Return-Path: Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 29901 invoked by uid 500); 20 May 2002 02:45:44 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 29889 invoked from network); 20 May 2002 02:45:42 -0000 Received: from home.rdsnet.ro (HELO relay1.home.ro) (193.231.236.40) by daedalus.apache.org with SMTP; 20 May 2002 02:45:42 -0000 Received: (qmail 29665 invoked from network); 20 May 2002 02:44:49 -0000 Received: from unknown (HELO smtp) (213.233.73.189) by s1.home.ro with SMTP; 20 May 2002 02:44:49 -0000 Message-ID: <02cb01c1ffa8$74949e10$bd49e9d5@microsoft.com> From: "Octavian Rasnita" To: References: <01dc01c1fee5$c246f2c0$7b4de9d5@microsoft.com> <3CE7BE69.F448B34E@webprincess-designs.com> Subject: Re: Where to put Date: Mon, 20 May 2002 04:34:45 +0300 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Yes, but unfortunately I am not the web server owner, and they want to give this option only for my virtual host, not for all the web server root directory. Teddy, orasnita@home.ro ----- Original Message ----- From: "S. Wong" To: Sent: Sunday, May 19, 2002 6:02 PM Subject: Re: Where to put I think it has to do with the line in your AllowOverride None in : # # This may also be "None", "All", or any combination of "Indexes", # "Includes", "FollowSymLinks", "ExecCGI", or "MultiViews". # # Note that "MultiViews" must be named *explicitly* --- "Options All" # doesn't give it to you. # Options Indexes Includes FollowSymLinks # # This controls which options the .htaccess files in directories can # override. Can also be "All", or any combination of "Options", "FileInfo", # "AuthConfig", and "Limit" # AllowOverride None # # Controls who can get stuff from this server. # Order allow,deny Allow from all Set it to at the very least AllowOverride Options Octavian Rasnita wrote: > Hi, thanks again. > > Here is the .htaccess file I use and the httpd.conf file. > > The .htaccess file: > > Options FollowSymLinks Multiviews Includes -Indexes > #I have tried without -Indexes also. > > I've tried to put the .htaccess file in /var/www/teddy/html directory where > is my host root and in each directory under this one. > > I don't think the .htaccess file is important because doesn't matter what I > change in it, it doesn't work. > I have also tried putting the following lines in the .htaccess file in the > root directory with no effect: > Options none > Order allow,deny > Deny from all > > ... and I still can see all the files and folders, indexes, etc. > > I think the problem could be the rights I have assigned for my directories > or the httpd.conf file. > > If I assign 755, for the html directories, I can see them, but if I assign > 744 or 644, I can't see and access any folder or directory. > It give me the 403 error "Access denied" even though I should see the files > if I have read rights. > > Here below is the httpd.conf file. > Thank you very very much for help. > > ## > ## httpd.conf -- Apache HTTP server configuration file > ## > > # > # Based upon the NCSA server configuration files originally by Rob McCool. > # > # This is the main Apache server configuration file. It contains the > # configuration directives that give the server its instructions. > # See for detailed information about > # the directives. > # > # Do NOT simply read the instructions in here without understanding > # what they do. They're here only as hints or reminders. If you are unsure > # consult the online docs. You have been warned. > # > # After this file is processed, the server will look for and process > # /usr/conf/srm.conf and then /usr/conf/access.conf > # unless you have overridden these with ResourceConfig and/or > # AccessConfig directives here. > # > # The configuration directives are grouped into three basic sections: > # 1. Directives that control the operation of the Apache server process as > a > # whole (the 'global environment'). > # 2. Directives that define the parameters of the 'main' or 'default' > server, > # which responds to requests that aren't handled by a virtual host. > # These directives also provide default values for the settings > # of all virtual hosts. > # 3. Settings for virtual hosts, which allow Web requests to be sent to > # different IP addresses or hostnames and have them handled by the > # same Apache server process. > # > # Configuration and logfile names: If the filenames you specify for many > # of the server's control files begin with "/" (or "drive:/" for Win32), the > # server will use that explicit path. If the filenames do *not* begin > # with "/", the value of ServerRoot is prepended -- so "logs/foo.log" > # with ServerRoot set to "/usr/local/apache" will be interpreted by the > # server as "/usr/local/apache/logs/foo.log". > # > > ### Section 1: Global Environment > # > # The directives in this section affect the overall operation of Apache, > # such as the number of concurrent requests it can handle or where it > # can find its configuration files. > # > > # > # ServerType is either inetd, or standalone. Inetd mode is only supported > on > # Unix platforms. > # > ServerType standalone > > # > # ServerRoot: The top of the directory tree under which the server's > # configuration, error, and log files are kept. > # > # NOTE! If you intend to place this on an NFS (or otherwise network) > # mounted filesystem then please read the LockFile documentation > # (available at ); > # you will save yourself a lot of trouble. > # > # Do NOT add a slash at the end of the directory path. > # > ServerRoot "/etc/httpd" > > # > # The LockFile directive sets the path to the lockfile used when Apache > # is compiled with either USE_FCNTL_SERIALIZED_ACCEPT or > # USE_FLOCK_SERIALIZED_ACCEPT. This directive should normally be left at > # its default value. The main reason for changing it is if the logs > # directory is NFS mounted, since the lockfile MUST BE STORED ON A LOCAL > # DISK. The PID of the main