From fdf19b48fdb7a022b8f0d6f490bf07b9a1d3bc7a Mon Sep 17 00:00:00 2001 From: clyhtsuriva Date: Thu, 7 May 2020 08:47:04 +0200 Subject: ajout de SSL --- www/apache-modified/apache2.conf | 233 -- www/apache-modified/help.txt | 13 - www/server-config/apache2/apache2.conf | 233 ++ .../apache2/conf-available/charset.conf | 8 + .../apache2/conf-available/javascript-common.conf | 5 + .../conf-available/localized-error-pages.conf | 81 + .../conf-available/other-vhosts-access-log.conf | 4 + .../apache2/conf-available/security.conf | 73 + .../apache2/conf-available/serve-cgi-bin.conf | 20 + .../apache2/conf-available/ssl-params.conf | 16 + .../apache2/conf-enabled/charset.conf | 1 + .../conf-enabled/localized-error-pages.conf | 1 + .../conf-enabled/other-vhosts-access-log.conf | 1 + .../apache2/conf-enabled/security.conf | 1 + .../apache2/conf-enabled/serve-cgi-bin.conf | 1 + .../apache2/conf-enabled/ssl-params.conf | 1 + www/server-config/apache2/envvars | 47 + www/server-config/apache2/magic | 935 ++++++ .../apache2/mods-available/access_compat.load | 2 + .../apache2/mods-available/actions.conf | 11 + .../apache2/mods-available/actions.load | 1 + .../apache2/mods-available/alias.conf | 24 + .../apache2/mods-available/alias.load | 1 + .../apache2/mods-available/allowmethods.load | 1 + www/server-config/apache2/mods-available/asis.load | 2 + .../apache2/mods-available/auth_basic.load | 2 + .../apache2/mods-available/auth_digest.load | 2 + .../apache2/mods-available/auth_form.load | 2 + .../apache2/mods-available/authn_anon.load | 1 + .../apache2/mods-available/authn_core.load | 1 + .../apache2/mods-available/authn_dbd.load | 2 + .../apache2/mods-available/authn_dbm.load | 1 + .../apache2/mods-available/authn_file.load | 1 + .../apache2/mods-available/authn_socache.load | 1 + .../apache2/mods-available/authnz_fcgi.load | 1 + .../apache2/mods-available/authnz_ldap.load | 2 + .../apache2/mods-available/authz_core.load | 1 + .../apache2/mods-available/authz_dbd.load | 2 + .../apache2/mods-available/authz_dbm.load | 2 + .../apache2/mods-available/authz_groupfile.load | 2 + .../apache2/mods-available/authz_host.load | 2 + .../apache2/mods-available/authz_owner.load | 1 + .../apache2/mods-available/authz_user.load | 2 + .../apache2/mods-available/autoindex.conf | 96 + .../apache2/mods-available/autoindex.load | 1 + .../apache2/mods-available/brotli.load | 1 + .../apache2/mods-available/buffer.load | 1 + .../apache2/mods-available/cache.load | 1 + .../apache2/mods-available/cache_disk.conf | 27 + .../apache2/mods-available/cache_disk.load | 2 + .../apache2/mods-available/cache_socache.load | 2 + .../apache2/mods-available/cern_meta.load | 1 + www/server-config/apache2/mods-available/cgi.load | 1 + www/server-config/apache2/mods-available/cgid.conf | 4 + www/server-config/apache2/mods-available/cgid.load | 1 + .../apache2/mods-available/charset_lite.load | 1 + www/server-config/apache2/mods-available/data.load | 1 + www/server-config/apache2/mods-available/dav.load | 1 + .../apache2/mods-available/dav_fs.conf | 3 + .../apache2/mods-available/dav_fs.load | 2 + .../apache2/mods-available/dav_lock.load | 1 + www/server-config/apache2/mods-available/dbd.load | 1 + .../apache2/mods-available/deflate.conf | 10 + .../apache2/mods-available/deflate.load | 2 + .../apache2/mods-available/dialup.load | 1 + www/server-config/apache2/mods-available/dir.conf | 5 + www/server-config/apache2/mods-available/dir.load | 1 + .../apache2/mods-available/dnssd.conf | 6 + .../apache2/mods-available/dnssd.load | 1 + .../apache2/mods-available/dump_io.load | 1 + www/server-config/apache2/mods-available/echo.load | 1 + www/server-config/apache2/mods-available/env.load | 1 + .../apache2/mods-available/expires.load | 1 + .../apache2/mods-available/ext_filter.load | 1 + .../apache2/mods-available/file_cache.load | 2 + .../apache2/mods-available/filter.load | 1 + .../apache2/mods-available/headers.load | 1 + .../apache2/mods-available/heartbeat.load | 3 + .../apache2/mods-available/heartmonitor.load | 3 + .../apache2/mods-available/http2.conf | 34 + .../apache2/mods-available/http2.load | 1 + .../apache2/mods-available/ident.load | 1 + .../apache2/mods-available/imagemap.load | 1 + .../apache2/mods-available/include.load | 2 + www/server-config/apache2/mods-available/info.conf | 15 + www/server-config/apache2/mods-available/info.load | 1 + .../mods-available/lbmethod_bybusyness.load | 2 + .../mods-available/lbmethod_byrequests.load | 2 + .../apache2/mods-available/lbmethod_bytraffic.load | 2 + .../apache2/mods-available/lbmethod_heartbeat.load | 2 + www/server-config/apache2/mods-available/ldap.conf | 6 + www/server-config/apache2/mods-available/ldap.load | 1 + .../apache2/mods-available/log_debug.load | 1 + .../apache2/mods-available/log_forensic.load | 1 + www/server-config/apache2/mods-available/lua.load | 1 + .../apache2/mods-available/macro.load | 1 + www/server-config/apache2/mods-available/md.load | 1 + www/server-config/apache2/mods-available/mime.conf | 251 ++ www/server-config/apache2/mods-available/mime.load | 1 + .../apache2/mods-available/mime_magic.conf | 5 + .../apache2/mods-available/mime_magic.load | 1 + .../apache2/mods-available/mpm_event.conf | 18 + .../apache2/mods-available/mpm_event.load | 2 + .../apache2/mods-available/mpm_prefork.conf | 16 + .../apache2/mods-available/mpm_prefork.load | 2 + .../apache2/mods-available/mpm_worker.conf | 22 + .../apache2/mods-available/mpm_worker.load | 2 + .../apache2/mods-available/negotiation.conf | 20 + .../apache2/mods-available/negotiation.load | 1 + .../apache2/mods-available/proxy.conf | 27 + .../apache2/mods-available/proxy.load | 1 + .../apache2/mods-available/proxy_ajp.load | 2 + .../apache2/mods-available/proxy_balancer.conf | 15 + .../apache2/mods-available/proxy_balancer.load | 2 + .../apache2/mods-available/proxy_connect.load | 2 + .../apache2/mods-available/proxy_express.load | 2 + .../apache2/mods-available/proxy_fcgi.load | 2 + .../apache2/mods-available/proxy_fdpass.load | 2 + .../apache2/mods-available/proxy_ftp.conf | 8 + .../apache2/mods-available/proxy_ftp.load | 2 + .../apache2/mods-available/proxy_hcheck.load | 2 + .../apache2/mods-available/proxy_html.conf | 75 + .../apache2/mods-available/proxy_html.load | 2 + .../apache2/mods-available/proxy_http.load | 2 + .../apache2/mods-available/proxy_http2.load | 2 + .../apache2/mods-available/proxy_scgi.load | 2 + .../apache2/mods-available/proxy_uwsgi.load | 2 + .../apache2/mods-available/proxy_wstunnel.load | 2 + .../apache2/mods-available/python.load | 1 + .../apache2/mods-available/ratelimit.load | 2 + .../apache2/mods-available/reflector.load | 1 + .../apache2/mods-available/remoteip.load | 1 + .../apache2/mods-available/reqtimeout.conf | 27 + .../apache2/mods-available/reqtimeout.load | 1 + .../apache2/mods-available/request.load | 1 + .../apache2/mods-available/rewrite.load | 1 + www/server-config/apache2/mods-available/sed.load | 1 + .../apache2/mods-available/session.load | 1 + .../apache2/mods-available/session_cookie.load | 2 + .../apache2/mods-available/session_crypto.load | 2 + .../apache2/mods-available/session_dbd.load | 2 + .../apache2/mods-available/setenvif.conf | 32 + .../apache2/mods-available/setenvif.load | 1 + .../apache2/mods-available/slotmem_plain.load | 1 + .../apache2/mods-available/slotmem_shm.load | 1 + .../apache2/mods-available/socache_dbm.load | 1 + .../apache2/mods-available/socache_memcache.load | 1 + .../apache2/mods-available/socache_shmcb.load | 1 + .../apache2/mods-available/speling.load | 1 + www/server-config/apache2/mods-available/ssl.conf | 85 + www/server-config/apache2/mods-available/ssl.load | 2 + .../apache2/mods-available/status.conf | 29 + .../apache2/mods-available/status.load | 1 + .../apache2/mods-available/substitute.load | 1 + .../apache2/mods-available/suexec.load | 1 + .../apache2/mods-available/unique_id.load | 1 + .../apache2/mods-available/userdir.conf | 12 + .../apache2/mods-available/userdir.load | 1 + .../apache2/mods-available/usertrack.load | 1 + .../apache2/mods-available/vhost_alias.load | 1 + .../apache2/mods-available/xml2enc.load | 1 + .../apache2/mods-enabled/access_compat.load | 1 + www/server-config/apache2/mods-enabled/alias.conf | 1 + www/server-config/apache2/mods-enabled/alias.load | 1 + .../apache2/mods-enabled/auth_basic.load | 1 + .../apache2/mods-enabled/authn_core.load | 1 + .../apache2/mods-enabled/authn_file.load | 1 + .../apache2/mods-enabled/authz_core.load | 1 + .../apache2/mods-enabled/authz_host.load | 1 + .../apache2/mods-enabled/authz_user.load | 1 + .../apache2/mods-enabled/autoindex.conf | 1 + .../apache2/mods-enabled/autoindex.load | 1 + .../apache2/mods-enabled/deflate.conf | 1 + .../apache2/mods-enabled/deflate.load | 1 + www/server-config/apache2/mods-enabled/dir.conf | 1 + www/server-config/apache2/mods-enabled/dir.load | 1 + www/server-config/apache2/mods-enabled/env.load | 1 + www/server-config/apache2/mods-enabled/filter.load | 1 + .../apache2/mods-enabled/headers.load | 1 + www/server-config/apache2/mods-enabled/mime.conf | 1 + www/server-config/apache2/mods-enabled/mime.load | 1 + .../apache2/mods-enabled/mpm_event.conf | 1 + .../apache2/mods-enabled/mpm_event.load | 1 + .../apache2/mods-enabled/negotiation.conf | 1 + .../apache2/mods-enabled/negotiation.load | 1 + www/server-config/apache2/mods-enabled/python.load | 1 + .../apache2/mods-enabled/reqtimeout.conf | 1 + .../apache2/mods-enabled/reqtimeout.load | 1 + .../apache2/mods-enabled/setenvif.conf | 1 + .../apache2/mods-enabled/setenvif.load | 1 + .../apache2/mods-enabled/socache_shmcb.load | 1 + www/server-config/apache2/mods-enabled/ssl.conf | 1 + www/server-config/apache2/mods-enabled/ssl.load | 1 + www/server-config/apache2/mods-enabled/status.conf | 1 + www/server-config/apache2/mods-enabled/status.load | 1 + www/server-config/apache2/ports.conf | 15 + .../apache2/sites-available/000-default.conf | 33 + .../apache2/sites-available/default-ssl.conf | 138 + .../apache2/sites-enabled/000-default.conf | 1 + .../apache2/sites-enabled/default-ssl.conf | 1 + www/server-config/help.txt | 13 + www/server-config/ssl/certs/02265526.0 | 1 + www/server-config/ssl/certs/03179a64.0 | 1 + www/server-config/ssl/certs/062cdee6.0 | 1 + www/server-config/ssl/certs/064e0aa9.0 | 1 + www/server-config/ssl/certs/06dc52d5.0 | 1 + www/server-config/ssl/certs/080911ac.0 | 1 + www/server-config/ssl/certs/09789157.0 | 1 + www/server-config/ssl/certs/0b1b94ef.0 | 1 + www/server-config/ssl/certs/0bf05006.0 | 1 + www/server-config/ssl/certs/0c4c9b6c.0 | 1 + www/server-config/ssl/certs/0f6fa695.0 | 1 + www/server-config/ssl/certs/106f3e4d.0 | 1 + www/server-config/ssl/certs/116bf586.0 | 1 + www/server-config/ssl/certs/128805a3.0 | 1 + www/server-config/ssl/certs/157753a5.0 | 1 + www/server-config/ssl/certs/1636090b.0 | 1 + www/server-config/ssl/certs/18856ac4.0 | 1 + www/server-config/ssl/certs/1d3472b9.0 | 1 + www/server-config/ssl/certs/1e08bfd1.0 | 1 + www/server-config/ssl/certs/1e09d511.0 | 1 + www/server-config/ssl/certs/244b5494.0 | 1 + www/server-config/ssl/certs/2ae6433e.0 | 1 + www/server-config/ssl/certs/2b349938.0 | 1 + www/server-config/ssl/certs/2c543cd1.0 | 1 + www/server-config/ssl/certs/2e4eed3c.0 | 1 + www/server-config/ssl/certs/2e5ac55d.0 | 1 + www/server-config/ssl/certs/32888f65.0 | 1 + www/server-config/ssl/certs/349f2832.0 | 1 + www/server-config/ssl/certs/3513523f.0 | 1 + www/server-config/ssl/certs/3bde41ac.0 | 1 + www/server-config/ssl/certs/3e44d2f7.0 | 1 + www/server-config/ssl/certs/3e45d192.0 | 1 + www/server-config/ssl/certs/40193066.0 | 1 + www/server-config/ssl/certs/4042bcee.0 | 1 + www/server-config/ssl/certs/40547a79.0 | 1 + www/server-config/ssl/certs/4304c5e5.0 | 1 + www/server-config/ssl/certs/480720ec.0 | 1 + www/server-config/ssl/certs/48bec511.0 | 1 + www/server-config/ssl/certs/4a6481c9.0 | 1 + www/server-config/ssl/certs/4bfab552.0 | 1 + www/server-config/ssl/certs/4f316efb.0 | 1 + www/server-config/ssl/certs/5273a94c.0 | 1 + www/server-config/ssl/certs/5443e9e3.0 | 1 + www/server-config/ssl/certs/54657681.0 | 1 + www/server-config/ssl/certs/57bcb2da.0 | 1 + www/server-config/ssl/certs/5a4d6896.0 | 1 + www/server-config/ssl/certs/5ad8a5d6.0 | 1 + www/server-config/ssl/certs/5c44d531.0 | 1 + www/server-config/ssl/certs/5cd81ad7.0 | 1 + www/server-config/ssl/certs/5d3033c5.0 | 1 + www/server-config/ssl/certs/5f15c80c.0 | 1 + www/server-config/ssl/certs/607986c7.0 | 1 + www/server-config/ssl/certs/6410666e.0 | 1 + www/server-config/ssl/certs/653b494a.0 | 1 + www/server-config/ssl/certs/6b99d060.0 | 1 + www/server-config/ssl/certs/6d41d539.0 | 1 + www/server-config/ssl/certs/6fa5da56.0 | 1 + www/server-config/ssl/certs/706f604c.0 | 1 + www/server-config/ssl/certs/749e9e03.0 | 1 + www/server-config/ssl/certs/75d1b2ed.0 | 1 + www/server-config/ssl/certs/76cb8f92.0 | 1 + www/server-config/ssl/certs/76faf6c0.0 | 1 + www/server-config/ssl/certs/7719f463.0 | 1 + www/server-config/ssl/certs/773e07ad.0 | 1 + www/server-config/ssl/certs/7aaf71c0.0 | 1 + www/server-config/ssl/certs/7d0b38bd.0 | 1 + www/server-config/ssl/certs/7f3d5d1d.0 | 1 + www/server-config/ssl/certs/812e17de.0 | 1 + www/server-config/ssl/certs/8160b96c.0 | 1 + www/server-config/ssl/certs/8867006a.0 | 1 + www/server-config/ssl/certs/8cb5ee0f.0 | 1 + www/server-config/ssl/certs/8d86cdd1.0 | 1 + www/server-config/ssl/certs/930ac5d2.0 | 1 + www/server-config/ssl/certs/93bc0acc.0 | 1 + www/server-config/ssl/certs/988a38cb.0 | 1 + www/server-config/ssl/certs/9c2e7d30.0 | 1 + www/server-config/ssl/certs/9c8dfbd4.0 | 1 + www/server-config/ssl/certs/9d04f354.0 | 1 + www/server-config/ssl/certs/9f0f5fd6.0 | 1 + www/server-config/ssl/certs/ACCVRAIZ1.pem | 1 + www/server-config/ssl/certs/AC_RAIZ_FNMT-RCM.pem | 1 + .../ssl/certs/Actalis_Authentication_Root_CA.pem | 1 + .../ssl/certs/AddTrust_External_Root.pem | 1 + .../ssl/certs/AffirmTrust_Commercial.pem | 1 + .../ssl/certs/AffirmTrust_Networking.pem | 1 + .../ssl/certs/AffirmTrust_Premium.pem | 1 + .../ssl/certs/AffirmTrust_Premium_ECC.pem | 1 + www/server-config/ssl/certs/Amazon_Root_CA_1.pem | 1 + www/server-config/ssl/certs/Amazon_Root_CA_2.pem | 1 + www/server-config/ssl/certs/Amazon_Root_CA_3.pem | 1 + www/server-config/ssl/certs/Amazon_Root_CA_4.pem | 1 + .../ssl/certs/Atos_TrustedRoot_2011.pem | 1 + ...ertificacion_Firmaprofesional_CIF_A62634068.pem | 1 + .../ssl/certs/Baltimore_CyberTrust_Root.pem | 1 + .../ssl/certs/Buypass_Class_2_Root_CA.pem | 1 + .../ssl/certs/Buypass_Class_3_Root_CA.pem | 1 + www/server-config/ssl/certs/CA_Disig_Root_R2.pem | 1 + www/server-config/ssl/certs/CFCA_EV_ROOT.pem | 1 + .../ssl/certs/COMODO_Certification_Authority.pem | 1 + .../certs/COMODO_ECC_Certification_Authority.pem | 1 + .../certs/COMODO_RSA_Certification_Authority.pem | 1 + www/server-config/ssl/certs/Certigna.pem | 1 + .../ssl/certs/Certinomis_-_Root_CA.pem | 1 + .../ssl/certs/Certplus_Class_2_Primary_CA.pem | 1 + .../ssl/certs/Certum_Trusted_Network_CA.pem | 1 + .../ssl/certs/Certum_Trusted_Network_CA_2.pem | 1 + .../ssl/certs/Chambers_of_Commerce_Root_-_2008.pem | 1 + .../ssl/certs/Comodo_AAA_Services_root.pem | 1 + .../ssl/certs/Cybertrust_Global_Root.pem | 1 + .../ssl/certs/D-TRUST_Root_Class_3_CA_2_2009.pem | 1 + .../certs/D-TRUST_Root_Class_3_CA_2_EV_2009.pem | 1 + www/server-config/ssl/certs/DST_Root_CA_X3.pem | 1 + .../ssl/certs/Deutsche_Telekom_Root_CA_2.pem | 1 + .../ssl/certs/DigiCert_Assured_ID_Root_CA.pem | 1 + .../ssl/certs/DigiCert_Assured_ID_Root_G2.pem | 1 + .../ssl/certs/DigiCert_Assured_ID_Root_G3.pem | 1 + .../ssl/certs/DigiCert_Global_Root_CA.pem | 1 + .../ssl/certs/DigiCert_Global_Root_G2.pem | 1 + .../ssl/certs/DigiCert_Global_Root_G3.pem | 1 + .../certs/DigiCert_High_Assurance_EV_Root_CA.pem | 1 + .../ssl/certs/DigiCert_Trusted_Root_G4.pem | 1 + .../ssl/certs/E-Tugra_Certification_Authority.pem | 1 + www/server-config/ssl/certs/EC-ACC.pem | 1 + .../ssl/certs/EE_Certification_Centre_Root_CA.pem | 1 + .../Entrust.net_Premium_2048_Secure_Server_CA.pem | 1 + .../certs/Entrust_Root_Certification_Authority.pem | 1 + .../Entrust_Root_Certification_Authority_-_EC1.pem | 1 + .../Entrust_Root_Certification_Authority_-_G2.pem | 1 + .../ssl/certs/GDCA_TrustAUTH_R5_ROOT.pem | 1 + www/server-config/ssl/certs/GeoTrust_Global_CA.pem | 1 + .../GeoTrust_Primary_Certification_Authority.pem | 1 + ...oTrust_Primary_Certification_Authority_-_G2.pem | 1 + ...oTrust_Primary_Certification_Authority_-_G3.pem | 1 + .../ssl/certs/GeoTrust_Universal_CA.pem | 1 + .../ssl/certs/GeoTrust_Universal_CA_2.pem | 1 + .../ssl/certs/GlobalSign_ECC_Root_CA_-_R4.pem | 1 + .../ssl/certs/GlobalSign_ECC_Root_CA_-_R5.pem | 1 + www/server-config/ssl/certs/GlobalSign_Root_CA.pem | 1 + .../ssl/certs/GlobalSign_Root_CA_-_R2.pem | 1 + .../ssl/certs/GlobalSign_Root_CA_-_R3.pem | 1 + .../ssl/certs/GlobalSign_Root_CA_-_R6.pem | 1 + .../ssl/certs/Global_Chambersign_Root_-_2008.pem | 1 + .../ssl/certs/Go_Daddy_Class_2_CA.pem | 1 + .../Go_Daddy_Root_Certificate_Authority_-_G2.pem | 1 + ...c_and_Research_Institutions_ECC_RootCA_2015.pem | 1 + ...demic_and_Research_Institutions_RootCA_2011.pem | 1 + ...demic_and_Research_Institutions_RootCA_2015.pem | 1 + .../ssl/certs/Hongkong_Post_Root_CA_1.pem | 1 + www/server-config/ssl/certs/ISRG_Root_X1.pem | 1 + .../ssl/certs/IdenTrust_Commercial_Root_CA_1.pem | 1 + .../certs/IdenTrust_Public_Sector_Root_CA_1.pem | 1 + www/server-config/ssl/certs/Izenpe.com.pem | 1 + .../ssl/certs/LuxTrust_Global_Root_2.pem | 1 + .../ssl/certs/Microsec_e-Szigno_Root_CA_2009.pem | 1 + ..._F\305\221tan\303\272s\303\255tv\303\241ny.pem" | 1 + .../Network_Solutions_Certificate_Authority.pem | 1 + .../ssl/certs/OISTE_WISeKey_Global_Root_GA_CA.pem | 1 + .../ssl/certs/OISTE_WISeKey_Global_Root_GB_CA.pem | 1 + .../ssl/certs/OISTE_WISeKey_Global_Root_GC_CA.pem | 1 + www/server-config/ssl/certs/QuoVadis_Root_CA.pem | 1 + .../ssl/certs/QuoVadis_Root_CA_1_G3.pem | 1 + www/server-config/ssl/certs/QuoVadis_Root_CA_2.pem | 1 + .../ssl/certs/QuoVadis_Root_CA_2_G3.pem | 1 + www/server-config/ssl/certs/QuoVadis_Root_CA_3.pem | 1 + .../ssl/certs/QuoVadis_Root_CA_3_G3.pem | 1 + ...SSL.com_EV_Root_Certification_Authority_ECC.pem | 1 + ....com_EV_Root_Certification_Authority_RSA_R2.pem | 1 + .../SSL.com_Root_Certification_Authority_ECC.pem | 1 + .../SSL.com_Root_Certification_Authority_RSA.pem | 1 + www/server-config/ssl/certs/SZAFIR_ROOT_CA2.pem | 1 + .../ssl/certs/SecureSign_RootCA11.pem | 1 + www/server-config/ssl/certs/SecureTrust_CA.pem | 1 + www/server-config/ssl/certs/Secure_Global_CA.pem | 1 + .../ssl/certs/Security_Communication_RootCA2.pem | 1 + .../ssl/certs/Security_Communication_Root_CA.pem | 1 + .../ssl/certs/Sonera_Class_2_Root_CA.pem | 1 + .../ssl/certs/Staat_der_Nederlanden_EV_Root_CA.pem | 1 + .../certs/Staat_der_Nederlanden_Root_CA_-_G2.pem | 1 + .../certs/Staat_der_Nederlanden_Root_CA_-_G3.pem | 1 + .../ssl/certs/Starfield_Class_2_CA.pem | 1 + .../Starfield_Root_Certificate_Authority_-_G2.pem | 1 + ...ld_Services_Root_Certificate_Authority_-_G2.pem | 1 + .../ssl/certs/SwissSign_Gold_CA_-_G2.pem | 1 + .../ssl/certs/SwissSign_Silver_CA_-_G2.pem | 1 + .../ssl/certs/T-TeleSec_GlobalRoot_Class_2.pem | 1 + .../ssl/certs/T-TeleSec_GlobalRoot_Class_3.pem | 1 + ...BITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.pem | 1 + .../ssl/certs/TWCA_Global_Root_CA.pem | 1 + .../certs/TWCA_Root_Certification_Authority.pem | 1 + www/server-config/ssl/certs/Taiwan_GRCA.pem | 1 + .../ssl/certs/TeliaSonera_Root_CA_v1.pem | 1 + www/server-config/ssl/certs/TrustCor_ECA-1.pem | 1 + .../ssl/certs/TrustCor_RootCert_CA-1.pem | 1 + .../ssl/certs/TrustCor_RootCert_CA-2.pem | 1 + .../ssl/certs/Trustis_FPS_Root_CA.pem | 1 + .../USERTrust_ECC_Certification_Authority.pem | 1 + .../USERTrust_RSA_Certification_Authority.pem | 1 + ...Public_Primary_Certification_Authority_-_G4.pem | 1 + ...Public_Primary_Certification_Authority_-_G5.pem | 1 + ...Sign_Universal_Root_Certification_Authority.pem | 1 + ...Public_Primary_Certification_Authority_-_G3.pem | 1 + .../ssl/certs/XRamp_Global_CA_Root.pem | 1 + www/server-config/ssl/certs/a72b3a7a | 1 + www/server-config/ssl/certs/a94d09e5.0 | 1 + www/server-config/ssl/certs/ad088e1d.0 | 1 + www/server-config/ssl/certs/aee5f10d.0 | 1 + www/server-config/ssl/certs/b0e59380.0 | 1 + www/server-config/ssl/certs/b1159c4c.0 | 1 + www/server-config/ssl/certs/b1b8a7f3.0 | 1 + www/server-config/ssl/certs/b204d74a.0 | 1 + www/server-config/ssl/certs/b66938e9.0 | 1 + www/server-config/ssl/certs/b727005e.0 | 1 + www/server-config/ssl/certs/b7a5b843.0 | 1 + www/server-config/ssl/certs/ba89ed3b.0 | 1 + www/server-config/ssl/certs/c01cdfa2.0 | 1 + www/server-config/ssl/certs/c089bbbd.0 | 1 + www/server-config/ssl/certs/c0ff1f52.0 | 1 + www/server-config/ssl/certs/c28a8a30.0 | 1 + www/server-config/ssl/certs/c47d9980.0 | 1 + www/server-config/ssl/certs/ca-certificates.crt | 3285 ++++++++++++++++++++ www/server-config/ssl/certs/ca6e4ad9.0 | 1 + www/server-config/ssl/certs/cbf06781.0 | 1 + www/server-config/ssl/certs/cc450945.0 | 1 + www/server-config/ssl/certs/cd58d51e.0 | 1 + www/server-config/ssl/certs/cd8c0d63.0 | 1 + www/server-config/ssl/certs/ce5e74ef.0 | 1 + www/server-config/ssl/certs/certSIGN_ROOT_CA.pem | 1 + www/server-config/ssl/certs/d4dae3dd.0 | 1 + www/server-config/ssl/certs/d6325660.0 | 1 + www/server-config/ssl/certs/d7e8dc79.0 | 1 + www/server-config/ssl/certs/d853d49e.0 | 1 + www/server-config/ssl/certs/dc4d6a89.0 | 1 + www/server-config/ssl/certs/dd8e9d41.0 | 1 + www/server-config/ssl/certs/de6d66f3.0 | 1 + www/server-config/ssl/certs/def36a68.0 | 1 + www/server-config/ssl/certs/dhparam.pem | 8 + www/server-config/ssl/certs/e113c810.0 | 1 + www/server-config/ssl/certs/e18bfb83.0 | 1 + www/server-config/ssl/certs/e2799e36.0 | 1 + www/server-config/ssl/certs/e36a6752.0 | 1 + www/server-config/ssl/certs/e73d606e.0 | 1 + www/server-config/ssl/certs/e8de2f56.0 | 1 + .../certs/ePKI_Root_Certification_Authority.pem | 1 + www/server-config/ssl/certs/ee64a828.0 | 1 + www/server-config/ssl/certs/eed8c118.0 | 1 + www/server-config/ssl/certs/ef954a4e.0 | 1 + www/server-config/ssl/certs/f060240e.0 | 1 + www/server-config/ssl/certs/f081611a.0 | 1 + www/server-config/ssl/certs/f0c70a8d.0 | 1 + www/server-config/ssl/certs/f30dd6ad.0 | 1 + www/server-config/ssl/certs/f3377b1b.0 | 1 + www/server-config/ssl/certs/f387163d.0 | 1 + www/server-config/ssl/certs/f39fc864.0 | 1 + www/server-config/ssl/certs/fc5a8f99.0 | 1 + www/server-config/ssl/certs/fe8a2cd8.0 | 1 + www/server-config/ssl/certs/ff34af3f.0 | 1 + www/server-config/ssl/certs/java/cacerts | Bin 0 -> 151508 bytes www/server-config/ssl/certs/localhost.crt | 18 + www/server-config/ssl/certs/ssl-cert-snakeoil.pem | 18 + .../ssl/certs/thawte_Primary_Root_CA.pem | 1 + .../ssl/certs/thawte_Primary_Root_CA_-_G2.pem | 1 + .../ssl/certs/thawte_Primary_Root_CA_-_G3.pem | 1 + www/server-config/ssl/openssl.cnf | 362 +++ www/server-config/ssl/private/localhost.key | 28 + .../ssl/private/ssl-cert-snakeoil.key | 28 + 466 files changed, 6714 insertions(+), 246 deletions(-) delete mode 100755 www/apache-modified/apache2.conf delete mode 100644 www/apache-modified/help.txt create mode 100644 www/server-config/apache2/apache2.conf create mode 100644 www/server-config/apache2/conf-available/charset.conf create mode 100644 www/server-config/apache2/conf-available/javascript-common.conf