Beiträge von cookie

#
# Global configuration that will be applicable for all virtual hosts, unless
# deleted here, or overriden elswhere.
# 


DocumentRoot "/srv/www/htdocs"


#
# Configure the DocumentRoot
#
<Directory "/srv/www/htdocs">
	# Possible values for the Options directive are "None", "All",
	# or any combination of:
	#   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
	#
	# Note that "MultiViews" must be named *explicitly* --- "Options All"
	# doesn't give it to you.
	#
	# The Options directive is both complicated and important.  Please see
	# http://httpd.apache.org/docs-2.0/mod/core.html#options
	# for more information.
	Options None
	# AllowOverride controls what directives may be placed in .htaccess files.
	# It can be "All", "None", or any combination of the keywords:
	#   Options FileInfo AuthConfig Limit
	AllowOverride None
	# Controls who can get stuff from this server.
	Order allow,deny
	Allow from all
</Directory>


# Aliases: aliases can be added as needed (with no limit). The format is 
# Alias fakename realname
#
# Note that if you include a trailing / on fakename then the server will
# require it to be present in the URL.  So "/icons" isn't aliased in this
# example, only "/icons/".  If the fakename is slash-terminated, then the 
# realname must also be slash terminated, and if the fakename omits the 
# trailing slash, the realname must also omit it.
#
# We include the /icons/ alias for FancyIndexed directory listings.  If you
# do not use FancyIndexing, you may comment this out.
#
Alias /icons/ "/usr/share/apache2/icons/"


<Directory "/usr/share/apache2/icons">
	Options Indexes MultiViews
	AllowOverride None
	Order allow,deny
	Allow from all
</Directory>


# ScriptAlias: This controls which directories contain server scripts.
# ScriptAliases are essentially the same as Aliases, except that
# documents in the realname directory are treated as applications and
# run by the server when requested rather than as documents sent to the client.
# The same rules about trailing "/" apply to ScriptAlias directives as to
# Alias.
#
ScriptAlias /cgi-bin/ "/srv/www/cgi-bin/"


# "/srv/www/cgi-bin" should be changed to whatever your ScriptAliased
# CGI directory exists, if you have that configured.
#
<Directory "/srv/www/cgi-bin">
	AllowOverride None
	Options +ExecCGI -Includes
	Order allow,deny
	Allow from all
</Directory>


# UserDir: The name of the directory that is appended onto a user's home
# directory if a ~user request is received.
#
# To disable it, simply remove userdir from the list of modules in APACHE_MODULES 
# in /etc/sysconfig/apache2.
#
<IfModule mod_userdir.c>
	# Note that the name of the user directory ("public_html") cannot simply be
	# changed here, since it is a compile time setting. The apache package
	# would have to be rebuilt. You could work around by deleting
	# /usr/sbin/suexec, but then all scripts from the directories would be
	# executed with the UID of the webserver.
	UserDir public_html
	# The actual configuration of the directory is in
	# /etc/apache2/mod_userdir.conf.
	Include /etc/apache2/mod_userdir.conf
	# You can, however, change the ~ if you find it awkward, by mapping e.g.
	# http://www.example.com/users/karl-heinz/ --> /home/karl-heinz/public_html/ 
	#AliasMatch ^/users/([a-zA-Z0-9-_.]*)/?(.*) /home/$1/public_html/$2
</IfModule>




# Include all *.conf files from /etc/apache2/conf.d/.
#
# This is mostly meant as a place for other RPM packages to drop in their
# configuration snippet.
#
# You can comment this out here if you want those bits include only in a
# certain virtual host, but not here.
#
Include /etc/apache2/conf.d/*.conf


# The manual... if it is installed ('?' means it won't complain)
Include /etc/apache2/conf.d/apache2-manual?conf

#
# VirtualHost template
# Note: to use the template, rename it to /etc/apache2/vhost.d/yourvhost.conf. 
# Files must have the .conf suffix to be loaded.
#
# See /usr/share/doc/packages/apache2/README.QUICKSTART for further hints 
# about virtual hosts.
#
# Almost any Apache directive may go into a VirtualHost container.
# The first VirtualHost section is used for requests without a known
# server name.
#
<VirtualHost *:80>
    ServerAdmin [email]webmaster@dummy-host.example.com[/email]
    ServerName dummy-host.example.com


    # DocumentRoot: The directory out of which you will serve your
    # documents. By default, all requests are taken from this directory, but
    # symbolic links and aliases may be used to point to other locations.
    DocumentRoot /srv/www/vhosts/dummy-host.example.com