server process is automatically appended to > # the filename. > # > LockFile /var/lock/httpd.lock > > # > # PidFile: The file in which the server should record its process > # identification number when it starts. > # > PidFile /var/run/httpd.pid > > # > # ScoreBoardFile: File used to store internal server process information. > # Not all architectures require this. But if yours does (you'll know > because > # this file will be created when you run Apache) then you *must* ensure > that > # no two invocations of Apache share the same scoreboard file. > # > ScoreBoardFile /var/run/httpd.scoreboard > > # > # In the standard configuration, the server will process this file, > # srm.conf, and access.conf in that order. The latter two files are > # now distributed empty, as it is recommended that all directives > # be kept in a single file for simplicity. The commented-out values > # below are the built-in defaults. You can have the server ignore > # these files altogether by using "/dev/null" (for Unix) or > # "nul" (for Win32) for the arguments to the directives. > # > #ResourceConfig conf/srm.conf > #AccessConfig conf/access.conf > > # > # Timeout: The number of seconds before receives and sends time out. > # > Timeout 300 > > # > # KeepAlive: Whether or not to allow persistent connections (more than > # one request per connection). Set to "Off" to deactivate. > # > KeepAlive On > > # > # MaxKeepAliveRequests: The maximum number of requests to allow > # during a persistent connection. Set to 0 to allow an unlimited amount. > # We recommend you leave this number high, for maximum performance. > # > MaxKeepAliveRequests 100 > > # > # KeepAliveTimeout: Number of seconds to wait for the next request from the > # same client on the same connection. > # > KeepAliveTimeout 15 > > # > # Server-pool size regulation. Rather than making you guess how many > # server processes you need, Apache dynamically adapts to the load it > # sees --- that is, it tries to maintain enough server processes to > # handle the current load, plus a few spare servers to handle transient > # load spikes (e.g., multiple simultaneous requests from a single > # Netscape browser). > # > # It does this by periodically checking how many servers are waiting > # for a request. If there are fewer than MinSpareServers, it creates > # a new spare. If there are more than MaxSpareServers, some of the > # spares die off. The default values are probably OK for most sites. > # > MinSpareServers 5 > MaxSpareServers 20 > > # > # Number of servers to start initially --- should be a reasonable ballpark > # figure. > # > StartServers 8 > > # > # Limit on total number of servers running, i.e., limit on the number > # of clients who can simultaneously connect --- if this limit is ever > # reached, clients will be LOCKED OUT, so it should NOT BE SET TOO LOW. > # It is intended mainly as a brake to keep a runaway server from taking > # the system with it as it spirals down... > # > MaxClients 150 > > # > # MaxRequestsPerChild: the number of requests each child process is > # allowed to process before the child dies. The child will exit so > # as to avoid problems after prolonged use when Apache (and maybe the > # libraries it uses) leak memory or other resources. On most systems, this > # isn't really needed, but a few (such as Solaris) do have notable leaks > # in the libraries. For these platforms, set to something like 10000 > # or so; a setting of 0 means unlimited. > # > # NOTE: This value does not include keepalive requests after the initial > # request per connection. For example, if a child process handles > # an initial request and 10 subsequent "keptalive" requests, it > # would only count as 1 request towards this limit. > # > MaxRequestsPerChild 100 > > # > # Listen: Allows you to bind Apache to specific IP addresses and/or > # ports, in addition to the default. See also the > # directive. > # > #Listen 3000 > #Listen 12.34.56.78:80 > Listen 80 > > # > # BindAddress: You can support virtual hosts with this option. This > directive > # is used to tell the server which IP address to listen to. It can either > # contain "*", an IP address, or a fully qualified Internet domain name. > # See also the and Listen directives. > # > #BindAddress * > > # > # Dynamic Shared Object (DSO) Support > # > # To be able to use the functionality of a module which was built as a DSO > you > # have to place corresponding `LoadModule' lines at this location so the > # directives contained in it are actually available _before_ they are used. > # Please read the file README.DSO in the Apache 1.3 distribution for more > # details about the DSO mechanism and run `httpd -l' for the list of already > # built-in (statically linked and thus always available) modules in your > httpd > # binary. > # > # Note: The order is which modules are loaded is important. Don't change > # the order below without expert advice. > # > # Example: > # LoadModule foo_module modules/mod_foo.so > > #LoadModule mmap_static_module modules/mod_mmap_static.so > LoadModule vhost_alias_module modules/mod_vhost_alias.so > LoadModule env_module modules/mod_env.so > LoadModule config_log_module modules/mod_log_config.so > LoadModule agent_log_module modules/mod_log_agent.so > LoadModule referer_log_module modules/mod_log_referer.so > #LoadModule mime_magic_module modules/mod_mime_magic.so > LoadModule mime_module modules/mod_mime.so > LoadModule negotiation_module modules/mod_negotiation.so > LoadModule status_module modules/mod_status.so > LoadModule info_module modules/mod_info.so > LoadModule includes_module modules/mod_include.so > LoadModule autoindex_module modules/mod_autoindex.so > LoadModule dir_module modules/mod_dir.so > LoadModule cgi_module modules/mod_cgi.so > LoadModule asis_module modules/mod_asis.so > LoadModule imap_module modules/mod_imap.so > LoadModule action_module modules/mod_actions.so > #LoadModule