Return-Path: Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 23912 invoked by uid 500); 16 Apr 2002 03:56:20 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 23901 invoked from network); 16 Apr 2002 03:56:20 -0000 Received: from fe8.southeast.rr.com (HELO mail8.carolina.rr.com) (24.93.67.55) by daedalus.apache.org with SMTP; 16 Apr 2002 03:56:20 -0000 Received: from freeze1 ([24.163.90.205]) by mail8.carolina.rr.com with Microsoft SMTPSVC(5.5.1877.687.68); Mon, 15 Apr 2002 23:55:40 -0400 From: "Brian Speck" To: Subject: RE: Getting farther RE: Virtual Hosts Date: Mon, 15 Apr 2002 23:55:55 -0400 Message-ID: <000c01c1e4fa$9c1e4170$3200a8c0@freeze1> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPart_000_000D_01C1E4D9.150CA170" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2627 Importance: Normal In-Reply-To: <000201c1e4f9$04aa3de0$3200a8c0@freeze1> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N ------=_NextPart_000_000D_01C1E4D9.150CA170 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Oops sorry Guys that Httpd.conf has an error in it.. I found.. here is the most current. Thanks again Everyone.. for being so patient with me and helping the best yall can. Brian -----Original Message----- From: Brian Speck [mailto:bspeck@carolina.rr.com]=20 Sent: Monday, April 15, 2002 11:45 PM To: users@httpd.apache.org Subject: RE: Getting farther RE: Virtual Hosts Well here is the latest.. I tried making the Default the /home folder.. and I went to bspeck.no-ip.com I saw the users folders. But still If I goto countrybarn.servebeer.com I still get Forbidden Access. Is there a permissions I need to set.. I did do a chmod =96R 777 to the Countrybarn folder Does not seemed to have done anything.. Anyone know What I am missing. Also I have enclosed a copy of my current httpd.conf I appreciate all the help. Thanks Again Brian -----Original Message----- From: Brian Speck [mailto:bspeck@carolina.rr.com]=20 Sent: Monday, April 15, 2002 11:14 PM To: users@httpd.apache.org Subject: RE: Getting farther RE: Virtual Hosts I am sorry I should have explained better.. this is a RH 7.2 Install -----Original Message----- From: ElectroCities [mailto:postmaster@electrocities.com]=20 Sent: Monday, April 15, 2002 6:55 PM To: users@httpd.apache.org Subject: Re: Getting farther RE: Virtual Hosts If you are using a Windows machine you need to put the UNC path of the directory in the virtual web, like the example I sent.=A0 If it was working, and you do not point to a specific file, it should still work, but it will display the directory contents instead of a web page. =A0 Chuck =A0 ----- Original Message -----=20 From: Brian Speck=20 To: users@httpd.apache.org=20 Sent: 15-April-2002 6:44 PM Subject: RE: Getting farther RE: Virtual Hosts It is pointing to the persons /home/Countrybarn/www I have tried to manunally put in a file name ie http://countrybarn.servebeer.com/main.php =20 -----Original Message----- From: ElectroCities [mailto:postmaster@electrocities.com]=20 Sent: Monday, April 15, 2002 6:10 PM To: users@httpd.apache.org Subject: Re: Getting farther RE: Virtual Hosts The forbidden error is because it is pointing to the wrong folder =A0 =A0 ----- Original Message -----=20 From: Brian Speck=20 To: users@httpd.apache.org=20 Sent: 15-April-2002 6:01 PM Subject: Getting farther RE: Virtual Hosts Okay I have been playing around and I seem to getting farther Now when I goto bspeck.no-ip.com it works.. I see the pages=20 And when I go to=20 Countrybarn.servebeer.com I get a Forbidden error.. Can someone please help me out with this Brian ------=_NextPart_000_000D_01C1E4D9.150CA170 Content-Type: application/octet-stream; name="httpd.conf" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="httpd.conf" =0A= ## httpd.conf - configuration for the Apache web server=0A= #=0A= # Generated automatically... if you edit manually, the changes will be = lost=0A= # the next time you run "apacheconfig".