    # if not specified, the global error log is used
    ErrorLog /var/log/apache2/dummy-host.example.com-error_log
    CustomLog /var/log/apache2/dummy-host.example.com-access_log combined


    # don't loose time with IP address lookups
    HostnameLookups Off


    # needed for named virtual hosts
    UseCanonicalName Off


    # configures the footer on server-generated documents
    ServerSignature On




    # Optionally, include *.conf files from /etc/apache2/conf.d/
    #
    # For example, to allow execution of PHP scripts:
    #
    # Include /etc/apache2/conf.d/mod_php4.conf
    #
    # or, to include all configuration snippets added by packages:
    # Include /etc/apache2/conf.d/*.conf




    # ScriptAlias: This controls which directories contain server scripts.
    # ScriptAliases are essentially the same as Aliases, except that
    # documents in the realname directory are treated as applications and
    # run by the server when requested rather than as documents sent to the client.
    # The same rules about trailing "/" apply to ScriptAlias directives as to
    # Alias.
    #
    ScriptAlias /cgi-bin/ "/srv/www/vhosts/dummy-host.example.com/cgi-bin/"


    # "/srv/www/cgi-bin" should be changed to whatever your ScriptAliased
    # CGI directory exists, if you have one, and where ScriptAlias points to.
    #
    <Directory "/srv/www/vhosts/dummy-host.example.com/cgi-bin">
	AllowOverride None
	Options +ExecCGI -Includes
	Order allow,deny
	Allow from all
    </Directory>




    # UserDir: The name of the directory that is appended onto a user's home
    # directory if a ~user request is received.
    #
    # To disable it, simply remove userdir from the list of modules in APACHE_MODULES
    # in /etc/sysconfig/apache2.
    #
    <IfModule mod_userdir.c>
	# Note that the name of the user directory ("public_html") cannot simply be
	# changed here, since it is a compile time setting. The apache package
	# would have to be rebuilt. You could work around by deleting
	# /usr/sbin/suexec, but then all scripts from the directories would be
	# executed with the UID of the webserver.
	UserDir public_html
	# The actual configuration of the directory is in
	# /etc/apache2/mod_userdir.conf.
	Include /etc/apache2/mod_userdir.conf
	# You can, however, change the ~ if you find it awkward, by mapping e.g.
	# http://www.example.com/users/karl-heinz/ --> /home/karl-heinz/public_html/
	#AliasMatch ^/users/([a-zA-Z0-9-_.]*)/?(.*) /home/$1/public_html/$2
    </IfModule>




    #
    # This should be changed to whatever you set DocumentRoot to.
    #
    <Directory "/srv/www/vhosts/dummy-host.example.com">

	#
	# Possible values for the Options directive are "None", "All",
	# or any combination of:
	#   Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
	#
	# Note that "MultiViews" must be named *explicitly* --- "Options All"
	# doesn't give it to you.
	#
	# The Options directive is both complicated and important.  Please see
	# http://httpd.apache.org/docs-2.0/mod/core.html#options
	# for more information.
	#
	Options Indexes FollowSymLinks

	#
	# AllowOverride controls what directives may be placed in .htaccess files.
	# It can be "All", "None", or any combination of the keywords:
	#   Options FileInfo AuthConfig Limit
	#
	AllowOverride None

	#
	# Controls who can get stuff from this server.
	#
	Order allow,deny
	Allow from all

    </Directory>


</VirtualHost>

# Template for a VirtualHost with SSL
# Note: to use the template, rename it to /etc/apache2/vhost.d/yourvhost.conf.
# Files must have the .conf suffix to be loaded.
#
# See /usr/share/doc/packages/apache2/README.QUICKSTART for further hints
# about virtual hosts.


#
# This is the Apache server configuration file providing SSL support.
# It contains the configuration directives to instruct the server how to
# serve pages over an https connection. For detailing information about these 
# directives see <URL:http://httpd.apache.org/docs-2.0/mod/mod_ssl.html>
#
#   For the moment, see <URL:http://www.modssl.org/docs/> for this info. 
#   The documents are still being prepared from material donated by the
#   modssl project.
# 
# Do NOT simply read the instructions in here without understanding
# what they do.  They're here only as hints or reminders.  If you are unsure
# consult the online docs. You have been warned.  
#


#   Until documentation is completed, please check http://www.modssl.org/
#   for additional config examples and module docmentation.  Directives
#   and features of mod_ssl are largely unchanged from the mod_ssl project
#   for Apache 1.3.