speling_module modules/mod_speling.so > LoadModule userdir_module modules/mod_userdir.so > LoadModule alias_module modules/mod_alias.so > LoadModule rewrite_module modules/mod_rewrite.so > LoadModule access_module modules/mod_access.so > LoadModule auth_module modules/mod_auth.so > LoadModule anon_auth_module modules/mod_auth_anon.so > LoadModule db_auth_module modules/mod_auth_db.so > #LoadModule dbm_auth_module modules/mod_auth_dbm.so > #LoadModule auth_ldap_module modules/mod_auth_ldap.so > #LoadModule digest_module modules/mod_digest.so > #LoadModule proxy_module modules/libproxy.so > #LoadModule cern_meta_module modules/mod_cern_meta.so > LoadModule expires_module modules/mod_expires.so > LoadModule headers_module modules/mod_headers.so > #LoadModule usertrack_module modules/mod_usertrack.so > #LoadModule example_module modules/mod_example.so > #LoadModule unique_id_module modules/mod_unique_id.so > LoadModule setenvif_module modules/mod_setenvif.so > #LoadModule bandwidth_module modules/mod_bandwidth.so > #LoadModule put_module modules/mod_put.so > #LoadModule throttle_module modules/mod_throttle.so > #LoadModule define_module modules/mod_define.so > > LoadModule perl_module modules/libperl.so > > > LoadModule php_module modules/mod_php.so > > > LoadModule php3_module modules/libphp3.so > > > LoadModule php4_module modules/libphp4.so > > > LoadModule dav_module modules/libdav.so > > > LoadModule roaming_module modules/mod_roaming.so > > > LoadModule ssl_module modules/libssl.so > > > # Reconstruction of the complete module list from all available modules > # (static and shared ones) to achieve correct module execution order. > # [WHENEVER YOU CHANGE THE LOADMODULE SECTION ABOVE UPDATE THIS, TOO] > ClearModuleList > #AddModule mod_mmap_static.c > AddModule mod_vhost_alias.c > AddModule mod_env.c > AddModule mod_log_config.c > AddModule mod_log_agent.c > AddModule mod_log_referer.c > #AddModule mod_mime_magic.c > AddModule mod_mime.c > AddModule mod_negotiation.c > AddModule mod_status.c > AddModule mod_info.c > AddModule mod_include.c > AddModule mod_autoindex.c > AddModule mod_dir.c > AddModule mod_cgi.c > AddModule mod_asis.c > AddModule mod_imap.c > AddModule mod_actions.c > #AddModule mod_speling.c > AddModule mod_userdir.c > AddModule mod_alias.c > AddModule mod_rewrite.c > AddModule mod_access.c > AddModule mod_auth.c > AddModule mod_auth_anon.c > AddModule mod_auth_db.c > #AddModule mod_digest.c > #AddModule mod_proxy.c > #AddModule mod_cern_meta.c > AddModule mod_expires.c > AddModule mod_headers.c > #AddModule mod_usertrack.c > #AddModule mod_example.c > #AddModule mod_unique_id.c > AddModule mod_so.c > AddModule mod_setenvif.c > #AddModule mod_bandwidth.c > #AddModule mod_put.c > > AddModule mod_perl.c > > > AddModule mod_php.c > > > AddModule mod_php3.c > > > AddModule mod_php4.c > > > AddModule mod_dav.c > > > AddModule mod_roaming.c > > > AddModule mod_ssl.c > > > # > # ExtendedStatus: controls whether Apache will generate "full" status > # information (ExtendedStatus On) or just basic information (ExtendedStatus > # Off) when the "server-status" handler is called. The default is Off. > # > #ExtendedStatus On > > ### Section 2: 'Main' server configuration > # > # The directives in this section set up the values used by the 'main' > # server, which responds to any requests that aren't handled by a > # definition. These values also provide defaults for > # any containers you may define later in the file. > # > # All of these directives may appear inside containers, > # in which case these default settings will be overridden for the > # virtual host being defined. > # > > # > # If your ServerType directive (set earlier in the 'Global Environment' > # section) is set to "inetd", the next few directives don't have any > # effect since their settings are defined by the inetd configuration. > # Skip ahead to the ServerAdmin directive. > # > > # > # Port: The port to which the standalone server listens. For > # ports < 1023, you will need httpd to be run as root initially. > # > #Port 80 > > # > # If you wish httpd to run as a different user or group, you must run > # httpd as root initially and it will switch. > # > # User/Group: The name (or #number) of the user/group to run httpd as. > # . On SCO (ODT 3) use "User nouser" and "Group nogroup". > # . On HPUX you may not be able to use shared memory as nobody, and the > # suggested workaround is to create a user www and use that user. > # NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET) > # when the value of (unsigned)Group is above 60000; > # don't use Group nobody on these systems! > # > User apache > Group apache > > # > # ServerAdmin: Your address, where problems with the server should be > # e-mailed. This address appears on some server-generated pages, such > # as error documents. > # > ServerAdmin root@localhost > > # > # ServerName: allows you to set a host name which is sent back to clients > for > # your server if it's different than the one the program would get (i.e., > use > # "www" instead of the host's real name). > # > # Note: You cannot just invent host names and hope they work. The name you > # define here must be a valid DNS name for your host. If you don't > understand > # this, ask your network administrator. > # If your host doesn't have a registered DNS name, enter its IP address > here. > # You will have to access it by its address (e.g., http://123.45.67.89/) > # anyway, and this will make redirections work in a sensible way. > # > #ServerName localhost > > # > # DocumentRoot: The directory out of which you will serve your > # documents. By default, all requests are taken from this directory, but > # symbolic links and aliases may be used to point to other locations. > # > DocumentRoot "/var/www/html" > > # > # Each directory to which Apache has access, can be configured with respect > # to which services and features