create mode 100644 www/server-config/apache2/conf-available/localized-error-pages.conf create mode 100644 www/server-config/apache2/conf-available/other-vhosts-access-log.conf create mode 100644 www/server-config/apache2/conf-available/security.conf create mode 100644 www/server-config/apache2/conf-available/serve-cgi-bin.conf create mode 100644 www/server-config/apache2/conf-available/ssl-params.conf create mode 120000 www/server-config/apache2/conf-enabled/charset.conf create mode 120000 www/server-config/apache2/conf-enabled/localized-error-pages.conf create mode 120000 www/server-config/apache2/conf-enabled/other-vhosts-access-log.conf create mode 120000 www/server-config/apache2/conf-enabled/security.conf create mode 120000 www/server-config/apache2/conf-enabled/serve-cgi-bin.conf create mode 120000 www/server-config/apache2/conf-enabled/ssl-params.conf create mode 100644 www/server-config/apache2/envvars create mode 100644 www/server-config/apache2/magic create mode 100644 www/server-config/apache2/mods-available/access_compat.load create mode 100644 www/server-config/apache2/mods-available/actions.conf create mode 100644 www/server-config/apache2/mods-available/actions.load create mode 100644 www/server-config/apache2/mods-available/alias.conf create mode 100644 www/server-config/apache2/mods-available/alias.load create mode 100644 www/server-config/apache2/mods-available/allowmethods.load create mode 100644 www/server-config/apache2/mods-available/asis.load create mode 100644 www/server-config/apache2/mods-available/auth_basic.load create mode 100644 www/server-config/apache2/mods-available/auth_digest.load create mode 100644 www/server-config/apache2/mods-available/auth_form.load create mode 100644 www/server-config/apache2/mods-available/authn_anon.load create mode 100644 www/server-config/apache2/mods-available/authn_core.load create mode 100644 www/server-config/apache2/mods-available/authn_dbd.load create mode 100644 www/server-config/apache2/mods-available/authn_dbm.load create mode 100644 www/server-config/apache2/mods-available/authn_file.load create mode 100644 www/server-config/apache2/mods-available/authn_socache.load create mode 100644 www/server-config/apache2/mods-available/authnz_fcgi.load create mode 100644 www/server-config/apache2/mods-available/authnz_ldap.load create mode 100644 www/server-config/apache2/mods-available/authz_core.load create mode 100644 www/server-config/apache2/mods-available/authz_dbd.load create mode 100644 www/server-config/apache2/mods-available/authz_dbm.load create mode 100644 www/server-config/apache2/mods-available/authz_groupfile.load create mode 100644 www/server-config/apache2/mods-available/authz_host.load create mode 100644 www/server-config/apache2/mods-available/authz_owner.load create mode 100644 www/server-config/apache2/mods-available/authz_user.load create mode 100644 www/server-config/apache2/mods-available/autoindex.conf create mode 100644 www/server-config/apache2/mods-available/autoindex.load create mode 100644 www/server-config/apache2/mods-available/brotli.load create mode 100644 www/server-config/apache2/mods-available/buffer.load create mode 100644 www/server-config/apache2/mods-available/cache.load create mode 100644 www/server-config/apache2/mods-available/cache_disk.conf create mode 100644 www/server-config/apache2/mods-available/cache_disk.load create mode 100644 www/server-config/apache2/mods-available/cache_socache.load create mode 100644 www/server-config/apache2/mods-available/cern_meta.load create mode 100644 www/server-config/apache2/mods-available/cgi.load create mode 100644 www/server-config/apache2/mods-available/cgid.conf create mode 100644 www/server-config/apache2/mods-available/cgid.load create mode 100644 www/server-config/apache2/mods-available/charset_lite.load create mode 100644 www/server-config/apache2/mods-available/data.load