=0A= #=0A= # What we listen to=0A= #=0A= ServerType StandAlone=0A= ServerRoot /etc/httpd/=0A= =0A= # We don't handle this yet...=0A= #=0A= # Dynamic Shared Object (DSO) Support=0A= #=0A= # To be able to use the functionality of a module which was built as a = DSO you=0A= # have to place corresponding `LoadModule' lines at this location so the=0A= # directives contained in it are actually available _before_ they are = used.=0A= # Please read the file README.DSO in the Apache 1.3 distribution for more=0A= # details about the DSO mechanism and run `httpd -l' for the list of = already=0A= # built-in (statically linked and thus always available) modules in your = httpd=0A= # binary.=0A= #=0A= # Note: The order is which modules are loaded is important. Don't change=0A= # the order below without expert advice.=0A= #=0A= # Example:=0A= # LoadModule foo_module modules/mod_foo.so=0A= =0A= #LoadModule mmap_static_module modules/mod_mmap_static.so=0A= LoadModule vhost_alias_module modules/mod_vhost_alias.so=0A= LoadModule env_module modules/mod_env.so=0A= LoadModule config_log_module modules/mod_log_config.so=0A= LoadModule agent_log_module modules/mod_log_agent.so=0A= LoadModule referer_log_module modules/mod_log_referer.so=0A= #LoadModule mime_magic_module modules/mod_mime_magic.so=0A= LoadModule mime_module modules/mod_mime.so=0A= LoadModule negotiation_module modules/mod_negotiation.so=0A= LoadModule status_module modules/mod_status.so=0A= LoadModule info_module modules/mod_info.so=0A= LoadModule includes_module modules/mod_include.so=0A= LoadModule autoindex_module modules/mod_autoindex.so=0A= LoadModule dir_module modules/mod_dir.so=0A= LoadModule cgi_module modules/mod_cgi.so=0A= LoadModule asis_module modules/mod_asis.so=0A= LoadModule imap_module modules/mod_imap.so=0A= LoadModule action_module modules/mod_actions.so=0A= #LoadModule speling_module modules/mod_speling.so=0A= LoadModule userdir_module modules/mod_userdir.so=0A= LoadModule alias_module modules/mod_alias.so=0A= LoadModule rewrite_module modules/mod_rewrite.so=0A= LoadModule access_module modules/mod_access.so=0A= LoadModule auth_module modules/mod_auth.so=0A= LoadModule anon_auth_module modules/mod_auth_anon.so=0A= LoadModule db_auth_module modules/mod_auth_db.so=0A= #LoadModule digest_module modules/mod_digest.so=0A= #LoadModule proxy_module modules/libproxy.so=0A= #LoadModule cern_meta_module modules/mod_cern_meta.so=0A= LoadModule expires_module modules/mod_expires.so=0A= LoadModule headers_module modules/mod_headers.so=0A= #LoadModule usertrack_module modules/mod_usertrack.so=0A= #LoadModule example_module modules/mod_example.so=0A= #LoadModule unique_id_module modules/mod_unique_id.so=0A= LoadModule setenvif_module modules/mod_setenvif.so=0A= #LoadModule bandwidth_module modules/mod_bandwidth.so=0A= #LoadModule put_module modules/mod_put.so=0A= =0A= LoadModule perl_module modules/libperl.so=0A= =0A= =0A= LoadModule php_module modules/mod_php.so=0A= =0A= =0A= LoadModule php3_module modules/libphp3.so=0A= =0A= =0A= LoadModule php4_module modules/libphp4.so=0A= =0A= =0A= LoadModule dav_module modules/libdav.so=0A= =0A= =0A= LoadModule roaming_module modules/mod_roaming.so=0A= =0A= =0A= LoadModule ssl_module modules/libssl.so=0A= =0A= =0A= # Reconstruction of the complete module list from all available modules=0A= # (static and shared ones) to achieve correct module execution order.