<IfDefine SSL>
<IfDefine !NOSSL>


##
## SSL Virtual Host Context
##


<VirtualHost _default_:443>


	#  General setup for the virtual host
	DocumentRoot "/srv/www/htdocs"
	#ServerName [url]www.example.com:443[/url]
	#ServerAdmin [email]webmaster@example.com[/email]
	ErrorLog /var/log/apache2/error_log
	TransferLog /var/log/apache2/access_log


	#   SSL Engine Switch:
	#   Enable/Disable SSL for this virtual host.
	SSLEngine on


	#   SSL Cipher Suite:
	#   List the ciphers that the client is permitted to negotiate.
	#   See the mod_ssl documentation for a complete list.
	SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL


	#   Server Certificate:
	#   Point SSLCertificateFile at a PEM encoded certificate.  If
	#   the certificate is encrypted, then you will be prompted for a
	#   pass phrase.  Note that a kill -HUP will prompt again.  Keep
	#   in mind that if you have both an RSA and a DSA certificate you
	#   can configure both in parallel (to also allow the use of DSA
	#   ciphers, etc.)
	SSLCertificateFile /etc/apache2/ssl.crt/server.crt
	#SSLCertificateFile /etc/apache2/ssl.crt/server-dsa.crt


	#   Server Private Key:
	#   If the key is not combined with the certificate, use this
	#   directive to point at the key file.  Keep in mind that if
	#   you've both a RSA and a DSA private key you can configure
	#   both in parallel (to also allow the use of DSA ciphers, etc.)
	SSLCertificateKeyFile /etc/apache2/ssl.key/server.key
	#SSLCertificateKeyFile /etc/apache2/ssl.key/server-dsa.key


	#   Server Certificate Chain:
	#   Point SSLCertificateChainFile at a file containing the
	#   concatenation of PEM encoded CA certificates which form the
	#   certificate chain for the server certificate. Alternatively
	#   the referenced file can be the same as SSLCertificateFile
	#   when the CA certificates are directly appended to the server
	#   certificate for convinience.
	#SSLCertificateChainFile /etc/apache2/ssl.crt/ca.crt


	#   Certificate Authority (CA):
	#   Set the CA certificate verification path where to find CA
	#   certificates for client authentication or alternatively one
	#   huge file containing all of them (file must be PEM encoded)
	#   Note: Inside SSLCACertificatePath you need hash symlinks
	#         to point to the certificate files. Use the provided
	#         Makefile to update the hash symlinks after changes.
	#SSLCACertificatePath /etc/apache2/ssl.crt
	#SSLCACertificateFile /etc/apache2/ssl.crt/ca-bundle.crt


	#   Certificate Revocation Lists (CRL):
	#   Set the CA revocation path where to find CA CRLs for client
	#   authentication or alternatively one huge file containing all
	#   of them (file must be PEM encoded)
	#   Note: Inside SSLCARevocationPath you need hash symlinks
	#         to point to the certificate files. Use the provided
	#         Makefile to update the hash symlinks after changes.
	#SSLCARevocationPath /etc/apache2/ssl.crl
	#SSLCARevocationFile /etc/apache2/ssl.crl/ca-bundle.crl


	#   Client Authentication (Type):
	#   Client certificate verification type and depth.  Types are
	#   none, optional, require and optional_no_ca.  Depth is a
	#   number which specifies how deeply to verify the certificate
	#   issuer chain before deciding the certificate is not valid.
	#SSLVerifyClient require
	#SSLVerifyDepth  10


	#   Access Control:
	#   With SSLRequire you can do per-directory access control based
	#   on arbitrary complex boolean expressions containing server
	#   variable checks and other lookup directives.  The syntax is a
	#   mixture between C and Perl.  See the mod_ssl documentation
	#   for more details.
	#<Location />
	#SSLRequire (    %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
	#            and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
	#            and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
	#            and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
	#            and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20       ) \
	#           or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
	#</Location>


