salt
/
apache-formula
forked from ExternalMirrors/apache-formula
Watch 1
Star 0
Fork 0
Code Releases 0 Activity
Saltstack Official Apache Formula
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
429 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
apache-formula/apache/files/Suse/apache-2.4.config.jinja

239 lines
9.2KB
Raw Permalink Blame History 

  1. #

  2. # /etc/apache2/httpd.conf 

  3. #

  4. # This is the main Apache server configuration file.  It contains the

  5. # configuration directives that give the server its instructions.

  6. # See <URL:http://httpd.apache.org/docs/2.4/> for detailed information about

  7. # the directives.

  8. 

  9. # Based upon the default apache configuration file that ships with apache,

  10. # which is based upon the NCSA server configuration files originally by Rob

  11. # McCool. This file was knocked together by Peter Poeml <poeml+apache@suse.de>.

  12. 

  13. # If possible, avoid changes to this file. It does mainly contain Include

  14. # statements and global settings that can/should be overridden in the

  15. # configuration of your virtual hosts.

  16. 

  17. # Quickstart guide:

  18. # http://en.opensuse.org/SDB:Apache_installation

  19. 

  20. 

  21. # Overview of include files, chronologically:

  22. #

  23. # httpd.conf

  24. #  | 

  25. #  |-- uid.conf  . . . . . . . . . . . . . .  UserID/GroupID to run under

  26. #  |-- server-tuning.conf  . . . . . . . . .  sizing of the server (how many processes to start, ...)

  27. #  |-- loadmodule.conf . . . . . . . . . . .  [*] load these modules

  28. #  |-- listen.conf . . . . . . . . . . . . .  IP adresses / ports to listen on

  29. #  |-- mod_log_config.conf . . . . . . . . .  define logging formats

  30. #  |-- global.conf . . . . . . . . . . . . .  [*] server-wide general settings

  31. #  |-- mod_status.conf . . . . . . . . . . .  restrict access to mod_status (server monitoring)

  32. #  |-- mod_info.conf . . . . . . . . . . . .  restrict access to mod_info

  33. #  |-- mod_reqtimeout.conf . . . . . . . . .  set timeout and minimum data rate for receiving requests

  34. #  |-- mod_cgid-timeout.conf . . . . . . . .  set CGIDScriptTimeout if mod_cgid is loaded/active

  35. #  |-- mod_usertrack.conf  . . . . . . . . .  defaults for cookie-based user tracking

  36. #  |-- mod_autoindex-defaults.conf . . . . .  defaults for displaying of server-generated directory listings

  37. #  |-- mod_mime-defaults.conf  . . . . . . .  defaults for mod_mime configuration

  38. #  |-- errors.conf . . . . . . . . . . . . .  customize error responses

  39. #  |-- ssl-global.conf . . . . . . . . . . .  SSL conf that applies to default server _and all_ virtual hosts

  40. #  |-- protocols.conf  . . . . . . . . . . .  Protocol settings that applies to default server _and all_ virtual hosts

  41. #  |

  42. #  |-- default-server.conf . . . . . . . . .  set up the default server that replies to non-virtual-host requests

  43. #  |    |--mod_userdir.conf  . . . . . . . .  enable UserDir (if mod_userdir is loaded)

  44. #  |    `--conf.d/apache2-manual?conf  . . .  add the docs ('?' = if installed)

  45. #  |

  46. #  `-- vhosts.d/ . . . . . . . . . . . . . .  for each virtual host, place one file here

  47. #       `-- *.conf . . . . . . . . . . . . .     (*.conf is automatically included)

  48. #

  49. #

  50. # Files marked [*] are NOT read when server is started via systemd service. When server

  51. # is started via service, defaults from /etc/sysconfig/apache2 are taken into account.

  52. #

  53. 

  54. 

  55. 