are allowed and/or disabled in that > # directory (and its subdirectories). > # > # First, we configure the "default" to be a very restrictive set of > # permissions. > # > > Options FollowSymLinks > AllowOverride None > > > # > # Note that from this point forward you must specifically allow > # particular features to be enabled - so if something's not working as > # you might expect, make sure that you have specifically enabled it > # below. > # > > # > # This should be changed to whatever you set DocumentRoot to. > # > > > # > # This may also be "None", "All", or any combination of "Indexes", > # "Includes", "FollowSymLinks", "ExecCGI", or "MultiViews". > # > # Note that "MultiViews" must be named *explicitly* --- "Options All" > # doesn't give it to you. > # > Options Indexes Includes FollowSymLinks > > # > # This controls which options the .htaccess files in directories can > # override. Can also be "All", or any combination of "Options", "FileInfo", > # "AuthConfig", and "Limit" > # > AllowOverride None > > # > # Controls who can get stuff from this server. > # > Order allow,deny > Allow from all > > > # > # UserDir: The name of the directory which is appended onto a user's home > # directory if a ~user request is received. > # > # The path to the end user account 'public_html' directory must be > # accessible to the webserver userid. This usually means that ~userid > # must have permissions of 711, ~userid/public_html must have permissions > # of 755, and documents contained therein must be world-readable. > # Otherwise, the client will only receive a "403 Forbidden" message. > # > # See also: http://httpd.apache.org/docs/misc/FAQ.html#forbidden > # > #UserDir phtml > > # > # Control access to UserDir directories. The following is an example > # for a site where these directories are restricted to read-only. > # > # > # AllowOverride FileInfo AuthConfig Limit > # Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec > # > # Order allow,deny > # Allow from all > # > # > # Order deny,allow > # Deny from all > # > # > > # > # DirectoryIndex: Name of the file or files to use as a pre-written HTML > # directory index. Separate multiple entries with spaces. > # > DirectoryIndex index.html index.htm index.shtml index.php index.php4 > index.php3 index.cgi index.pl > > # > # AccessFileName: The name of the file to look for in each directory > # for access control information. > # > AccessFileName .htaccess > > # > # The following lines prevent .htaccess files from being viewed by > # Web clients. Since .htaccess files often contain authorization > # information, access is disallowed for security reasons. Comment > # these lines out if you want Web visitors to see the contents of > # .htaccess files. If you change the AccessFileName directive above, > # be sure to make the corresponding changes here. > # > # Also, folks tend to use names such as .htpasswd for password > # files, so this will protect those as well. > # > > Order allow,deny > Deny from all > > > # > # CacheNegotiatedDocs: By default, Apache sends "Pragma: no-cache" with each > # document that was negotiated on the basis of content. This asks proxy > # servers not to cache the document. Uncommenting the following line > disables > # this behavior, and proxies will be allowed to cache the documents. > # > #CacheNegotiatedDocs > > # > # UseCanonicalName: (new for 1.3) With this setting turned on, whenever > # Apache needs to construct a self-referencing URL (a URL that refers back > # to the server the response is coming from) it will use ServerName and > # Port to form a "canonical" name. With this setting off, Apache will > # use the hostname:port that the client supplied, when possible. This > # also affects SERVER_NAME and SERVER_PORT in CGI scripts. > # > UseCanonicalName On > > # > # TypesConfig describes where the mime.types file (or equivalent) is > # to be found. > # > TypesConfig /etc/mime.types > > # > # DefaultType is the default MIME type the server will use for a document > # if it cannot otherwise determine one, such as from filename extensions. > # If your server contains mostly text or HTML documents, "text/plain" is > # a good value. If most of your content is binary, such as applications > # or images, you may want to use "application/octet-stream" instead to > # keep browsers from trying to display binary files as though they are > # text. > # > DefaultType text/plain > > # > # The mod_mime_magic module allows the server to use various hints from the > # contents of the file itself to determine its type. The MIMEMagicFile > # directive tells the module where the hint definitions are located. > # mod_mime_magic is not part of the default server (you have to add > # it yourself with a LoadModule [see the DSO paragraph in the 'Global > # Environment' section], or recompile the server and include mod_mime_magic > # as part of the configuration), so it's enclosed in an > container. > # This means that the MIMEMagicFile directive will only be processed if the > # module is part of the server. > # > > MIMEMagicFile conf/magic > > > # > # HostnameLookups: Log the names of clients or just their IP addresses > # e.g., www.apache.org (on) or 204.62.129.132 (off). > # The default is off because it'd be overall better for the net if people > # had to knowingly turn this feature on, since enabling it means that > # each client request will result in AT LEAST one lookup request to the > # nameserver. > # > HostnameLookups Off > > # > # ErrorLog: The location of the error log file. > # If you do not specify an ErrorLog directive within a > # container, error messages relating to that virtual host will be > # logged here. If you *do* define an error logfile for a > # container, that host's errors will be logged there and not here. > # > ErrorLog /var/log/httpd/error_log > > # > # LogLevel: Control the number of messages logged to the error_log. > # Possible