_module modules/mod_echo.so
LoadModule case_filter_module modules/mod_case_filter.so
LoadModule case_filter_in_module modules/mod_case_filter_in.so
LoadModule ext_filter_module modules/mod_ext_filter.so
LoadModule include_module modules/mod_include.so
LoadModule filter_module modules/mod_filter.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule log_forensic_module modules/mod_log_forensic.so
LoadModule logio_module modules/mod_logio.so
LoadModule env_module modules/mod_env.so
LoadModule mime_magic_module modules/mod_mime_magic.so
LoadModule cern_meta_module modules/mod_cern_meta.so
LoadModule ident_module modules/mod_ident.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule version_module modules/mod_version.so
LoadModule optional_hook_export_module modules/mod_optional_hook_export.so
LoadModule optional_hook_import_module modules/mod_optional_hook_import.so
LoadModule optional_fn_import_module modules/mod_optional_fn_import.so
LoadModule optional_fn_export_module modules/mod_optional_fn_export.so
LoadModule mime_module modules/mod_mime.so
LoadModule asis_module modules/mod_asis.so
LoadModule cgi_module modules/mod_cgi.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule imagemap_module modules/mod_imagemap.so
LoadModule speling_module modules/mod_speling.so
LoadModule userdir_module modules/mod_userdir.so
LoadModule alias_module modules/mod_alias.so


# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
#
DocumentRoot "/home/services/httpd/html"

# Each directory to which Apache has access can be configured with respect
# to which services and features are allowed and/or disabled in that
# directory (and its subdirectories). 
#
# First, we configure the "default" to be a very restrictive set of 
# features.  
#
<Directory />
    Options FollowSymLinks
    AllowOverride None
    Order deny,allow
    Deny from all
</Directory>

#
# This should be changed to whatever you set DocumentRoot to.
#
<Directory "/home/services/httpd/html">
    #
    # Possible values for the Options directive are "None", "All",
    # or any combination of:
    #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
    #
    # Note that "MultiViews" must be named *explicitly* --- "Options All"
    # doesn't give it to you.
    #
    # The Options directive is both complicated and important.  Please see
    # http://httpd.apache.org/docs/2.2/mod/core.html#options
    # for more information.
    #
    Options Indexes FollowSymLinks

    #
    # AllowOverride controls what directives may be placed in .htaccess files.
    # It can be "All", "None", or any combination of the keywords:
    #   Options FileInfo AuthConfig Limit
    #
    AllowOverride None

    #
    # Controls who can get stuff from this server.
    #
    Order allow,deny
    Allow from all

</Directory>

#
# DirectoryIndex: sets the file that Apache will serve if a directory
# is requested.
#
<IfModule dir_module>
    DirectoryIndex index.html
</IfModule>

#
# The following lines prevent .htaccess and .htpasswd files from being 
# viewed by Web clients. 
#
<FilesMatch "^\.ht">
    Order allow,deny
    Deny from all
</FilesMatch>

<IfModule log_config_module>
    #
    # The following directives define some format nicknames for use with
    # a CustomLog directive (see below).
    #
    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common

    <IfModule logio_module>
      # You need to enable mod_logio.c to use %I and %O
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
    </IfModule>

    #
    # The location and format of the access logfile (Common Logfile Format).
    # If you do not define any access logfiles within a <VirtualHost>
    # container, they will be logged here.  Contrariwise, if you *do*
    # define per-<VirtualHost> access logfiles, transactions will be
    # logged therein and *not* in this file.
    #
    CustomLog /var/log/httpd/access_log common

    #
    # If you prefer a logfile with access, agent, and referer information
    # (Combined Logfile Format) you can use the following directive.
    #
    #CustomLog /var/log/httpd/access_log combined
</IfModule>

<IfModule alias_module>
    #
    # Redirect: Allows you to tell clients about documents that used to 
    # exist in your server's namespace, but do not anymore. The client 
    # will make a new request for the document at its new location.
    # Example:
    # Redirect permanent /foo http://www.example.com/bar

    #
    # Alias: Maps web paths into filesystem paths and is used to
    # access content that does not live under the DocumentRoot.
    # Example:
    # Alias /webpath /full/filesystem/path
    #
    # If you include a trailing / on /webpath then the server will
    # require it to be present in the URL.  You will also likely
    # need to provide a <Directory> section to allow access to
    # the filesystem path.