	#   SSL Engine Options:
	#   Set various options for the SSL engine.
	#   o FakeBasicAuth:
	#     Translate the client X.509 into a Basic Authorisation.  This means that
	#     the standard Auth/DBMAuth methods can be used for access control.  The
	#     user name is the `one line' version of the client's X.509 certificate.
	#     Note that no password is obtained from the user. Every entry in the user
	#     file needs this password: `xxj31ZMTZzkVA'.
	#   o ExportCertData:
	#     This exports two additional environment variables: SSL_CLIENT_CERT and
	#     SSL_SERVER_CERT. These contain the PEM-encoded certificates of the
	#     server (always existing) and the client (only existing when client
	#     authentication is used). This can be used to import the certificates
	#     into CGI scripts.
	#   o StdEnvVars:
	#     This exports the standard SSL/TLS related `SSL_*' environment variables.
	#     Per default this exportation is switched off for performance reasons,
	#     because the extraction step is an expensive operation and is usually
	#     useless for serving static content. So one usually enables the
	#     exportation for CGI and SSI requests only.
	#   o CompatEnvVars:
	#     This exports obsolete environment variables for backward compatibility
	#     to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. Use this
	#     to provide compatibility to existing CGI scripts.
	#   o StrictRequire:
	#     This denies access when "SSLRequireSSL" or "SSLRequire" applied even
	#     under a "Satisfy any" situation, i.e. when it applies access is denied
	#     and no other module can change it.
	#   o OptRenegotiate:
	#     This enables optimized SSL connection renegotiation handling when SSL
	#     directives are used in per-directory context. 
	#SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
	<Files ~ "\.(cgi|shtml|phtml|php3?)$">
	    SSLOptions +StdEnvVars
	</Files>
	<Directory "/srv/www/cgi-bin">
	    SSLOptions +StdEnvVars
	</Directory>


	#   SSL Protocol Adjustments:
	#   The safe and default but still SSL/TLS standard compliant shutdown
	#   approach is that mod_ssl sends the close notify alert but doesn't wait for
	#   the close notify alert from client. When you need a different shutdown
	#   approach you can use one of the following variables:
	#   o ssl-unclean-shutdown:
	#     This forces an unclean shutdown when the connection is closed, i.e. no
	#     SSL close notify alert is send or allowed to received.  This violates
	#     the SSL/TLS standard but is needed for some brain-dead browsers. Use
	#     this when you receive I/O errors because of the standard approach where
	#     mod_ssl sends the close notify alert.
	#   o ssl-accurate-shutdown:
	#     This forces an accurate shutdown when the connection is closed, i.e. a
	#     SSL close notify alert is send and mod_ssl waits for the close notify
	#     alert of the client. This is 100% SSL/TLS standard compliant, but in
	#     practice often causes hanging connections with brain-dead browsers. Use
	#     this only for browsers where you know that their SSL implementation
	#     works correctly. 
	#   Notice: Most problems of broken clients are also related to the HTTP
	#   keep-alive facility, so you usually additionally want to disable
	#   keep-alive for those clients, too. Use variable "nokeepalive" for this.
	#   Similarly, one has to force some clients to use HTTP/1.0 to workaround
	#   their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
	#   "force-response-1.0" for this.
	SetEnvIf User-Agent ".*MSIE.*" \
		 nokeepalive ssl-unclean-shutdown \
		 downgrade-1.0 force-response-1.0


	#   Per-Server Logging:
	#   The home of a custom SSL log file. Use this when you want a
	#   compact non-error SSL logfile on a virtual host basis.
	CustomLog /var/log/apache2/ssl_request_log   ssl_combined


</VirtualHost>                                  


</IfDefine>
</IfDefine>

#
# /etc/apache2/httpd.conf 
#
# This is the main Apache server configuration file.  It contains the
# configuration directives that give the server its instructions.
# See <URL:http://httpd.apache.org/docs-2.0/> for detailed information about
# the directives.


# Based upon the default apache configuration file that ships with apache,
# which is based upon the NCSA server configuration files originally by Rob
# McCool. This file was knocked together by Peter Poeml <poeml+apache@suse.de>.


# If possible, avoid changes to this file. It does mainly contain Include
# statements and global settings that can/should be overridden in the
# configuration of your virtual hosts.