values include: debug, info, notice, warn, error, crit, > # alert, emerg. > # > LogLevel warn > > # > # The following directives define some format nicknames for use with > # a CustomLog directive (see below). > # > LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" > combined > LogFormat "%h %l %u %t \"%r\" %>s %b" common > LogFormat "%{Referer}i -> %U" referer > LogFormat "%{User-agent}i" agent > > # > # The location and format of the access logfile (Common Logfile Format). > # If you do not define any access logfiles within a > # container, they will be logged here. Contrariwise, if you *do* > # define per- access logfiles, transactions will be > # logged therein and *not* in this file. > # > CustomLog /var/log/httpd/access_log common > #CustomLog /var/log/httpd/access_log combined > > # > # If you would like to have agent and referer logfiles, uncomment the > # following directives. > # > #CustomLog /var/log/httpd/referer_log referer > #CustomLog /var/log/httpd/agent_log agent > > # > # If you prefer a single logfile with access, agent, and referer information > # (Combined Logfile Format) you can use the following directive. > # > #CustomLog /var/log/httpd/access_log combined > > # > # Optionally add a line containing the server version and virtual host > # name to server-generated pages (error documents, FTP directory listings, > # mod_status and mod_info output etc., but not CGI generated documents). > # Set to "EMail" to also include a mailto: link to the ServerAdmin. > # Set to one of: On | Off | EMail > # > ServerSignature EMail > > # > # Aliases: Add here as many aliases as you need (with no limit). The format > is > # Alias fakename realname > # > # Note that if you include a trailing / on fakename then the server will > # require it to be present in the URL. So "/icons" isn't aliased in this > # example, only "/icons/".. > # > Alias /icons/ "/var/www/icons/" > > > Options Indexes MultiViews > AllowOverride None > Order allow,deny > Allow from all > > > # > # ScriptAlias: This controls which directories contain server scripts. > # ScriptAliases are essentially the same as Aliases, except that > # documents in the realname directory are treated as applications and > # run by the server when requested rather than as documents sent to the > client. > # The same rules about trailing "/" apply to ScriptAlias directives as to > # Alias. > # > #ScriptAlias /cgi-bin/ "/var/www/cgi-bin/" > > # > # "/var/www/cgi-bin" should be changed to whatever your ScriptAliased > # CGI directory exists, if you have that configured. > # > > AllowOverride None > Options ExecCGI > Order allow,deny > Allow from all > > > # > # Redirect allows you to tell clients about documents which used to exist in > # your server's namespace, but do not anymore. This allows you to tell the > # clients where to look for the relocated document. > # Format: Redirect old-URI new-URL > # > > # > # Directives controlling the display of server-generated directory listings. > # > > # > # FancyIndexing: whether you want fancy directory indexing or standard > # > IndexOptions FancyIndexing > > # > # AddIcon* directives tell the server which icon to show for different > # files or filename extensions. These are only displayed for > # FancyIndexed directories. > # > AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip > > AddIconByType (TXT,/icons/text.gif) text/* > AddIconByType (IMG,/icons/image2.gif) image/* > AddIconByType (SND,/icons/sound2.gif) audio/* > AddIconByType (VID,/icons/movie.gif) video/* > > AddIcon /icons/binary.gif .bin .exe > AddIcon /icons/binhex.gif .hqx > AddIcon /icons/tar.gif .tar > AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv > AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip > AddIcon /icons/a.gif .ps .ai .eps > AddIcon /icons/layout.gif .html .shtml .htm .pdf > AddIcon /icons/text.gif .txt > AddIcon /icons/c.gif .c > AddIcon /icons/p.gif .pl .py > AddIcon /icons/f.gif .for > AddIcon /icons/dvi.gif .dvi > AddIcon /icons/uuencoded.gif .uu > AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl > AddIcon /icons/tex.gif .tex > AddIcon /icons/bomb.gif core > > AddIcon /icons/back.gif .. > AddIcon /icons/hand.right.gif README > AddIcon /icons/folder.gif ^^DIRECTORY^^ > AddIcon /icons/blank.gif ^^BLANKICON^^ > > # > # DefaultIcon: which icon to show for files which do not have an icon > # explicitly set. > # > DefaultIcon /icons/unknown.gif > > # > # AddDescription: allows you to place a short description after a file in > # server-generated indexes. These are only displayed for FancyIndexed > # directories. > # Format: AddDescription "description" filename > # > #AddDescription "GZIP compressed document" .gz > #AddDescription "tar archive" .tar > #AddDescription "GZIP compressed tar archive" .tgz > > # > # ReadmeName: the name of the README file the server will look for by > # default, and append to directory listings. > # > # HeaderName: the name of a file which should be prepended to > # directory indexes. > # > # The server will first look for name.html and include it if found. > # If name.html doesn't exist, the server will then look for name.txt > # and include it as plaintext if found. > # > ReadmeName README.html > HeaderName HEADER.html > > # > # IndexIgnore: a set of filenames which directory indexing should ignore > # and not include in the listing. Shell-style wildcarding is permitted. > # > IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t > > # > # AddEncoding: allows you to have certain browsers (Mosaic/X 2.1+) > uncompress > # information on the fly. Note: Not all browsers support this. > # Despite the name similarity, the following Add* directives have nothing > # to do with the FancyIndexing customization directives above. > # > AddEncoding x-compress Z > AddEncoding x-gzip gz tgz > > # > # AddLanguage: allows you to specify the language of a document. You can > # then use content