    #
    # ScriptAlias: This controls which directories contain server scripts. 
    # ScriptAliases are essentially the same as Aliases, except that
    # documents in the target directory are treated as applications and
    # run by the server when requested rather than as documents sent to the
    # client.  The same rules about trailing "/" apply to ScriptAlias
    # directives as to Alias.
    #
    ScriptAlias /cgi-bin/ "/home/services/httpd/cgi-bin/"

</IfModule>

<IfModule cgid_module>
    #
    # ScriptSock: On threaded servers, designate the path to the UNIX
    # socket used to communicate with the CGI daemon of mod_cgid.
    #
    #Scriptsock /var/run/cgisock
</IfModule>

#
# "/home/services/httpd/cgi-bin" should be changed to whatever your ScriptAliased
# CGI directory exists, if you have that configured.
#
<Directory "/home/services/httpd/cgi-bin">
    AllowOverride None
    Options None
    Order allow,deny
    Allow from all
</Directory>

<IfModule mime_module>
    #
    # TypesConfig points to the file containing the list of mappings from
    # filename extension to MIME-type.
    #
    TypesConfig /mime.types

    #
    # AddType allows you to add to or override the MIME configuration
    # file specified in TypesConfig for specific file types.
    #
    #AddType application/x-gzip .tgz
    #
    # AddEncoding allows you to have certain browsers uncompress
    # information on the fly. Note: Not all browsers support this.
    #
    #AddEncoding x-compress .Z
    #AddEncoding x-gzip .gz .tgz
    #
    # If the AddEncoding directives above are commented-out, then you
    # probably should define those extensions to indicate media types:
    #
    AddType application/x-compress .Z
    AddType application/x-gzip .gz .tgz

    #
    # AddHandler allows you to map certain file extensions to "handlers":
    # actions unrelated to filetype. These can be either built into the server
    # or added with the Action directive (see below)
    #
    # To use CGI scripts outside of ScriptAliased directories:
    # (You will also need to add "ExecCGI" to the "Options" directive.)
    #
    #AddHandler cgi-script .cgi

    # For files that include their own HTTP headers:
    #AddHandler send-as-is asis

    # For server-parsed imagemap files:
    #AddHandler imap-file map

    # For type maps (negotiated resources):
    #AddHandler type-map var

    #
    # Filters allow you to process content before it is sent to the client.
    #
    # To parse .shtml files for server-side includes (SSI):
    # (You will also need to add "Includes" to the "Options" directive.)
    #
    #AddType text/html .shtml
    #AddOutputFilter INCLUDES .shtml
</IfModule>

#
# The mod_mime_magic module allows the server to use various hints from the
# contents of the file itself to determine its type.  The MIMEMagicFile
# directive tells the module where the hint definitions are located.
#
#MIMEMagicFile /magic

#
# Customizable error responses come in three flavors:
# 1) plain text 2) local redirects 3) external redirects
#
# Some examples:
#ErrorDocument 500 "The server made a boo boo."
#ErrorDocument 404 /missing.html
#ErrorDocument 404 "/cgi-bin/missing_handler.pl"
#ErrorDocument 402 http://www.example.com/subscription_info.html
#

#
# EnableMMAP and EnableSendfile: On systems that support it, 
# memory-mapping or the sendfile syscall is used to deliver
# files.  This usually improves server performance, but must
# be turned off when serving from networked-mounted 
# filesystems or if support for these functions is otherwise
# broken on your system.
#
#EnableMMAP off
#EnableSendfile off

# Supplemental configuration
#
# The configuration files in the /extra/ directory can be 
# included to add extra features or to modify the default configuration of 
# the server, or you may simply copy their contents here and change as 
# necessary.

# Server-pool management (MPM specific)
#Include /extra/httpd-mpm.conf

# Multi-language error messages
#Include /extra/httpd-multilang-errordoc.conf

# Fancy directory listings
#Include /extra/httpd-autoindex.conf

# Language settings
#Include /extra/httpd-languages.conf

# User home directories
#Include /extra/httpd-userdir.conf

# Real-time info on requests and configuration
#Include /extra/httpd-info.conf

# Virtual hosts
#Include /extra/httpd-vhosts.conf

# Local access to the Apache HTTP Server Manual
#Include /extra/httpd-manual.conf

# Distributed authoring and versioning (WebDAV)
#Include /extra/httpd-dav.conf

# Various default settings
#Include /extra/httpd-default.conf

# Secure (SSL/TLS) connections
#Include /extra/httpd-ssl.conf
#
# Note: The following must must be present to support
#       starting without SSL on platforms with no /dev/random equivalent
#       but a statically compiled-in mod_ssl.
#
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

