Permalink
Fetching contributors…
Cannot retrieve contributors at this time
88 lines (71 sloc) 2.45 KB
<VirtualHost __your_domain__:80>
ServerName __your_domain__
Redirect / https://__your_domain__/
</Virtualhost>
<IfModule mod_ssl.c>
SSLUseStapling on
SSLStaplingCache "shmcb:logs/stapling-cache(150000)"
<VirtualHost __your_domain__:443>
AddDefaultCharset utf-8
ServerAdmin ADMIN@DOMAIN.HERE
ServerName __your_domain__
# SSL Engine Switch:
# Enable/Disable SSL for this virtual host.
SSLEngine on
SSLHonorCipherOrder On
SSLProtocol +ALL -SSLv2 -SSLv3
SSLCipherSuite ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:DHE-RSA-DES-CBC3-SHA
# example for real certifcates
SSLCertificateFile /path/to/ssl/certificate/submitty.cer
SSLCertificateKeyFile /path/to/ssl/certificate/submitty.key
SSLCertificateChainFile /path/to/ssl/certificate/chain.cer
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
DocumentRoot /usr/local/submitty/site/public
ScriptAlias "/cgi-bin" "/usr/local/submitty/site/cgi-bin"
DirectoryIndex index.html index.php index.htm index.cgi
SuexecUserGroup submitty_cgi submitty_cgi
<FilesMatch "\.php$">
<If "-f %{REQUEST_FILENAME}">
SetHandler "proxy:unix:/var/run/php/php-fpm-submitty.sock|fcgi://localhost/"
</If>
</FilesMatch>
# Define a matching worker.
# The part that is matched to the SetHandler is the part that
# follows the pipe. If you need to distinguish, "localhost; can
# be anything unique.
<Proxy "fcgi://localhost/" enablereuse=on max=10>
</Proxy>
<Files .*>
Order allow,deny
Deny from all
</Files>
<Files *~>
Order allow,deny
Deny from all
</Files>
<Files #*>
Order allow,deny
Deny from all
</Files>
<Directory />
AllowOverride None
</Directory>
<Directory /usr/local/submitty/site/public>
Require all granted
Order allow,deny
Allow from all
</Directory>
<Directory "/usr/local/submitty/site/cgi-bin">
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
AddHandler cgi-script .cgi
Order allow,deny
Allow from all
SSLOptions +StdEnvVars
</Directory>
LogLevel error
ErrorLog ${APACHE_LOG_DIR}/submitty.log
CustomLog ${APACHE_LOG_DIR}/submitty.log combined
</VirtualHost>
</IfModule>