# Overview of include files, chronologically:
#
# httpd.conf
#  | 
#  |-- uid.conf  . . . . . . . . . . . . . .  UserID/GroupID to run under
#  |-- server-tuning.conf  . . . . . . . . .  sizing of the server (how many processes to start, ...)
#  |-- sysconfig.d/loadmodule.conf . . . . .  [*] load these modules
#  |-- listen.conf . . . . . . . . . . . . .  IP adresses / ports to listen on
#  |-- mod_log_config.conf . . . . . . . . .  define logging formats
#  |-- sysconfig.d/global.conf . . . . . . .  [*] server-wide general settings
#  |-- mod_status.conf . . . . . . . . . . .  restrict access to mod_status (server monitoring)
#  |-- mod_info.conf . . . . . . . . . . . .  restrict access to mod_info
#  |-- mod_usertrack.conf  . . . . . . . . .  defaults for cookie-based user tracking
#  |-- mod_autoindex-defaults.conf . . . . .  defaults for displaying of server-generated directory listings
#  |-- mod_mime-defaults.conf  . . . . . . .  defaults for mod_mime configuration
#  |-- errors.conf . . . . . . . . . . . . .  customize error responses
#  |-- ssl-global.conf . . . . . . . . . . .  SSL conf that applies to default server _and all_ virtual hosts
#  |
#  |-- default-server.conf . . . . . . . . .  set up the default server that replies to non-virtual-host requests
#  |    |--mod_userdir.conf  . . . . . . . .  enable UserDir (if mod_userdir is loaded)
#  |    `--conf.d/apache2-manual?conf  . . .  add the docs ('?' = if installed)
#  |
#  |-- sysconfig.d/include.conf  . . . . . .  [*] your include files 
#  |                                             (for each file to be included here, put its name 
#  |                                              into APACHE_INCLUDE_* in /etc/sysconfig/apache2)
#  |
#  `-- vhosts.d/ . . . . . . . . . . . . . .  for each virtual host, place one file here
#       `-- *.conf . . . . . . . . . . . . .     (*.conf is automatically included)
#
#
# Files marked [*] are created from sysconfig upon server restart: instead of
# these files, you edit /etc/sysconfig/apache2






#  Filesystem layout:
#
# /etc/apache2/
#  |-- conf.d/
#  |   |-- apache2-manual.conf . . . . . . .  conf that comes with apache2-doc
#  |   |-- mod_php4.conf . . . . . . . . . .  (example) conf that comes with apache2-mod_php4
#  |   `-- ... . . . . . . . . . . . . . . .  other configuration added by packages
#  |-- default-server.conf
#  |-- errors.conf
#  |-- httpd.conf  . . . . . . . . . . . . .  top level configuration file
#  |-- listen.conf
#  |-- magic
#  |-- mime.types -> ../mime.types
#  |-- mod_autoindex-defaults.conf
#  |-- mod_info.conf
#  |-- mod_log_config.conf
#  |-- mod_mime-defaults.conf
#  |-- mod_perl-startup.pl
#  |-- mod_status.conf
#  |-- mod_userdir.conf
#  |-- mod_usertrack.conf
#  |-- server-tuning.conf
#  |-- ssl-global.conf
#  |-- ssl.crl/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificate Revocation Lists (CRL)
#  |-- ssl.crt/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificates
#  |-- ssl.csr/  . . . . . . . . . . . . . .  PEM-encoded X.509 Certificate Signing Requests
#  |-- ssl.key/  . . . . . . . . . . . . . .  PEM-encoded RSA Private Keys
#  |-- ssl.prm/  . . . . . . . . . . . . . .  public DSA Parameter Files
#  |-- sysconfig.d/  . . . . . . . . . . . .  files that are created from /etc/sysconfig/apache2
#  |   |-- global.conf
#  |   |-- include.conf
#  |   `-- loadmodule.conf
#  |-- uid.conf
#  `-- vhosts.d/ . . . . . . . . . . . . . .  put your virtual host configuration (*.conf) here
#      |-- vhost-ssl.template
#      `-- vhost.template






### Global Environment ######################################################
#
# The directives in this section affect the overall operation of Apache,
# such as the number of concurrent requests.


# run under this user/group id
Include /etc/apache2/uid.conf


# - how many server processes to start (server pool regulation)
# - usage of KeepAlive
Include /etc/apache2/server-tuning.conf


# ErrorLog: The location of the error log file.
# If you do not specify an ErrorLog directive within a <VirtualHost>
# container, error messages relating to that virtual host will be
# logged here.  If you *do* define an error logfile for a <VirtualHost>
# container, that host's errors will be logged there and not here.
ErrorLog /var/log/apache2/error_log