  56. #  Filesystem layout:

  57. #

  58. # /etc/apache2/

  59. #  |-- charset.conv  . . . . . . . . . . . .  for mod_auth_ldap

  60. #  |-- conf.d/

  61. #  |   |-- apache2-manual.conf . . . . . . .  conf that comes with apache2-doc

  62. #  |   |-- mod_php4.conf . . . . . . . . . .  (example) conf that comes with apache2-mod_php4

  63. #  |   `-- ... . . . . . . . . . . . . . . .  other configuration added by packages

  64. #  |-- default-server.conf

  65. #  |-- errors.conf

  66. #  |-- httpd.conf  . . . . . . . . . . . . .  top level configuration file

  67. #  |-- listen.conf

  68. #  |-- magic

  69. #  |-- mime.types -> ../mime.types

  70. #  |-- mod_autoindex-defaults.conf

  71. #  |-- mod_info.conf

  72. #  |-- mod_log_config.conf

  73. #  |-- mod_mime-defaults.conf

  74. #  |-- mod_perl-startup.pl

  75. #  |-- mod_status.conf

  76. #  |-- mod_userdir.conf

  77. #  |-- mod_usertrack.conf

  78. #  |-- server-tuning.conf

  79. #  |-- ssl-global.conf

  80. #  |-- protocols.conf

  81. #  |-- ssl.crl/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificate Revocation Lists (CRL)

  82. #  |-- ssl.crt/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificates

  83. #  |-- ssl.csr/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificate Signing Requests

  84. #  |-- ssl.key/  . . . . . . . . . . . . . .  PEM-encoded RSA Private Keys

  85. #  |-- ssl.prm/  . . . . . . . . . . . . . .  public DSA Parameter Files

  86. #  |-- global.conf

  87. #  |-- loadmodule.conf

  88. #  |-- uid.conf

  89. #  `-- vhosts.d/ . . . . . . . . . . . . . .  put your virtual host configuration (*.conf) here

  90. #      |-- vhost-ssl.template

  91. #      `-- vhost.template

  92. 

  93. 

  94. 

  95. ### Global Environment ######################################################

  96. #

  97. # The directives in this section affect the overall operation of Apache,

  98. # such as the number of concurrent requests.

  99. 

  100. # run under this user/group id

  101. Include /etc/apache2/uid.conf

  102. 

  103. # - how many server processes to start (server pool regulation)

  104. # - usage of KeepAlive

  105. Include /etc/apache2/server-tuning.conf

  106. 

  107. # ErrorLog: The location of the error log file.

  108. # If you do not specify an ErrorLog directive within a <VirtualHost>

  109. # container, error messages relating to that virtual host will be

  110. # logged here.  If you *do* define an error logfile for a <VirtualHost>

  111. # container, that host's errors will be logged there and not here.

  112. ErrorLog /var/log/apache2/error_log

  113. 

  114. # generated from default value of APACHE_MODULES in /etc/sysconfig/apache2

  115. <IfDefine !SYSCONFIG>

  116.   Include /etc/apache2/loadmodule.conf

  117. </IfDefine>

  118. 

  119. # IP addresses / ports to listen on

  120. Include /etc/apache2/listen.conf

  121. 

  122. # predefined logging formats

  123. Include /etc/apache2/mod_log_config.conf

  124. 

  125. # generated from default values of global settings in /etc/sysconfig/apache2

  126. <IfDefine !SYSCONFIG>

  127.   Include /etc/apache2/global.conf

  128. </IfDefine>

  129. 

  130. # optional mod_status, mod_info

  131. Include /etc/apache2/mod_status.conf

  132. Include /etc/apache2/mod_info.conf

  133. 

  134. # mod_reqtimeout protects the server from the so-called "slowloris"

  135. # attack: The server is not swamped with requests in fast succession,

  136. # but with slowly transmitted request headers and body, thereby filling up

  137. # the request slots until the server runs out of them.

  138. # mod_reqtimeout is lightweight and should deliver good results

  139. # with the configured default values. You shouldn't notice it at all.

  140. Include /etc/apache2/mod_reqtimeout.conf

  141. 