# vim:syn=apache
Commit	Line	Data
271ec643 ER	1
	2	# TODO
	3	# - split each section to module's config fragment
	4	# - move LoadModule's to each module's config
	5	#
	6	#
	7	# Dynamic Shared Object (DSO) Support
	8	#
	9	# To be able to use the functionality of a module which was built as a DSO you
	10	# have to place corresponding `LoadModule' lines at this location so the
	11	# directives contained in it are actually available _before_ they are used.
	12	# Statically compiled modules (those listed by `httpd -l') do not need
	13	# to be loaded here.
	14	#
	15	# Example:
	16	# LoadModule foo_module modules/mod_foo.so
	17	#
	18	LoadModule authn_file_module modules/mod_authn_file.so
	19	LoadModule authn_dbm_module modules/mod_authn_dbm.so
	20	LoadModule authn_anon_module modules/mod_authn_anon.so
	21	LoadModule authn_dbd_module modules/mod_authn_dbd.so
	22	LoadModule authn_default_module modules/mod_authn_default.so
	23	LoadModule authn_alias_module modules/mod_authn_alias.so
	24	LoadModule authz_host_module modules/mod_authz_host.so
	25	LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
	26	LoadModule authz_user_module modules/mod_authz_user.so
	27	LoadModule authz_dbm_module modules/mod_authz_dbm.so
	28	LoadModule authz_owner_module modules/mod_authz_owner.so
	29	LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
	30	LoadModule authz_default_module modules/mod_authz_default.so
	31	LoadModule auth_basic_module modules/mod_auth_basic.so
271ec643 ER	32	LoadModule dbd_module modules/mod_dbd.so
	33	LoadModule bucketeer_module modules/mod_bucketeer.so
	34	LoadModule dumpio_module modules/mod_dumpio.so
	35	LoadModule echo_module modules/mod_echo.so
	36	LoadModule case_filter_module modules/mod_case_filter.so
	37	LoadModule case_filter_in_module modules/mod_case_filter_in.so
	38	LoadModule ext_filter_module modules/mod_ext_filter.so
	39	LoadModule include_module modules/mod_include.so
	40	LoadModule filter_module modules/mod_filter.so
271ec643 ER	41	LoadModule log_config_module modules/mod_log_config.so
	42	LoadModule log_forensic_module modules/mod_log_forensic.so
	43	LoadModule logio_module modules/mod_logio.so
	44	LoadModule env_module modules/mod_env.so
	45	LoadModule mime_magic_module modules/mod_mime_magic.so
	46	LoadModule cern_meta_module modules/mod_cern_meta.so
271ec643	47	LoadModule ident_module modules/mod_ident.so
271ec643 ER	48	LoadModule setenvif_module modules/mod_setenvif.so
271ec643 ER	49	LoadModule version_module modules/mod_version.so
271ec643 ER	50	LoadModule optional_hook_export_module modules/mod_optional_hook_export.so
	51	LoadModule optional_hook_import_module modules/mod_optional_hook_import.so
	52	LoadModule optional_fn_import_module modules/mod_optional_fn_import.so
	53	LoadModule optional_fn_export_module modules/mod_optional_fn_export.so
	54	LoadModule mime_module modules/mod_mime.so
271ec643	55	LoadModule asis_module modules/mod_asis.so
271ec643	56	LoadModule cgi_module modules/mod_cgi.so
271ec643	57	LoadModule negotiation_module modules/mod_negotiation.so
271ec643	58	LoadModule imagemap_module modules/mod_imagemap.so
271ec643 ER	59	LoadModule speling_module modules/mod_speling.so
	60	LoadModule userdir_module modules/mod_userdir.so
	61	LoadModule alias_module modules/mod_alias.so
271ec643 ER	62
	63
	64	# DocumentRoot: The directory out of which you will serve your
	65	# documents. By default, all requests are taken from this directory, but
	66	# symbolic links and aliases may be used to point to other locations.
	67	#
	68	DocumentRoot "/home/services/httpd/html"
	69
	70	# Each directory to which Apache has access can be configured with respect
	71	# to which services and features are allowed and/or disabled in that
	72	# directory (and its subdirectories).
	73	#
	74	# First, we configure the "default" to be a very restrictive set of
	75	# features.
	76	#
	77	<Directory />
	78	Options FollowSymLinks
	79	AllowOverride None
	80	Order deny,allow
	81	Deny from all
	82	</Directory>
	83
	84	#
	85	# This should be changed to whatever you set DocumentRoot to.
	86	#
	87	<Directory "/home/services/httpd/html">
	88	#