=0A= # [WHENEVER YOU CHANGE THE LOADMODULE SECTION ABOVE UPDATE THIS, TOO]=0A= ClearModuleList=0A= #AddModule mod_mmap_static.c=0A= AddModule mod_vhost_alias.c=0A= AddModule mod_env.c=0A= AddModule mod_log_config.c=0A= AddModule mod_log_agent.c=0A= AddModule mod_log_referer.c=0A= #AddModule mod_mime_magic.c=0A= AddModule mod_mime.c=0A= AddModule mod_negotiation.c=0A= AddModule mod_status.c=0A= AddModule mod_info.c=0A= AddModule mod_include.c=0A= AddModule mod_autoindex.c=0A= AddModule mod_dir.c=0A= AddModule mod_cgi.c=0A= AddModule mod_asis.c=0A= AddModule mod_imap.c=0A= AddModule mod_actions.c=0A= #AddModule mod_speling.c=0A= AddModule mod_userdir.c=0A= AddModule mod_alias.c=0A= AddModule mod_rewrite.c=0A= AddModule mod_access.c=0A= AddModule mod_auth.c=0A= AddModule mod_auth_anon.c=0A= AddModule mod_auth_db.c=0A= #AddModule mod_digest.c=0A= #AddModule mod_proxy.c=0A= #AddModule mod_cern_meta.c=0A= AddModule mod_expires.c=0A= AddModule mod_headers.c=0A= #AddModule mod_usertrack.c=0A= #AddModule mod_example.c=0A= #AddModule mod_unique_id.c=0A= AddModule mod_so.c=0A= AddModule mod_setenvif.c=0A= #AddModule mod_bandwidth.c=0A= #AddModule mod_put.c=0A= =0A= AddModule mod_perl.c=0A= =0A= =0A= AddModule mod_php.c=0A= =0A= =0A= AddModule mod_php3.c=0A= =0A= =0A= AddModule mod_php4.c=0A= =0A= =0A= AddModule mod_dav.c=0A= =0A= =0A= AddModule mod_roaming.c=0A= =0A= =0A= AddModule mod_ssl.c=0A= =0A= =0A= ServerName Freeze_Web=0A= =0A= ServerAdmin bspeck@nettaxi.com=0A= =0A= Listen *:80=0A= Listen *:8080=0A= =0A= Port 80=0A= =0A= ScoreBoardFile /var/run/httpd.scoreboard =0A= =0A= NameVirtualHost 192.168.0.2=0A= =0A= # Where do we put the lock and pif files?=0A= LockFile /var/lock/httpd.lock =0A= PidFile /var/run/httpd.pid=0A= CoreDumpDirectory "/etc/httpd"=0A= =0A= # Documents=0A= DocumentRoot /var/www/html =0A= UserDir public_html =0A= IndexOptions FancyIndexing =0A= =0A= =0A= # Who runs the server?=0A= User apache =0A= Group apache=0A= =0A= # Performance parameters=0A= MaxClients 150 =0A= TimeOut 300 =0A= KeepAlive false =0A= MaxKeepAliveRequests 100 =0A= MaxRequestsPerChild 100 =0A= KeepAliveTimeout 15 =0A= MinSpareServers 5 =0A= MaxSpareServers 20 =0A= StartServers 8 =0A= =0A= # Error documents=0A= =0A= # Misc=0A= =0A= AccessFileName .htaccess =0A= UseCanonicalName on =0A= TypesConfig /etc/mime.types =0A= DefaultType "text/plain" =0A= =0A= =0A= # Defaults for virtual hosts=0A= ServerSignature on=0A= =0A= # Logs=0A= ErrorLog /var/log/httpd/error_log=0A= LogLevel warn=0A= HostNameLookups Off=0A= =0A= # Need to fix this=0A= LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" = combined=0A= LogFormat "%h %l %u %t \"%r\" %>s %b" common=0A= LogFormat "%{Referer}i -> %U" referer=0A= LogFormat "%{User-agent}i" agent=0A= CustomLog /var/log/httpd/access_log common=0A= =0A= Alias /icons/ "/var/www/icons/"=0A= ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"=0A= #=0A= # ScriptAlias: This controls which directories contain server scripts.=0A= # ScriptAliases are essentially the same as Aliases, except that=0A= # documents in the realname directory are treated as applications and=0A= # run by the server when requested rather than as documents sent to the = client.=0A= # The same rules about trailing "/" apply to ScriptAlias directives as to=0A= # Alias.=0A= #=0A= ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"=0A= =0A= #=0A= # "/var/www/cgi-bin" should be changed to whatever your ScriptAliased=0A= # CGI directory exists, if you have that configured.=0A= #=0A= =0A= AllowOverride None=0A= Options ExecCGI=0A= Order allow,deny=0A= Allow from all=0A= =0A= =0A= #=0A= # Redirect allows you to tell clients about documents which used to = exist in=0A= # your server's namespace, but do not anymore. This allows you to tell = the=0A= # clients where to look for the relocated document.=0A= # Format: Redirect old-URI new-URL=0A= #=0A= =0A= #=0A= # Directives controlling the display of server-generated directory = listings.=0A= #=0A= =0A= #=0A= # FancyIndexing: whether you want fancy directory indexing or standard=0A= #=0A= IndexOptions FancyIndexing=0A= =0A= #=0A= # AddIcon* directives tell the server which icon to show for different=0A= # files or filename extensions. These are only displayed for=0A= # FancyIndexed directories.