# generated from APACHE_MODULES in /etc/sysconfig/apache2
Include /etc/apache2/sysconfig.d/loadmodule.conf


# IP addresses / ports to listen on
Include /etc/apache2/listen.conf


# predefined logging formats
Include /etc/apache2/mod_log_config.conf


# generated from global settings in /etc/sysconfig/apache2
Include /etc/apache2/sysconfig.d/global.conf


# optional mod_status, mod_info
Include /etc/apache2/mod_status.conf
Include /etc/apache2/mod_info.conf


# optional cookie-based user tracking
# read the documentation before using it!!
Include /etc/apache2/mod_usertrack.conf


# configuration of server-generated directory listings
Include /etc/apache2/mod_autoindex-defaults.conf


# associate MIME types with filename extensions
TypesConfig /etc/apache2/mime.types
DefaultType text/plain
Include /etc/apache2/mod_mime-defaults.conf


# set up (customizable) error responses
Include /etc/apache2/errors.conf


# global (server-wide) SSL configuration, that is not specific to 
# any virtual host
Include /etc/apache2/ssl-global.conf


# forbid access to the entire filesystem by default
<Directory />
    Options None
    AllowOverride None
    Order deny,allow
    Deny from all
</Directory>


# use .htaccess files for overriding,
AccessFileName .htaccess
# and never show them
<Files ~ "^\.ht">
    Order allow,deny
    Deny from all
</Files>


# List of resources to look for when the client requests a directory
DirectoryIndex index.html index.html.var


### 'Main' server configuration #############################################
#
# The directives in this section set up the values used by the 'main'
# server, which responds to any requests that aren't handled by a
# <VirtualHost> definition.  These values also provide defaults for
# any <VirtualHost> containers you may define later in the file.
#
# All of these directives may appear inside <VirtualHost> containers,
# in which case these default settings will be overridden for the
# virtual host being defined.
#
Include /etc/apache2/default-server.conf




# Another way to include your own files
#
# The file below is generated from /etc/sysconfig/apache2,
# include arbitrary files as named in APACHE_CONF_INCLUDE_FILES and
# APACHE_CONF_INCLUDE_DIRS
Include /etc/apache2/sysconfig.d/include.conf




### Virtual server configuration ############################################
#
# VirtualHost: If you want to maintain multiple domains/hostnames on your
# machine you can setup VirtualHost containers for them. Most configurations
# use only name-based virtual hosts so the server doesn't need to worry about
# IP addresses. This is indicated by the asterisks in the directives below.
#
# Please see the documentation at
# <URL:http://httpd.apache.org/docs-2.0/vhosts/>
# for further details before you try to setup virtual hosts.
#
# You may use the command line option '-S' to verify your virtual host
# configuration.
#
Include /etc/apache2/vhosts.d/*.conf




# Note: instead of adding your own configuration here, consider 
#       adding it in your own file (/etc/apache2/httpd.conf.local)
#       putting its name into APACHE_CONF_INCLUDE_FILES in 
#       /etc/sysconfig/apache2 -- this will make system updates 
#       easier :)

