####################################################### ### Calomel.org server httpd.conf BEGIN ####################################################### # # ServerRoot: The top of the directory tree under which the server's # configuration, error, and log files are kept. # # Do not add a slash at the end of the directory path. If you point # ServerRoot at a non-local disk, be sure to point the LockFile directive # at a local disk. If you wish to share the same ServerRoot for multiple # httpd daemons, you will need to change at least LockFile and PidFile. # ServerRoot "/usr/local/apache2" # # Listen: Allows you to bind Apache to specific IP addresses and/or # ports, instead of the default. See also the # directive. # # Change this to Listen on specific IP addresses as shown below to # prevent Apache from glomming onto all bound IP addresses. # Listen 80 # # Dynamic Shared Object (DSO) Support # # To be able to use the functionality of a module which was built as a DSO you # have to place corresponding `LoadModule' lines at this location so the # directives contained in it are actually available _before_ they are used. # Statically compiled modules (those listed by `httpd -l') do not need # to be loaded here. # LoadFile /usr/lib/libxml2.so LoadModule evasive20_module modules/mod_evasive20.so LoadModule security2_module modules/mod_security2.so # # # If you wish httpd to run as a different user or group, you must run # httpd as root initially and it will switch. # # User/Group: The name (or #number) of the user/group to run httpd as. # It is usually good practice to create a dedicated user and group for # running httpd, as with most system services. # User web_daemon Group web_daemon # 'Main' server configuration # # The directives in this section set up the values used by the 'main' # server, which responds to any requests that aren't handled by a # definition. These values also provide defaults for # any containers you may define later in the file. # # All of these directives may appear inside containers, # in which case these default settings will be overridden for the # virtual host being defined. # # ServerAdmin: Your address, where problems with the server should be # e-mailed. This address appears on some server-generated pages, such # as error documents. e.g. admin@your-domain.com # ServerAdmin webmaster@your_hostname.com # # ServerName gives the name and port that the server uses to identify itself. # This can often be determined automatically, but we recommend you specify # it explicitly to prevent problems during startup. # # If your host doesn't have a registered DNS name, enter its IP address here. # ServerName your_hostname.com:80 # Timeout: The number of seconds before the daemon receives a request, does not # get an answer and sends time out. Timeout 180 ################################################################## # # Client to server request limitations LimitRequestBody 102400 LimitRequestFields 40 LimitRequestFieldsize 1000 LimitRequestLine 1000 ################################################################## # # Mod_Rewrite limits on acceptable characters RewriteEngine on RewriteLog /usr/local/apache2/logs/mod_rewrite.log RewriteLogLevel 0 RewriteRule [^a-zA-Z0-9|\.|/|_|-] - [F] ################################################################## # # Mod_evasive to avoid DDOS DOSWhitelist 10.10.10.2 DOSLogDir "/usr/local/apache2/logs/mod_evasive.log" DOSHashTableSize 314739 DOSPageCount 2 DOSPageInterval 1 DOSSiteCount 30 DOSSiteInterval 1 DOSBlockingPeriod 30 ################################################################## # # Mod_Security settings Include conf/modsecurity/*.conf SecAuditLog /usr/local/apache2/logs/modsec_security.log SecServerSignature your_hostname.com ################################################################## # # Mod_Expires to tell clients to cache files ExpiresActive On ExpiresDefault "access plus 2 hours" ################################################################## # # EnableMMAP and EnableSendfile: On systems that support it, # memory-mapping or the sendfile syscall is used to deliver # files. This usually improves server performance, but must # be turned off when serving from networked-mounted # filesystems or if support for these functions is otherwise # broken on your system. # EnableMMAP on EnableSendfile on # # ErrorLog: The location of the error log file. # If you do not specify an ErrorLog directive within a # container, error messages relating to that virtual host will be # logged here. If you *do* define an error logfile for a # container, that host's errors will be logged there and not here. # ErrorLog logs/error_log # # LogLevel: Control the number of messages logged to the error_log. # Possible values include: debug, info, notice, warn, error, crit, # alert, emerg. # #LogLevel debug LogLevel notice # # The following directives define some format nicknames for use with # a CustomLog directive (see below). # LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined LogFormat "%h %l %u %t \"%r\" %>s %b" common # You need to enable mod_logio.c to use %I and %O LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio # # The location and format of the access logfile (Common Logfile Format). # If you do not define any access logfiles within a # container, they will be logged here. Contrariwise, if you *do* # define per- access logfiles, transactions will be # logged therein and *not* in this file. # CustomLog logs/access_log combined # # If you prefer a logfile with access, agent, and referer information # (Combined Logfile Format) you can use the following directive. # #CustomLog logs/access_log combined # # Customizable error responses come in three flavors: # 1) plain text 2) local redirects 3) external redirects # NOTE: using streight text is small and efficient. # ErrorDocument 505 "your_custom_error_message_here" ErrorDocument 504 "your_custom_error_message_here" ErrorDocument 503 "your_custom_error_message_here" ErrorDocument 502 "your_custom_error_message_here" ErrorDocument 501 "your_custom_error_message_here" ErrorDocument 500 "your_custom_error_message_here" ErrorDocument 417 "your_custom_error_message_here" ErrorDocument 416 "your_custom_error_message_here" ErrorDocument 415 "your_custom_error_message_here" ErrorDocument 414 "your_custom_error_message_here" ErrorDocument 413 "your_custom_error_message_here" ErrorDocument 412 "your_custom_error_message_here" ErrorDocument 411 "your_custom_error_message_here" ErrorDocument 410 "your_custom_error_message_here" ErrorDocument 409 "your_custom_error_message_here" ErrorDocument 408 "your_custom_error_message_here" ErrorDocument 407 "your_custom_error_message_here" ErrorDocument 406 "your_custom_error_message_here" ErrorDocument 405 "your_custom_error_message_here" ErrorDocument 404 "your_custom_error_message_here" ErrorDocument 403 "your_custom_error_message_here" ErrorDocument 402 "your_custom_error_message_here" ErrorDocument 401 "your_custom_error_message_here" ErrorDocument 400 "your_custom_error_message_here" # ## Other example error pages #ErrorDocument 500 "The server has made a mistake." #ErrorDocument 404 /missing.html #ErrorDocument 404 "/cgi-bin/missing_handler.pl" #ErrorDocument 402 http://www.example.com/subscription_info.html # ####################################################### ### Calomel.org server httpd.conf END #######################################################