apache2.conf 7.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231
  1. # This is the main Apache server configuration file. It contains the
  2. # configuration directives that give the server its instructions.
  3. # See http://httpd.apache.org/docs/2.4/ for detailed information about
  4. # the directives and /usr/share/doc/apache2/README.Debian about Debian specific
  5. # hints.
  6. #
  7. #
  8. # Summary of how the Apache 2 configuration works in Debian:
  9. # The Apache 2 web server configuration in Debian is quite different to
  10. # upstream's suggested way to configure the web server. This is because Debian's
  11. # default Apache2 installation attempts to make adding and removing modules,
  12. # virtual hosts, and extra configuration directives as flexible as possible, in
  13. # order to make automating the changes and administering the server as easy as
  14. # possible.
  15. # It is split into several files forming the configuration hierarchy outlined
  16. # below, all located in the /etc/apache2/ directory:
  17. #
  18. # /etc/apache2/
  19. # |-- apache2.conf
  20. # | `-- ports.conf
  21. # |-- mods-enabled
  22. # | |-- *.load
  23. # | `-- *.conf
  24. # |-- conf-enabled
  25. # | `-- *.conf
  26. # `-- sites-enabled
  27. # `-- *.conf
  28. #
  29. #
  30. # * apache2.conf is the main configuration file (this file). It puts the pieces
  31. # together by including all remaining configuration files when starting up the
  32. # web server.
  33. #
  34. # * ports.conf is always included from the main configuration file. It is
  35. # supposed to determine listening ports for incoming connections which can be
  36. # customized anytime.
  37. #
  38. # * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/
  39. # directories contain particular configuration snippets which manage modules,
  40. # global configuration fragments, or virtual host configurations,
  41. # respectively.
  42. #
  43. # They are activated by symlinking available configuration files from their
  44. # respective *-available/ counterparts. These should be managed by using our
  45. # helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See
  46. # their respective man pages for detailed information.
  47. #
  48. # * The binary is called apache2. Due to the use of environment variables, in
  49. # the default configuration, apache2 needs to be started/stopped with
  50. # /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not
  51. # work with the default configuration.
  52. # Global configuration
  53. #
  54. #
  55. # ServerRoot: The top of the directory tree under which the server's
  56. # configuration, error, and log files are kept.
  57. #
  58. # NOTE! If you intend to place this on an NFS (or otherwise network)
  59. # mounted filesystem then please read the Mutex documentation (available
  60. # at <URL:http://httpd.apache.org/docs/2.4/mod/core.html#mutex>);
  61. # you will save yourself a lot of trouble.
  62. #
  63. # Do NOT add a slash at the end of the directory path.
  64. #
  65. #ServerRoot "/etc/apache2"
  66. #
  67. # The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
  68. #
  69. #Mutex file:${APACHE_LOCK_DIR} default
  70. #
  71. # The directory where shm and other runtime files will be stored.
  72. #
  73. DefaultRuntimeDir ${APACHE_RUN_DIR}
  74. #
  75. # PidFile: The file in which the server should record its process
  76. # identification number when it starts.
  77. # This needs to be set in /etc/apache2/envvars
  78. #
  79. PidFile ${APACHE_PID_FILE}
  80. #
  81. # Timeout: The number of seconds before receives and sends time out.
  82. #
  83. Timeout 300
  84. #
  85. # KeepAlive: Whether or not to allow persistent connections (more than
  86. # one request per connection). Set to "Off" to deactivate.
  87. #
  88. KeepAlive On
  89. #
  90. # MaxKeepAliveRequests: The maximum number of requests to allow
  91. # during a persistent connection. Set to 0 to allow an unlimited amount.
  92. # We recommend you leave this number high, for maximum performance.
  93. #
  94. MaxKeepAliveRequests 100
  95. #
  96. # KeepAliveTimeout: Number of seconds to wait for the next request from the
  97. # same client on the same connection.