=0A= #=0A= AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip=0A= =0A= AddIconByType (TXT,/icons/text.gif) text/*=0A= AddIconByType (IMG,/icons/image2.gif) image/*=0A= AddIconByType (SND,/icons/sound2.gif) audio/*=0A= AddIconByType (VID,/icons/movie.gif) video/*=0A= =0A= AddIcon /icons/binary.gif .bin .exe=0A= AddIcon /icons/binhex.gif .hqx=0A= AddIcon /icons/tar.gif .tar=0A= AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv=0A= AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip=0A= AddIcon /icons/a.gif .ps .ai .eps=0A= AddIcon /icons/layout.gif .html .shtml .htm .pdf=0A= AddIcon /icons/text.gif .txt=0A= AddIcon /icons/c.gif .c=0A= AddIcon /icons/p.gif .pl .py=0A= AddIcon /icons/f.gif .for=0A= AddIcon /icons/dvi.gif .dvi=0A= AddIcon /icons/uuencoded.gif .uu=0A= AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl=0A= AddIcon /icons/tex.gif .tex=0A= AddIcon /icons/bomb.gif core=0A= =0A= AddIcon /icons/back.gif ..=0A= AddIcon /icons/hand.right.gif README=0A= AddIcon /icons/folder.gif ^^DIRECTORY^^=0A= AddIcon /icons/blank.gif ^^BLANKICON^^=0A= =0A= #=0A= # DefaultIcon: which icon to show for files which do not have an icon=0A= # explicitly set.=0A= #=0A= DefaultIcon /icons/unknown.gif=0A= =0A= #=0A= # AddDescription: allows you to place a short description after a file in=0A= # server-generated indexes. These are only displayed for FancyIndexed=0A= # directories.=0A= # Format: AddDescription "description" filename=0A= #=0A= #AddDescription "GZIP compressed document" .gz=0A= #AddDescription "tar archive" .tar=0A= #AddDescription "GZIP compressed tar archive" .tgz=0A= =0A= #=0A= # ReadmeName: the name of the README file the server will look for by=0A= # default, and append to directory listings.=0A= #=0A= # HeaderName: the name of a file which should be prepended to=0A= # directory indexes. =0A= #=0A= # The server will first look for name.html and include it if found.=0A= # If name.html doesn't exist, the server will then look for name.txt=0A= # and include it as plaintext if found.=0A= #=0A= ReadmeName README=0A= HeaderName HEADER=0A= =0A= #=0A= # IndexIgnore: a set of filenames which directory indexing should ignore=0A= # and not include in the listing. Shell-style wildcarding is permitted.=0A= #=0A= IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t=0A= =0A= #=0A= # AddEncoding: allows you to have certain browsers (Mosaic/X 2.1+) = uncompress=0A= # information on the fly. Note: Not all browsers support this.=0A= # Despite the name similarity, the following Add* directives have nothing=0A= # to do with the FancyIndexing customization directives above.=0A= #=0A= AddEncoding x-compress Z=0A= AddEncoding x-gzip gz tgz=0A= =0A= #=0A= # AddLanguage: allows you to specify the language of a document. You can=0A= # then use content negotiation to give a browser a file in a language=0A= # it can understand. Note that the suffix does not have to be the same=0A= # as the language keyword --- those with documents in Polish (whose=0A= # net-standard language code is pl) may wish to use "AddLanguage pl .po" =0A= # to avoid the ambiguity with the common suffix for perl scripts.=0A= #=0A= AddLanguage en .en=0A= AddLanguage fr .fr=0A= AddLanguage de .de=0A= AddLanguage da .da=0A= AddLanguage el .el=0A= AddLanguage it .it=0A= =0A= #=0A= # LanguagePriority: allows you to give precedence to some languages=0A= # in case of a tie during content negotiation.=0A= # Just list the languages in decreasing order of preference.=0A= #=0A= LanguagePriority en fr de=0A= =0A= #=0A= # AddType: allows you to tweak mime.types without actually editing it, = or to=0A= # make certain files to be certain types.