	89	# Possible values for the Options directive are "None", "All",
	90	# or any combination of:
	91	# Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
	92	#
	93	# Note that "MultiViews" must be named explicitly --- "Options All"
	94	# doesn't give it to you.
	95	#
	96	# The Options directive is both complicated and important. Please see
	97	# http://httpd.apache.org/docs/2.2/mod/core.html#options
	98	# for more information.
	99	#
	100	Options Indexes FollowSymLinks
	101
	102	#
	103	# AllowOverride controls what directives may be placed in .htaccess files.
	104	# It can be "All", "None", or any combination of the keywords:
	105	# Options FileInfo AuthConfig Limit
	106	#
	107	AllowOverride None
	108
	109	#
	110	# Controls who can get stuff from this server.
	111	#
	112	Order allow,deny
	113	Allow from all
	114
	115	</Directory>
	116
	117	#
	118	# DirectoryIndex: sets the file that Apache will serve if a directory
	119	# is requested.
	120	#
	121	<IfModule dir_module>
	122	DirectoryIndex index.html
	123	</IfModule>
	124
	125	#
126	# The following lines prevent .htaccess and .htpasswd files from being
127	# viewed by Web clients.
128	#
129	<FilesMatch "^\.ht">
130	Order allow,deny
131	Deny from all
132	</FilesMatch>
133
134	<IfModule log_config_module>
135	#
136	# The following directives define some format nicknames for use with
137	# a CustomLog directive (see below).
138	#
139	LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
140	LogFormat "%h %l %u %t \"%r\" %>s %b" common
141
142	<IfModule logio_module>
143	# You need to enable mod_logio.c to use %I and %O
144	LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
145	</IfModule>
146
147	#
148	# The location and format of the access logfile (Common Logfile Format).
149	# If you do not define any access logfiles within a <VirtualHost>
150	# container, they will be logged here. Contrariwise, if you do
151	# define per-<VirtualHost> access logfiles, transactions will be
152	# logged therein and not in this file.
153	#
154	CustomLog /var/log/httpd/access_log common
155
156	#
157	# If you prefer a logfile with access, agent, and referer information
158	# (Combined Logfile Format) you can use the following directive.
159	#
160	#CustomLog /var/log/httpd/access_log combined
161	</IfModule>
162
163	<IfModule alias_module>
164	#
165	# Redirect: Allows you to tell clients about documents that used to
166	# exist in your server's namespace, but do not anymore. The client
167	# will make a new request for the document at its new location.
168	# Example:
169	# Redirect permanent /foo http://www.example.com/bar
170
171	#
172	# Alias: Maps web paths into filesystem paths and is used to
173	# access content that does not live under the DocumentRoot.
174	# Example:
175	# Alias /webpath /full/filesystem/path
176	#
177	# If you include a trailing / on /webpath then the server will
178	# require it to be present in the URL. You will also likely
179	# need to provide a <Directory> section to allow access to
180	# the filesystem path.
181
182	#
183	# ScriptAlias: This controls which directories contain server scripts.
184	# ScriptAliases are essentially the same as Aliases, except that
185	# documents in the target directory are treated as applications and
186	# run by the server when requested rather than as documents sent to the
187	# client. The same rules about trailing "/" apply to ScriptAlias
188	# directives as to Alias.
189	#
190	ScriptAlias /cgi-bin/ "/home/services/httpd/cgi-bin/"
191
192	</IfModule>
193
194	<IfModule cgid_module>
195	#
196	# ScriptSock: On threaded servers, designate the path to the UNIX
197	# socket used to communicate with the CGI daemon of mod_cgid.
198	#
199	#Scriptsock /var/run/cgisock
200	</IfModule>
201
202	#
203	# "/home/services/httpd/cgi-bin" should be changed to whatever your ScriptAliased
204	# CGI directory exists, if you have that configured.
205	#
206	<Directory "/home/services/httpd/cgi-bin">
207	AllowOverride None
208	Options None
209	Order allow,deny
210	Allow from all
211	</Directory>
212
213	<IfModule mime_module>
214	#
215	# TypesConfig points to the file containing the list of mappings from
