Skip to content
apache_ispconfig.conf.master 4.58 KiB
Newer Older
# Important: A copy of this file exists in install/tpl/ folder.
# Edit both files when applying changes.

################################################
# ISPConfig General Apache Options
################################################
ServerTokens ProductOnly
ServerSignature Off
DirectoryIndex index.html index.cgi index.pl index.php index.xhtml index.htm standard_index.html

################################################
# ISPConfig Logfile configuration for vlogger
################################################

SetEnvIf Request_URI "^/datalogstatus.php$" dontlog
LogFormat "%v %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined_ispconfig
<tmpl_if name='logging' op='==' value='anon'>
CustomLog "| /usr/local/ispconfig/server/scripts/vlogger -p -s access.log -t \"%Y%m%d-access.log\" /var/log/ispconfig/httpd" combined_ispconfig
</tmpl_if>
<tmpl_if name='logging' op='==' value='yes'>
CustomLog "| /usr/local/ispconfig/server/scripts/vlogger -s access.log -t \"%Y%m%d-access.log\" /var/log/ispconfig/httpd" combined_ispconfig
<Directory /var/www/clients>
    AllowOverride None
Thom's avatar
Thom committed
	<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
	Require all denied
	<tmpl_else>
	Order Deny,Allow
	Deny from all
	</tmpl_if>
# Do not allow access to the root file system of the server for security reasons
<Directory />
Thom's avatar
Thom committed
	Options -Indexes
Thom's avatar
Thom committed
	<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
	Require all denied
	<tmpl_else>
	Order Deny,Allow
	Deny from all
	</tmpl_if>
<Directory /var/www>
  Options -Indexes
</Directory>

<Directory /var/www/conf>
    AllowOverride None
Thom's avatar
Thom committed
	<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
	Require all denied
	<tmpl_else>
	Order Deny,Allow
	Deny from all
	</tmpl_if>
</Directory>

# Except of the following directories that contain website scripts
<Directory /usr/share/phpmyadmin>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
Thom's avatar
Thom committed
		</tmpl_if>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
Thom's avatar
Thom committed
		</tmpl_if>
<Directory /usr/share/squirrelmail>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
# Allow access to mailman on OpenSuSE
<Directory /usr/lib/mailman/cgi-bin>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
</Directory>

<Directory /usr/lib/mailman/icons>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
</Directory>

<Directory /var/lib/mailman/archives/>
        Options +FollowSymLinks
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
tbrehm's avatar
tbrehm committed
# allow path to awstats and alias for awstats icons
<Directory /usr/share/awstats>
Thom's avatar
Thom committed
		<tmpl_if name='apache_version' op='>' value='2.2' format='version'>
		Require all granted
		<tmpl_else>
tbrehm's avatar
tbrehm committed
        Order allow,deny
        Allow from all
Thom's avatar
Thom committed
		</tmpl_if>
tbrehm's avatar
tbrehm committed
</Directory>
tbrehm's avatar
tbrehm committed
Alias /awstats-icon "/usr/share/awstats/icon"
<tmpl_if name='apache_version' op='<' value='2.4' format='version'>
  NameVirtualHost *:80
  NameVirtualHost *:443
  <tmpl_loop name="ip_adresses">
  NameVirtualHost {tmpl_var name="ip_address"}:{tmpl_var name="port"}
  </tmpl_loop>
</tmpl_if>
Thom's avatar
Thom committed

<tmpl_if name='apache_version' op='>=' value='2.3.3' format='version'>
<IfModule mod_ssl.c>
  <tmpl_var name="ssl_comment">SSLStaplingCache shmcb:/var/run/ocsp(128000)
</IfModule>
</tmpl_if>

<Directory /var/www/php-cgi-scripts>
  AllowOverride None
  <tmpl_if name='apache_version' op='>' value='2.2' format='version'>
  Require all denied
  <tmpl_else>
  Order Deny,Allow
  Deny from all
  </tmpl_if>
</Directory>

<Directory /var/www/php-fcgi-scripts>
  AllowOverride None
  <tmpl_if name='apache_version' op='>' value='2.2' format='version'>
  Require all denied
  <tmpl_else>
  Order Deny,Allow
  Deny from all
  </tmpl_if>
</Directory>