=0A= #=0A= # The following is for PHP4 (conficts with PHP/FI, below):=0A= =0A= AddType application/x-httpd-php .php4 .php3 .phtml .php=0A= AddType application/x-httpd-php-source .phps=0A= =0A= =0A= # The following is for PHP3:=0A= =0A= AddType application/x-httpd-php3 .php3=0A= AddType application/x-httpd-php3-source .phps=0A= =0A= =0A= # The following is for PHP/FI (PHP2):=0A= =0A= AddType application/x-httpd-php .phtml=0A= =0A= =0A= AddType application/x-tar .tgz=0A= =0A= #=0A= # AddHandler: allows you to map certain file extensions to "handlers",=0A= # actions unrelated to filetype. These can be either built into the = server=0A= # or added with the Action command (see below)=0A= #=0A= # If you want to use server side includes, or CGI outside=0A= # ScriptAliased directories, uncomment the following lines.=0A= #=0A= # To use CGI scripts:=0A= #=0A= #AddHandler cgi-script .cgi=0A= =0A= #=0A= # To use server-parsed HTML files=0A= #=0A= AddType text/html .shtml=0A= AddHandler server-parsed .shtml=0A= =0A= #=0A= # Uncomment the following line to enable Apache's send-asis HTTP file=0A= # feature=0A= #=0A= #AddHandler send-as-is asis=0A= =0A= #=0A= # If you wish to use server-parsed imagemap files, use=0A= #=0A= AddHandler imap-file map=0A= =0A= #=0A= # The following directives modify normal HTTP response behavior.=0A= # The first directive disables keepalive for Netscape 2.x and browsers = that=0A= # spoof it. There are known problems with these browser implementations.=0A= # The second directive is for Microsoft Internet Explorer 4.0b2=0A= # which has a broken HTTP/1.1 implementation and does not properly=0A= # support keepalive when it is used on 301 or 302 (redirect) responses.=0A= #=0A= BrowserMatch "Mozilla/2" nokeepalive=0A= BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0=0A= =0A= #=0A= # The following directive disables HTTP/1.1 responses to browsers which=0A= # are in violation of the HTTP/1.0 spec by not being able to grok a=0A= # basic 1.1 response.=0A= #=0A= BrowserMatch "RealPlayer 4\.0" force-response-1.0=0A= BrowserMatch "Java/1\.0" force-response-1.0=0A= BrowserMatch "JDK/1\.0" force-response-1.0=0A= =0A= =0A= # If the perl module is installed, this will be enabled.=0A= =0A= Alias /perl/ /var/www/perl/=0A= =0A= SetHandler perl-script=0A= PerlHandler Apache::Registry=0A= Options +ExecCGI=0A= =0A= =0A= =0A= #=0A= # Allow http put (such as Netscape Gold's publish feature)=0A= # Use htpasswd to generate /etc/httpd/conf/passwd.=0A= # You must unremark these two lines at the top of this file as well:=0A= #LoadModule put_module modules/mod_put.so=0A= #AddModule mod_put.c=0A= #=0A= #Alias /upload /tmp=0A= #=0A= # EnablePut On=0A= # AuthType Basic=0A= # AuthName Temporary=0A= # AuthUserFile /etc/httpd/conf/passwd=0A= # EnableDelete Off=0A= # umask 007=0A= # =0A= # require valid-user=0A= # =0A= #=0A= =0A= #=0A= # Allow server status reports, with the URL of = http://servername/server-status=0A= # Change the ".your_domain.com" to match your domain to enable.=0A= #=0A= #=0A= # SetHandler server-status=0A= # Order deny,allow=0A= # Deny from all=0A= # Allow from .your_domain.com=0A= #=0A= =0A= #=0A= # Allow remote server configuration reports, with the URL of=0A= # http://servername/server-info (requires that mod_info.c be loaded).=0A= # Change the ".your_domain.com" to match your domain to enable.=0A= #=0A= #=0A= # SetHandler server-info=0A= # Order deny,allow=0A= # Deny from all=0A= # Allow from .your_domain.com=0A= #=0A= =0A= # Allow access to local system documentation from localhost=0A= Alias /doc/ /usr/share/doc/=0A= =0A= order deny,allow=0A= deny from all=0A= allow from localhost=0A= Options Indexes FollowSymLinks=0A= =0A= =0A= #=0A= =0A= ##=0A= ## SSL Virtual Host Context=0A= ##=0A= =0A= # Apache will only listen on port 80 by default. Defining the virtual = server=0A= # (below) won't make it automatically listen on the virtual server's = port.=0A= Listen 443=0A= =0A= =0A= =0A= # General setup for the virtual host=0A= DocumentRoot "/var/www/html"=0A= =0A= # SSL Engine Switch:=0A= # Enable/Disable SSL for this virtual host.=0A= SSLEngine on=0A= =0A= # SSL Cipher Suite:=0A= # List the ciphers that the client is permitted to negotiate.