  98. #
  99. KeepAliveTimeout 5
  100. # These need to be set in /etc/apache2/envvars
  101. User www-data
  102. Group www-data
  103. #
  104. # HostnameLookups: Log the names of clients or just their IP addresses
  105. # e.g., www.apache.org (on) or 204.62.129.132 (off).
  106. # The default is off because it'd be overall better for the net if people
  107. # had to knowingly turn this feature on, since enabling it means that
  108. # each client request will result in AT LEAST one lookup request to the
  109. # nameserver.
  110. #
  111. HostnameLookups Off
  112. # ErrorLog: The location of the error log file.
  113. # If you do not specify an ErrorLog directive within a <VirtualHost>
  114. # container, error messages relating to that virtual host will be
  115. # logged here. If you *do* define an error logfile for a <VirtualHost>
  116. # container, that host's errors will be logged there and not here.
  117. #
  118. ErrorLog ${APACHE_LOG_DIR}/error.log
  119. #
  120. # LogLevel: Control the severity of messages logged to the error_log.
  121. # Available values: trace8, ..., trace1, debug, info, notice, warn,
  122. # error, crit, alert, emerg.
  123. # It is also possible to configure the log level for particular modules, e.g.
  124. # "LogLevel info ssl:warn"
  125. #
  126. LogLevel warn
  127. # Include module configuration:
  128. IncludeOptional mods-enabled/*.load
  129. IncludeOptional mods-enabled/*.conf
  130. # Include list of ports to listen on
  131. Include ports.conf
  132. # Sets the default security model of the Apache2 HTTPD server. It does
  133. # not allow access to the root filesystem outside of /usr/share and /var/www.
  134. # The former is used by web applications packaged in Debian,
  135. # the latter may be used for local directories served by the web server. If
  136. # your system is serving content from a sub-directory in /srv you must allow
  137. # access here, or in any related virtual host.
  138. <Directory />
  139. Options FollowSymLinks
  140. AllowOverride None
  141. Require all denied
  142. </Directory>
  143. <Directory /usr/share>
  144. AllowOverride None
  145. Require all granted
  146. </Directory>
  147. <Directory /var/www/>
  148. Options Indexes FollowSymLinks
  149. AllowOverride None
  150. Require all granted
  151. </Directory>
  152. #<Directory /srv/>
  153. # Options Indexes FollowSymLinks
  154. # AllowOverride None
  155. # Require all granted
  156. #</Directory>
  157. # AccessFileName: The name of the file to look for in each directory
  158. # for additional configuration directives. See also the AllowOverride
  159. # directive.
  160. #
  161. AccessFileName .htaccess
  162. #
  163. # The following lines prevent .htaccess and .htpasswd files from being
  164. # viewed by Web clients.
  165. #
  166. <FilesMatch "^\.ht">
  167. Require all denied
  168. </FilesMatch>
  169. #
  170. # The following directives define some format nicknames for use with
  171. # a CustomLog directive.
  172. #
  173. # These deviate from the Common Log Format definitions in that they use %O
  174. # (the actual bytes sent including headers) instead of %b (the size of the
  175. # requested file), because the latter makes it impossible to detect partial
  176. # requests.
  177. #
  178. # Note that the use of %{X-Forwarded-For}i instead of %h is not recommended.
  179. # Use mod_remoteip instead.
  180. #
  181. LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined
  182. LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
  183. LogFormat "%h %l %u %t \"%r\" %>s %O" common
  184. LogFormat "%{Referer}i -> %U" referer
  185. LogFormat "%{User-agent}i" agent
  186. # Include of directories ignores editors' and dpkg's backup files,
  187. # see README.Debian for details.
  188. # Hide Apache version
  189. ServerTokens Prod
  190. ServerSignature Off
  191. # Include generic snippets of statements
  192. IncludeOptional conf-enabled/*.conf
  193. # Include the virtual host configurations:
  194. IncludeOptional sites-enabled/*.conf
  195. # vim: syntax=apache ts=4 sw=4 sts=4 sr noet