[Fri Feb 10 14:55:03 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Fri Feb 10 14:55:03 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Fri Feb 10 14:55:10 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Fri Feb 10 14:57:17 2006] [error] [client 192.168.1.10] File does not exist: /srv/www/htdocs/kw
[Fri Feb 10 14:57:21 2006] [error] [client 192.168.1.10] File does not exist: /srv/www/htdocs/lan
[Fri Feb 10 15:09:48 2006] [notice] caught SIGTERM, shutting down
[Tue Mar 28 16:39:39 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Tue Mar 28 16:39:39 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Tue Mar 28 16:39:44 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Tue Mar 28 16:41:33 2006] [notice] caught SIGTERM, shutting down
[Wed Mar 29 11:48:01 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Wed Mar 29 11:48:01 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Wed Mar 29 11:48:14 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Wed Mar 29 12:18:12 2006] [error] [client 127.0.0.1] File does not exist: /srv/www/htdocs/kw
[Wed Mar 29 12:18:27 2006] [error] [client 127.0.0.1] File does not exist: /srv/www/htdocs/kw
[Wed Mar 29 12:19:40 2006] [error] [client 127.0.0.1] File does not exist: /srv/www/htdocs/phpmyadmin
[Wed Mar 29 13:15:39 2006] [notice] caught SIGTERM, shutting down
[Wed Mar 29 17:31:11 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Wed Mar 29 17:31:11 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Wed Mar 29 17:31:20 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Wed Mar 29 18:48:07 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 11:48:17 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 11:48:18 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 11:48:28 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 12:58:31 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 13:09:19 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 13:09:19 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 13:09:22 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 13:09:22 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 13:09:23 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 13:11:19 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 13:13:40 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 13:13:41 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 13:13:53 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html denied
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html.var denied
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php denied
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php3 denied
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php4 denied
[Thu Mar 30 14:00:37 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 14:00:41 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 14:00:43 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html denied
[Thu Mar 30 14:00:43 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html.var denied
[Thu Mar 30 14:00:43 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php denied
[Thu Mar 30 14:00:43 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php3 denied
[Thu Mar 30 14:00:43 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php4 denied
[Thu Mar 30 14:00:56 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:20:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html denied
[Thu Mar 30 15:20:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.html.var denied
[Thu Mar 30 15:20:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php denied
[Thu Mar 30 15:20:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php3 denied
[Thu Mar 30 15:20:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /index.php4 denied
[Thu Mar 30 15:22:38 2006] [error] [client ::1] (13)Permission denied: access to /index.html denied
[Thu Mar 30 15:22:38 2006] [error] [client ::1] (13)Permission denied: access to /index.html.var denied
[Thu Mar 30 15:22:38 2006] [error] [client ::1] (13)Permission denied: access to /index.php denied
[Thu Mar 30 15:22:38 2006] [error] [client ::1] (13)Permission denied: access to /index.php3 denied
[Thu Mar 30 15:22:38 2006] [error] [client ::1] (13)Permission denied: access to /index.php4 denied
[Thu Mar 30 15:22:40 2006] [error] [client ::1] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.html denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.html.var denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.php denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.php3 denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.php4 denied
[Thu Mar 30 15:22:48 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 15:23:03 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:32:25 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 15:32:26 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 15:32:26 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 15:32:28 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 15:32:41 2006] [error] [client 192.168.1.13] (13)Permission denied: access to / denied
[Thu Mar 30 15:32:41 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 15:32:41 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 15:33:31 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /favicon.ico denied
[Thu Mar 30 15:33:32 2006] [error] [client 192.168.1.13] (13)Permission denied: access to / denied
[Thu Mar 30 15:33:39 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:33:43 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 15:33:44 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 15:33:44 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 15:33:45 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 15:33:48 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:33:53 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:34:19 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:34:22 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 15:34:23 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 15:34:23 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 15:34:24 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 15:34:27 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:34:56 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:35:00 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 15:35:01 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 15:35:01 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 15:35:01 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 15:35:05 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:35:09 2006] [error] [client 192.168.1.13] (13)Permission denied: access to / denied
[Thu Mar 30 15:35:41 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /apache_pb.gif denied
[Thu Mar 30 15:37:04 2006] [notice] caught SIGTERM, shutting down
[Thu Mar 30 15:37:05 2006] [warn] Init: Session Cache is not configured [hint: SSLSessionCache]
[Thu Mar 30 15:37:05 2006] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec2)
[Thu Mar 30 15:37:07 2006] [notice] Apache/2.0.54 (Linux/SUSE) configured -- resuming normal operations
[Thu Mar 30 15:37:09 2006] [error] [client 192.168.1.13] (13)Permission denied: access to /apache_pb.gif denied
[Thu Mar 30 15:37:17 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /kwn/index.php denied
[Thu Mar 30 15:37:22 2006] [error] [client 127.0.0.1] (13)Permission denied: access to / denied
[Thu Mar 30 15:37:36 2006] [error] [client 127.0.0.1] (13)Permission denied: access to /index.html denied
[Thu Mar 30 15:37:43 2006] [error] [client ::1] (13)Permission denied: access to /kwn/index.php denied

# Example config file /etc/vsftpd.conf
#
# The default compiled in settings are fairly paranoid. This sample file
# loosens things up a bit, to make the ftp daemon more usable.
# Please see vsftpd.conf.5 for all compiled in defaults.
#
# If you do not change anything here you will have a minimum setup for an
# anonymus FTP server.
#
# READ THIS: This example file is NOT an exhaustive list of vsftpd options.
# Please read the vsftpd.conf.5 manual page to get a full idea of vsftpd's
# capabilities.