negotiation to give a browser a file in a language > # it can understand. Note that the suffix does not have to be the same > # as the language keyword --- those with documents in Polish (whose > # net-standard language code is pl) may wish to use "AddLanguage pl .po" > # to avoid the ambiguity with the common suffix for perl scripts. > # > AddLanguage en .en > AddLanguage fr .fr > AddLanguage de .de > AddLanguage da .da > AddLanguage el .el > AddLanguage it .it > > # > # LanguagePriority: allows you to give precedence to some languages > # in case of a tie during content negotiation. > # Just list the languages in decreasing order of preference. > # > LanguagePriority en fr de > > # > # AddType: allows you to tweak mime.types without actually editing it, or to > # make certain files to be certain types. > # > # The following is for PHP4 (conficts with PHP/FI, below): > > AddType application/x-httpd-php .php4 .php3 .phtml .php > AddType application/x-httpd-php-source .phps > > > # The following is for PHP3: > > AddType application/x-httpd-php3 .php3 > AddType application/x-httpd-php3-source .phps > > > # The following is for PHP/FI (PHP2): > > AddType application/x-httpd-php .phtml > > > AddType application/x-tar .tgz > > # > # AddHandler: allows you to map certain file extensions to "handlers", > # actions unrelated to filetype. These can be either built into the server > # or added with the Action command (see below) > # > # If you want to use server side includes, or CGI outside > # ScriptAliased directories, uncomment the following lines. > # > # To use CGI scripts: > # > AddHandler cgi-script .cgi .pl > > # > # To use server-parsed HTML files > # > AddType text/html .shtml > AddHandler server-parsed .shtml > > # > # Uncomment the following line to enable Apache's send-asis HTTP file > # feature > # > #AddHandler send-as-is asis > > # > # If you wish to use server-parsed imagemap files, use > # > AddHandler imap-file map > > # > # To enable type maps, you might want to use > # > #AddHandler type-map var > > # > # Action: lets you define media types that will execute a script whenever > # a matching file is called. This eliminates the need for repeated URL > # pathnames for oft-used CGI file processors. > # Format: Action media/type /cgi-script/location > # Format: Action handler-name /cgi-script/location > # > > # > # MetaDir: specifies the name of the directory in which Apache can find > # meta information files. These files contain additional HTTP headers > # to include when sending the document > # > #MetaDir .web > > # > # MetaSuffix: specifies the file name suffix for the file containing the > # meta information. > # > #MetaSuffix .meta > > # > # Customizable error response (Apache style) > # these come in three flavors > # > # 1) plain text > #ErrorDocument 500 "The server made a boo boo. > # n.b. the (") marks it as text, it does not get output > # > # 2) local redirects > #ErrorDocument 404 /missing.html > # to redirect to local URL /missing.html > #ErrorDocument 404 /cgi-bin/missing_handler.pl > # N.B.: You can redirect to a script or a document using > server-side-includes. > # > # 3) external redirects > #ErrorDocument 402 http://some.other_server.com/subscription_info.html > # N.B.: Many of the environment variables associated with the original > # request will *not* be available to such a script. > > # > # The following directives modify normal HTTP response behavior. > # The first directive disables keepalive for Netscape 2.x and browsers that > # spoof it. There are known problems with these browser implementations. > # The second directive is for Microsoft Internet Explorer 4.0b2 > # which has a broken HTTP/1.1 implementation and does not properly > # support keepalive when it is used on 301 or 302 (redirect) responses. > # > BrowserMatch "Mozilla/2" nokeepalive > BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0 > > # > # The following directive disables HTTP/1.1 responses to browsers which > # are in violation of the HTTP/1.0 spec by not being able to grok a > # basic 1.1 response. > # > BrowserMatch "RealPlayer 4\.0" force-response-1.0 > BrowserMatch "Java/1\.0" force-response-1.0 > BrowserMatch "JDK/1\.0" force-response-1.0 > > # If the perl module is installed, this will be enabled. > > Alias /perl/ /var/www/perl/ > > SetHandler perl-script > PerlHandler Apache::Registry > Options +ExecCGI > > > > # > # Allow http put (such as Netscape Gold's publish feature) > # Use htpasswd to generate /etc/httpd/conf/passwd. > # You must unremark these two lines at the top of this file as well: > #LoadModule put_module modules/mod_put.so > #AddModule mod_put.c > # > #Alias /upload /tmp > # > # EnablePut On > # AuthType Basic > # AuthName Temporary > # AuthUserFile /etc/httpd/conf/passwd > # EnableDelete Off > # umask 007 > # > # require valid-user > # > # > > # > # Allow server status reports, with the URL of > http://servername/server-status > # Change the ".your_domain.com" to match your domain to enable. > # > # > # SetHandler server-status > # Order deny,allow > # Deny from all > # Allow from .your_domain.com > # > > # > # Allow remote server configuration reports, with the URL of > # http://servername/server-info (requires that mod_info.c be loaded). > # Change the ".your_domain.com" to match your domain to enable. > # > # > # SetHandler server-info > # Order deny,allow > # Deny from all > # Allow from .your_domain.com > # > > # Allow access to local system documentation from localhost > Alias /doc/ /usr/share/doc/ > > order deny,allow > deny from all > allow from localhost .localdomain > Options Indexes FollowSymLinks > > > # > # There have been reports of people trying to abuse an old bug from pre-1.1 > # days. This bug involved a CGI script distributed as a part of Apache. > # By uncommenting these lines you can redirect these attacks to a logging > # script on phf.apache.org. Or, you can