216	# filename extension to MIME-type.
217	#
218	TypesConfig /mime.types
219
220	#
221	# AddType allows you to add to or override the MIME configuration
222	# file specified in TypesConfig for specific file types.
223	#
224	#AddType application/x-gzip .tgz
225	#
226	# AddEncoding allows you to have certain browsers uncompress
227	# information on the fly. Note: Not all browsers support this.
228	#
229	#AddEncoding x-compress .Z
230	#AddEncoding x-gzip .gz .tgz
231	#
232	# If the AddEncoding directives above are commented-out, then you
233	# probably should define those extensions to indicate media types:
234	#
235	AddType application/x-compress .Z
236	AddType application/x-gzip .gz .tgz
237
238	#
239	# AddHandler allows you to map certain file extensions to "handlers":
240	# actions unrelated to filetype. These can be either built into the server
241	# or added with the Action directive (see below)
242	#
243	# To use CGI scripts outside of ScriptAliased directories:
244	# (You will also need to add "ExecCGI" to the "Options" directive.)
245	#
246	#AddHandler cgi-script .cgi
247
248	# For files that include their own HTTP headers:
249	#AddHandler send-as-is asis
250
251	# For server-parsed imagemap files:
252	#AddHandler imap-file map
253
254	# For type maps (negotiated resources):
255	#AddHandler type-map var
256
257	#
258	# Filters allow you to process content before it is sent to the client.
259	#
260	# To parse .shtml files for server-side includes (SSI):
261	# (You will also need to add "Includes" to the "Options" directive.)
262	#
263	#AddType text/html .shtml
264	#AddOutputFilter INCLUDES .shtml
265	</IfModule>
266
267	#
268	# The mod_mime_magic module allows the server to use various hints from the
269	# contents of the file itself to determine its type. The MIMEMagicFile
270	# directive tells the module where the hint definitions are located.
271	#
272	#MIMEMagicFile /magic
273
274	#
275	# Customizable error responses come in three flavors:
276	# 1) plain text 2) local redirects 3) external redirects
277	#
278	# Some examples:
279	#ErrorDocument 500 "The server made a boo boo."
280	#ErrorDocument 404 /missing.html
281	#ErrorDocument 404 "/cgi-bin/missing_handler.pl"
282	#ErrorDocument 402 http://www.example.com/subscription_info.html
283	#
284
285	#
286	# EnableMMAP and EnableSendfile: On systems that support it,
287	# memory-mapping or the sendfile syscall is used to deliver
288	# files. This usually improves server performance, but must
289	# be turned off when serving from networked-mounted
290	# filesystems or if support for these functions is otherwise
291	# broken on your system.
292	#
293	#EnableMMAP off
294	#EnableSendfile off
295
296	# Supplemental configuration
297	#
298	# The configuration files in the /extra/ directory can be
299	# included to add extra features or to modify the default configuration of
300	# the server, or you may simply copy their contents here and change as
301	# necessary.
302
303	# Server-pool management (MPM specific)
304	#Include /extra/httpd-mpm.conf
305
306	# Multi-language error messages
307	#Include /extra/httpd-multilang-errordoc.conf
308
309	# Fancy directory listings
310	#Include /extra/httpd-autoindex.conf
311
312	# Language settings
313	#Include /extra/httpd-languages.conf
314
315	# User home directories
316	#Include /extra/httpd-userdir.conf
317
318	# Real-time info on requests and configuration
319	#Include /extra/httpd-info.conf
320
321	# Virtual hosts
322	#Include /extra/httpd-vhosts.conf
323
324	# Local access to the Apache HTTP Server Manual
325	#Include /extra/httpd-manual.conf
326
327	# Distributed authoring and versioning (WebDAV)
328	#Include /extra/httpd-dav.conf
329
330	# Various default settings
331	#Include /extra/httpd-default.conf
332
333	# Secure (SSL/TLS) connections
334	#Include /extra/httpd-ssl.conf
335	#
336	# Note: The following must must be present to support
337	# starting without SSL on platforms with no /dev/random equivalent
338	# but a statically compiled-in mod_ssl.
339	#
340	<IfModule ssl_module>
341	SSLRandomSeed startup builtin
342	SSLRandomSeed connect builtin
343	</IfModule>
344
345	# vim:syn=apache