# General Settings
#
# Uncomment this to enable any form of FTP write command.
#
#write_enable=YES
#
# Activate directory messages - messages given to remote users when they
# go into a certain directory.
#
dirmessage_enable=YES
#
# It is recommended that you define on your system a unique user which the
# ftp server can use as a totally isolated and unprivileged user.
#
#nopriv_user=ftpsecure
#
# You may fully customise the login banner string:
#
#ftpd_banner="Welcome to Kekswars FTP service."
#
# You may activate the "-R" option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# the presence of the "-R" option, so there is a strong case for enabling it.
#
#ls_recurse_enable=YES
#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# useful for combatting certain DoS attacks.
#
#deny_email_enable=YES
#
# (default follows)
#
#banned_email_file=/etc/vsftpd.banned_emails
#
# If  enabled,  all  user  and  group  information in
# directory listings will be displayed as "ftp".
#
#hide_ids=YES


# Local FTP user Settings
# 
# Uncomment this to allow local users to log in.
#
local_enable=YES
#
# Default umask for local users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
#
#local_umask=022
#
# Uncomment to put local users in a chroot() jail in their home directory
# after login.
#
#chroot_local_user=YES
#
# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
#
#chroot_list_enable=YES
#
# (default follows)
#
#chroot_list_file=/etc/vsftpd.chroot_list
#
# The maximum data transfer rate permitted, in bytes per second, for
# local authenticated users. The default is 0 (unlimited).
#
#local_max_rate=7200




# Anonymus FTP user Settings
#
# Allow anonymous FTP?
#
#anonymous_enable=YES
#
# Anonymous users will only be allowed to download files which are
# world readable.
#
#anon_world_readable_only=YES
#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# has an effect if the above global write enable is activated. Also, you will
# obviously need to create a directory writable by the FTP user.
#
#anon_upload_enable=YES
#
# Default umask for anonymus users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
#
#anon_umask=022
#
# Uncomment this if you want the anonymous FTP user to be able to create
# new directories.
#
#anon_mkdir_write_enable=YES
#
# Uncomment this to enable anonymus FTP users to perform other write operations
# like deletion and renaming.
#
#anon_other_write_enable=YES
#
# If you want, you can arrange for uploaded anonymous files to be owned by
# a different user. Note! Using "root" for uploaded files is not
# recommended!
#
#chown_uploads=YES
#chown_username=whoever
#
# The maximum data transfer rate permitted, in bytes per second, for anonymous
# authenticated users. The default is 0 (unlimited).
#
#anon_max_rate=7200




# Log Settings
#
# Log to the syslog daemon instead of using an logfile.
#
syslog_enable=YES
#
# Uncomment this to log all FTP requests and responses.
#
#log_ftp_protocol=YES
#
# Activate logging of uploads/downloads.
#
xferlog_enable=YES
#
# You may override where the log file goes if you like. The default is shown
# below.
#
#vsftpd_log_file=/var/log/vsftpd.log
# 
# If you want, you can have your log file in standard ftpd xferlog format.
# Note: This disables the normal logging unless you enable dual_log_enable below. 
#
#xferlog_std_format=YES
#
# You may override where the log file goes if you like. The default is shown
# below.
#
#xferlog_file=/var/log/xferlog
#
# Enable this to have booth logfiles. Standard xferlog and vsftpd's own style log.
#
#dual_log_enable=YES
#
# Uncomment this to enable session status information in the system process listing.
#
#setproctitle_enable=YES


# Transfer Settings
#
# Make sure PORT transfer connections originate from port 20 (ftp-data).
#
connect_from_port_20=YES
#
# You may change the default value for timing out an idle session.
#
#idle_session_timeout=600
#
# You may change the default value for timing out a data connection.
#
#data_connection_timeout=120
#
# Enable this and the server will recognise asynchronous ABOR requests. Not
# recommended for security (the code is non-trivial). Not enabling it,
# however, may confuse older FTP clients.
#
#async_abor_enable=YES
#
# By default the server will pretend to allow ASCII mode but in fact ignore
# the request. Turn on the below options to have the server actually do ASCII
# mangling on files when in ASCII mode.
# Beware that turning on ascii_download_enable enables malicious remote parties
# to consume your I/O resources, by issuing the command "SIZE /big/file" in
# ASCII mode.
# These ASCII options are split into upload and download because you may wish
# to enable ASCII uploads (to prevent uploaded scripts etc. from breaking),
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be
# on the client anyway..
#
#ascii_upload_enable=YES
#ascii_download_enable=YES
#
# Set to NO if you want to disallow the  PASV  method of obtaining a data
# connection.
#
#pasv_enable=NO


# PAM setting. Do NOT change this unless you know what you do!
#
pam_service_name=vsftpd


# Set listen=YES if you want vsftpd to run standalone
#
# listen=YES


#own settings
userlist_deny=NO
userlist_enable=YES