record them yourself, using the > script > # support/phf_abuse_log.cgi. > # > # > # Deny from all > # ErrorDocument 403 http://phf.apache.org/phf_abuse_log.cgi > # > > # > # Proxy Server directives. Uncomment the following lines to > # enable the proxy server: > # > # > #ProxyRequests On > # > # > # Order deny,allow > # Deny from all > # Allow from .your_domain.com > # > > # > # Enable/disable the handling of HTTP/1.1 "Via:" headers. > # ("Full" adds the server version; "Block" removes all outgoing Via: > headers) > # Set to one of: Off | On | Full | Block > # > #ProxyVia On > > # > # To enable the cache as well, edit and uncomment the following lines: > # (no cacheing without CacheRoot) > # > #CacheRoot "/var/cache/httpd" > #CacheSize 5 > #CacheGcInterval 4 > #CacheMaxExpire 24 > #CacheLastModifiedFactor 0.1 > #CacheDefaultExpire 1 > #NoCache a_domain.com another_domain.edu joes.garage_sale.com > > # > # End of proxy directives. > > ### Section 3: Virtual Hosts > # > # VirtualHost: If you want to maintain multiple domains/hostnames on your > # machine you can setup VirtualHost containers for them. > # Please see the documentation at > # for further details before you try to setup virtual hosts. > # You may use the command line option '-S' to verify your virtual host > # configuration. > > # > # If you want to use name-based virtual hosts you need to define at > # least one IP address (and port number) for them. > # > #NameVirtualHost 12.34.56.78:80 > #NameVirtualHost 12.34.56.78 > > # > # VirtualHost example: > # Almost any Apache directive may go into a VirtualHost container. > # > # > # ServerAdmin webmaster@host.some_domain.com > # DocumentRoot /www/docs/host.some_domain.com > # ServerName host.some_domain.com > # ErrorLog logs/host.some_domain.com-error_log > # CustomLog logs/host.some_domain.com-access_log common > # > > # > # > > > ## > ## SSL Virtual Host Context > ## > > # Apache will only listen on port 80 by default. Defining the virtual > server > # (below) won't make it automatically listen on the virtual server's port. > Listen 443 > > # SSL Session Cache: > # The cache speeds up processing of multiple parallel requests from > # the same client. > SSLSessionCache shm:/var/cache/ssl_gcache_data(524288) > > > > # General setup for the virtual host > DocumentRoot "/var/www/html" > > # SSL Engine Switch: > # Enable/Disable SSL for this virtual host. > SSLEngine on > > # SSL Cipher Suite: > # List the ciphers that the client is permitted to negotiate. > # See the mod_ssl documentation for a complete list. > #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL > > # Server Certificate: > # Point SSLCertificateFile at a PEM encoded certificate. If > # the certificate is encrypted, then you will be prompted for a > # pass phrase. Note that a kill -HUP will prompt again. A test > # certificate can be generated with `make certificate' under > # built time. Keep in mind that if you've both a RSA and a DSA > # certificate you can configure both in parallel (to also allow > # the use of DSA ciphers, etc.) > SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt > #SSLCertificateFile /etc/httpd/conf/ssl.crt/server-dsa.crt > > # Server Private Key: > # If the key is not combined with the certificate, use this > # directive to point at the key file. Keep in mind that if > # you've both a RSA and a DSA private key you can configure > # both in parallel (to also allow the use of DSA ciphers, etc.) > SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key > #SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server-dsa.key > > # Server Certificate Chain: > # Point SSLCertificateChainFile at a file containing the > # concatenation of PEM encoded CA certificates which form the > # certificate chain for the server certificate. Alternatively > # the referenced file can be the same as SSLCertificateFile > # when the CA certificates are directly appended to the server > # certificate for convinience. > #SSLCertificateChainFile /etc/httpd/conf/ssl.crt/ca.crt > > # Certificate Authority (CA): > # Set the CA certificate verification path where to find CA > # certificates for client authentication or alternatively one > # huge file containing all of them (file must be PEM encoded) > # Note: Inside SSLCACertificatePath you need hash symlinks > # to point to the certificate files. Use the provided > # Makefile to update the hash symlinks after changes. > #SSLCACertificatePath /etc/httpd/conf/ssl.crt > #SSLCACertificateFile /etc/httpd/conf/ssl.crt/ca-bundle.crt > > # Certificate Revocation Lists (CRL): > # Set the CA revocation path where to find CA CRLs for client > # authentication or alternatively one huge file containing all > # of them (file must be PEM encoded) > # Note: Inside SSLCARevocationPath you need hash symlinks > # to point to the certificate files. Use the provided > # Makefile to update the hash symlinks after changes. > #SSLCARevocationPath /etc/httpd/conf/ssl.crl > #SSLCARevocationFile /etc/httpd/conf/ssl.crl/ca-bundle.crl > # Client Authentication (Type): > # Client certificate verification type and depth. Types are > # none, optional, require and optional_no_ca. Depth is a > # number which specifies how deeply to verify the certificate > # issuer chain before deciding the certificate is not valid. > #SSLVerifyClient require > #SSLVerifyDepth 10 > > # Access Control: > # With SSLRequire you can do per-directory access control based > # on arbitrary complex boolean expressions containing server > # variable checks and other lookup directives. The syntax is a > # mixture between C and Perl. See the mod_ssl documentation > # for more details. > # > #SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)-/ \ > # and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \ > # and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \ > # and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \ > # and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \ > # or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/ > # > # SSL Engine Options: > # Set various options for the SSL engine. > # o FakeBasicAuth: > # Translate the client X.509 into a Basic Authorisation. This means > that > # the standard Auth/DBMAuth methods can be used for access control. The > # user name is the `one line' version of the client's X.509 certificate. > # Note that no password is obtained from the user. Every entry in the > user > # file needs this password: `xxj31ZMTZzkVA'. > # o ExportCertData: > # This exports two additional environment variables: SSL_CLIENT_CERT and > # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the > # server (always existing) and the client (only existing when client > # authentication is used). This can be used to import the certificates > # into CGI scripts. > # o StdEnvVars: > # This exports the standard SSL/TLS related `SSL_*' environment > variables. > # Per default this exportation is switched off for performance reasons, > # because the extraction step is an expensive operation and is usually > # useless for serving static content. So one usually enables the > # exportation for CGI and SSI requests only. > # o CompatEnvVars: > # This exports obsolete environment variables for backward compatibility > # to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. Use > this > # to provide compatibility to existing CGI scripts. > # o StrictRequire: > # This denies access when "SSLRequireSSL" or "SSLRequire" applied even > # under a "Satisfy any" situation, i.e. when it applies access is denied > # and no other module can change it. > # o OptRenegotiate: > # This enables optimized SSL connection renegotiation handling when SSL > # directives are used in per-directory context. > #SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire > > SSLOptions +StdEnvVars > > > SSLOptions +StdEnvVars > > > # Notice: Most problems of broken clients are also related to the HTTP > # keep-alive facility, so you usually additionally want to disable > # keep-alive for those clients, too. Use variable "nokeepalive" for this. > SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown > > # Per-Server Logging: > # The home of a custom SSL log file. Use this when you want a > # compact non-error SSL logfile on a virtual host basis. > CustomLog /var/log/httpd/ssl_request_log \ > "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" > > > > > > # My turn ... > > > Options Indexes Includes FollowSymLinks > Order allow,deny > Allow from all > > > > Options All ExecCGI > Order allow,deny > Allow from all > > > > Options ExecCGI > > > NameVirtualHost 194.102.241.1 > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/fcc/html > ScriptAlias /cgi-bin/ "/var/www/fcc/cgi-bin/" > ServerName www.fcc.ro > UserDir html > ErrorLog logs/fcc.error_log > CustomLog logs/fcc.access_log common > > > > > ServerAdmin codrut@fcc.ro > DocumentRoot /var/www/codrut/html > ScriptAlias /cgi-bin/ "/var/www/codrut/cgi-bin/" > ServerName www.codrut.fcc.ro > ErrorLog logs/codrut.error_log > CustomLog logs/codrut.access_log common > > > > ServerAdmin rogoblen@fcc.ro > DocumentRoot /var/www/rogoblen/html > ScriptAlias /cgi-bin/ "/var/www/rogoblen/cgi-bin/" > ServerName rogoblen.fcc.ro > ErrorLog logs/rogoblen.error_log > CustomLog logs/rogoblen.access_log common > > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/stratus/html > ScriptAlias /cgi-bin/ "/var/www/stratus/cgi-bin/" > ServerName www.stratus.ro > ErrorLog logs/stratus.error_log > CustomLog logs/stratus.access_log common > > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/trafic/ > Alias /netsaint/ "/var/www/trafic/netsaint/" > ScriptAlias /cgi-bin/netsaint/ "/usr/netsaint/sbin/" > ErrorLog logs/trafic.error_log > ServerName trafic.fcc.ro > > > Options All > AllowOverride None > AuthUserFile /etc/httpd/pas/trafic.pwd > AuthGroupFile /dev/null > AuthName trafic > AuthType Basic > Options All > > require valid-user > > > > > AllowOverride AuthConfig > order allow,deny > allow from all > Options ExecCGI > > > > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/rosf/html > ScriptAlias /cgi-bin/ "/var/www/rosf/cgi-bin/" > ServerName www.rosf.org > ErrorLog logs/rosf.error_log > CustomLog logs/rosf.access_log common > > > > ServerAdmin teddy@fcc.ro > DocumentRoot /var/www/teddy/html > ScriptAlias /cgi-bin/ "/var/www/teddy/cgi-bin/" > ServerName teddy.fcc.ro > ErrorLog logs/teddy.error_log > CustomLog logs/teddy.access_log common > > > > Options FollowSymLinks > AllowOverride All > > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/sahin/html > ScriptAlias /cgi-bin/ "/var/www/sahin/cgi-bin/" > ServerName www.sahin.ro > ErrorLog logs/sahin.error_log > CustomLog logs/sahin.access_log common > > > > ServerAdmin rot@fcc.ro > DocumentRoot /var/www/migtour2000/html > ScriptAlias /cgi-bin/ "/var/www/migtour2000/cgi-bin/" > ServerName www.migtour2000.ro > ErrorLog logs/migtour2000.error_log > CustomLog logs/migtour2000.access_log common > > > Teddy, > orasnita@home.ro > > ----- Original Message ----- > From: "Joshua Slive" > To: > Sent: Sunday, May 19, 2002 5:12 AM > Subject: Re: Where to put > > On Sun, 19 May 2002, Octavian Rasnita wrote: > > > Thank you. > > Then why I don't get that configuration even though I use that virtual > host? > > I can't use the .htaccess files. > > What other problem could I have? > > Where exactly is the .htaccess file? What exactly does it say? What > exactly does your httpd.conf say? Are there any symlinks or other weird > stuff? > > Joshua. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org > For additional commands, e-mail: users-help@httpd.apache.org > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org > For additional commands, e-mail: users-help@httpd.apache.org -- Ciao ?:-) Shirlyn, the WebPrincess --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org