  142. # Fix for CVE-2014-0231 introduces new configuration parameter 

  143. # CGIDScriptTimeout. This directive and its effect prevent request 

  144. # workers to be eaten until starvation if cgi programs do not send 

  145. # output back to the server within the timout set by CGIDScriptTimeout.

  146. Include /etc/apache2/mod_cgid-timeout.conf

  147. 

  148. # optional cookie-based user tracking

  149. # read the documentation before using it!!

  150. Include /etc/apache2/mod_usertrack.conf

  151. 

  152. # configuration of server-generated directory listings

  153. Include /etc/apache2/mod_autoindex-defaults.conf

  154. 

  155. # associate MIME types with filename extensions

  156. TypesConfig /etc/apache2/mime.types

  157. Include /etc/apache2/mod_mime-defaults.conf

  158. 

  159. # set up (customizable) error responses

  160. Include /etc/apache2/errors.conf

  161. 

  162. # global (server-wide) SSL configuration, that is not specific to 

  163. # any virtual host

  164. Include /etc/apache2/ssl-global.conf

  165. 

  166. {% if salt['pillar.get']('apache:mod_ssl:manage_tls_defaults', False) -%}

  167. Include /etc/apache24/conf.d/tls-defaults.conf

  168. {%- %}

  169. 

  170. # global (server-wide) protocol configuration, that is not specific

  171. # to any virtual host

  172. Include /etc/apache2/protocols.conf

  173. 

  174. # forbid access to the entire filesystem by default

  175. <Directory />

  176.     Options None

  177.     AllowOverride None

  178.     <IfModule !mod_access_compat.c>

  179.         Require all denied

  180.     </IfModule>

  181.     <IfModule mod_access_compat.c>

  182.         Order deny,allow

  183.         Deny from all

  184.     </IfModule>

  185. </Directory>

  186. 

  187. # use .htaccess files for overriding,

  188. AccessFileName .htaccess

  189. # and never show them

  190. <Files ~ "^\.ht">

  191.     <IfModule !mod_access_compat.c>

  192.         Require all denied

  193.     </IfModule>

  194.     <IfModule mod_access_compat.c>

  195.         Order allow,deny

  196.         Deny from all

  197.     </IfModule>

  198. </Files>

  199. 

  200. # List of resources to look for when the client requests a directory

  201. DirectoryIndex index.html index.html.var

  202. 

  203. ### 'Main' server configuration #############################################

  204. #

  205. # The directives in this section set up the values used by the 'main'

  206. # server, which responds to any requests that aren't handled by a

  207. # <VirtualHost> definition.  These values also provide defaults for

  208. # any <VirtualHost> containers you may define later in the file.

  209. #

  210. # All of these directives may appear inside <VirtualHost> containers,

  211. # in which case these default settings will be overridden for the

  212. # virtual host being defined.

  213. #

  214. Include /etc/apache2/default-server.conf

  215. 

  216. 

  217. ### Virtual server configuration ############################################

  218. #

  219. # VirtualHost: If you want to maintain multiple domains/hostnames on your

  220. # machine you can setup VirtualHost containers for them. Most configurations

  221. # use only name-based virtual hosts so the server doesn't need to worry about

  222. # IP addresses. This is indicated by the asterisks in the directives below.

  223. #

  224. # Please see the documentation at

  225. # <URL:http://httpd.apache.org/docs/2.4/vhosts/>

  226. # for further details before you try to setup virtual hosts.

  227. #

  228. # You may use the command line option '-S' to verify your virtual host

  229. # configuration.

  230. #

  231. IncludeOptional /etc/apache2/vhosts.d/*.conf

  232. 

  233. 

  234. # Note: instead of adding your own configuration here, consider 

  235. #       adding it in your own file (/etc/apache2/httpd.conf.local)

  236. #       putting its name into APACHE_CONF_INCLUDE_FILES in 

  237. #       /etc/sysconfig/apache2 -- this will make system updates 

  238. #       easier :)