=0A= # See the mod_ssl documentation for a complete list.=0A= #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL=0A= =0A= # Server Certificate:=0A= # Point SSLCertificateFile at a PEM encoded certificate. If=0A= # the certificate is encrypted, then you will be prompted for a=0A= # pass phrase. Note that a kill -HUP will prompt again. A test=0A= # certificate can be generated with `make certificate' under=0A= # built time. Keep in mind that if you've both a RSA and a DSA=0A= # certificate you can configure both in parallel (to also allow=0A= # the use of DSA ciphers, etc.)=0A= SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt=0A= #SSLCertificateFile /etc/httpd/conf/ssl.crt/server-dsa.crt=0A= =0A= # Server Private Key:=0A= # If the key is not combined with the certificate, use this=0A= # directive to point at the key file. Keep in mind that if=0A= # you've both a RSA and a DSA private key you can configure=0A= # both in parallel (to also allow the use of DSA ciphers, etc.)=0A= SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key=0A= #SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server-dsa.key=0A= =0A= # Server Certificate Chain:=0A= # Point SSLCertificateChainFile at a file containing the=0A= # concatenation of PEM encoded CA certificates which form the=0A= # certificate chain for the server certificate. Alternatively=0A= # the referenced file can be the same as SSLCertificateFile=0A= # when the CA certificates are directly appended to the server=0A= # certificate for convinience.=0A= #SSLCertificateChainFile /etc/httpd/conf/ssl.crt/ca.crt=0A= =0A= # Certificate Authority (CA):=0A= # Set the CA certificate verification path where to find CA=0A= # certificates for client authentication or alternatively one=0A= # huge file containing all of them (file must be PEM encoded)=0A= # Note: Inside SSLCACertificatePath you need hash symlinks=0A= # to point to the certificate files. Use the provided=0A= # Makefile to update the hash symlinks after changes.=0A= #SSLCACertificatePath /etc/httpd/conf/ssl.crt=0A= #SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle.crt=0A= =0A= # Certificate Revocation Lists (CRL):=0A= # Set the CA revocation path where to find CA CRLs for client=0A= # authentication or alternatively one huge file containing all=0A= # of them (file must be PEM encoded)=0A= # Note: Inside SSLCARevocationPath you need hash symlinks=0A= # to point to the certificate files. Use the provided=0A= # Makefile to update the hash symlinks after changes.=0A= #SSLCARevocationPath /etc/httpd/conf/ssl.crl=0A= #SSLCARevocationFile /etc/httpd/conf/ssl.crl/ca-bundle.crl=0A= # Client Authentication (Type):=0A= # Client certificate verification type and depth. Types are=0A= # none, optional, require and optional_no_ca. Depth is a=0A= # number which specifies how deeply to verify the certificate=0A= # issuer chain before deciding the certificate is not valid.=0A= #SSLVerifyClient require=0A= #SSLVerifyDepth 10=0A= =0A= # Access Control:=0A= # With SSLRequire you can do per-directory access control based=0A= # on arbitrary complex boolean expressions containing server=0A= # variable checks and other lookup directives. The syntax is a=0A= # mixture between C and Perl. See the mod_ssl documentation=0A= # for more details.=0A= #=0A= #SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)-/ \=0A= # and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \=0A= # and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \=0A= # and %{TIME_WDAY} >=3D 1 and %{TIME_WDAY} <=3D 5 \=0A= # and %{TIME_HOUR} >=3D 8 and %{TIME_HOUR} <=3D 20 ) \=0A= # or %{REMOTE_ADDR} =3D~ m/^192\.76\.162\.[0-9]+$/=0A= #=0A= # SSL Engine Options:=0A= # Set various options for the SSL engine.=0A= # o FakeBasicAuth:=0A= # Translate the client X.509 into a Basic Authorisation. This means = that=0A= # the standard Auth/DBMAuth methods can be used for access control. = The=0A= # user name is the `one line' version of the client's X.509 = certificate.=0A= # Note that no password is obtained from the user. Every entry in = the user=0A= # file needs this password: `xxj31ZMTZzkVA'.=0A= # o ExportCertData:=0A= # This exports two additional environment variables: SSL_CLIENT_CERT = and=0A= # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the=0A= # server (always existing) and the client (only existing when client=0A= # authentication is used). This can be used to import the = certificates=0A= # into CGI scripts.=0A= # o StdEnvVars:=0A= # This exports the standard SSL/TLS related `SSL_*' environment = variables.=0A= # Per default this exportation is switched off for performance = reasons,=0A= # because the extraction step is an expensive operation and is = usually=0A= # useless for serving static content. So one usually enables the=0A= # exportation for CGI and SSI requests only.=0A= # o CompatEnvVars:=0A= # This exports obsolete environment variables for backward = compatibility=0A= # to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. = Use this=0A= # to provide compatibility to existing CGI scripts.=0A= # o StrictRequire:=0A= # This denies access when "SSLRequireSSL" or "SSLRequire" applied = even=0A= # under a "Satisfy any" situation, i.e. when it applies access is = denied=0A= # and no other module can change it.=0A= # o OptRenegotiate:=0A= # This enables optimized SSL connection renegotiation handling when = SSL=0A= # directives are used in per-directory context.=0A= #SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire=0A= =0A= SSLOptions +StdEnvVars=0A= =0A= =0A= SSLOptions +StdEnvVars=0A= =0A= =0A= # Notice: Most problems of broken clients are also related to the HTTP=0A= # keep-alive facility, so you usually additionally want to disable=0A= # keep-alive for those clients, too. Use variable "nokeepalive" for = this.=0A= SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown=0A= =0A= # Per-Server Logging:=0A= # The home of a custom SSL log file. Use this when you want a=0A= # compact non-error SSL logfile on a virtual host basis.=0A= CustomLog /var/log/httpd/ssl_request_log \=0A= "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"=0A= =0A= =0A= =0A= =0A= =0A= # Virtual hosts=0A= # Virtual host bspeck.no-ip.com=0A= =0A= ServerAdmin bspeck@nettaxi.com=0A= ServerName bspeck.no-ip.com=0A= ServerAlias bspeck.no-ip.com=0A= DirectoryIndex index.php index.html index.htm index.shtml =0A= =0A= =0A= AllowOverride none=0A= =0A= =0A= LogLevel debug=0A= =0A= =0A= =0A= # Virtual host countrybarn.servebeer.com=0A= =0A= DocumentRoot /home/Countrybarn/www =0A= ServerAdmin bspeck@nettaxi.com=0A= ServerName countrybarn.servebeer.com=0A= ServerAlias countrybarn=0A= ServerAlias countrybarn.servebeer.com=0A= DirectoryIndex index.php index.html index.htm index.shtml=0A= =0A= =0A= AllowOverride none=0A= Options Indexes Includes FollowSymLinks=0A= Allow from from all=0A= Order Allow,Deny=0A= =0A= =0A= =0A= # Virtual host Watergate=0A= =0A= DocumentRoot /home/Watergate/www =0A= ServerName _default_:8080=0A= DirectoryIndex index.html index.php Index.html index.htm index.shtml =0A= =0A= =0A= AllowOverride none=0A= =0A= =0A= =0A= # Directories...=0A= =0A= =0A= Options FollowSymLinks=0A= AllowOverride None=0A= =0A= =0A= =0A= Options Indexes Includes FollowSymLinks=0A= AllowOverride None=0A= Allow from from all=0A= Order Deny,Allow=0A= =0A= =0A= =0A= Options Indexes MultiViews=0A= AllowOverride None=0A= Allow from from all=0A= Order allow,deny=0A= =0A= =0A= =0A= Options ExecCGI=0A= AllowOverride None=0A= Allow from from all=0A= Order allow,deny=0A= =0A= ------=_NextPart_000_000D_01C1E4D9.150CA170 Content-Type: text/plain; charset=us-ascii --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org ------=_NextPart_000_000D_01C1E4D9.150CA170--