create mode 100644 www/server-config/apache2/mods-available/dav.load create mode 100644 www/server-config/apache2/mods-available/dav_fs.conf create mode 100644 www/server-config/apache2/mods-available/dav_fs.load create mode 100644 www/server-config/apache2/mods-available/dav_lock.load create mode 100644 www/server-config/apache2/mods-available/dbd.load create mode 100644 www/server-config/apache2/mods-available/deflate.conf create mode 100644 www/server-config/apache2/mods-available/deflate.load create mode 100644 www/server-config/apache2/mods-available/dialup.load create mode 100644 www/server-config/apache2/mods-available/dir.conf create mode 100644 www/server-config/apache2/mods-available/dir.load create mode 100644 www/server-config/apache2/mods-available/dnssd.conf create mode 100644 www/server-config/apache2/mods-available/dnssd.load create mode 100644 www/server-config/apache2/mods-available/dump_io.load create mode 100644 www/server-config/apache2/mods-available/echo.load create mode 100644 www/server-config/apache2/mods-available/env.load create mode 100644 www/server-config/apache2/mods-available/expires.load create mode 100644 www/server-config/apache2/mods-available/ext_filter.load create mode 100644 www/server-config/apache2/mods-available/file_cache.load create mode 100644 www/server-config/apache2/mods-available/filter.load create mode 100644 www/server-config/apache2/mods-available/headers.load create mode 100644 www/server-config/apache2/mods-available/heartbeat.load create mode 100644 www/server-config/apache2/mods-available/heartmonitor.load create mode 100644 www/server-config/apache2/mods-available/http2.conf create mode 100644 www/server-config/apache2/mods-available/http2.load create mode 100644 www/server-config/apache2/mods-available/ident.load create mode 100644 www/server-config/apache2/mods-available/imagemap.load create mode 100644 www/server-config/apache2/mods-available/include.load create mode 100644 www/server-config/apache2/mods-available/info.conf create mode 100644 www/server-config/apache2/mods-available/info.load create mode 100644 www/server-config/apache2/mods-available/lbmethod_bybusyness.load create mode 100644 www/server-config/apache2/mods-available/lbmethod_byrequests.load create mode 100644 www/server-config/apache2/mods-available/lbmethod_bytraffic.load create mode 100644 www/server-config/apache2/mods-available/lbmethod_heartbeat.load create mode 100644 www/server-config/apache2/mods-available/ldap.conf create mode 100644 www/server-config/apache2/mods-available/ldap.load create mode 100644 www/server-config/apache2/mods-available/log_debug.load create mode 100644 www/server-config/apache2/mods-available/log_forensic.load create mode 100644 www/server-config/apache2/mods-available/lua.load create mode 100644 www/server-config/apache2/mods-available/macro.load create mode 100644 www/server-config/apache2/mods-available/md.load create mode 100644 www/server-config/apache2/mods-available/mime.conf create mode 100644 www/server-config/apache2/mods-available/mime.load create mode 100644 www/server-config/apache2/mods-available/mime_magic.conf create mode 100644 www/server-config/apache2/mods-available/mime_magic.load create mode 100644 www/server-config/apache2/mods-available/mpm_event.conf create mode 100644 www/server-config/apache2/mods-available/mpm_event.load create mode 100644 www/server-config/apache2/mods-available/mpm_prefork.conf create mode 100644 www/server-config/apache2/mods-available/mpm_prefork.load create mode 100644 www/server-config/apache2/mods-available/mpm_worker.conf create mode 100644 www/server-config/apache2/mods-available/mpm_worker.load create mode 100644 www/server-config/apache2/mods-available/negotiation.conf create mode 100644 www/server-config/apache2/mods-available/negotiation.load create mode 100644 www/server-config/apache2/mods-available/proxy.conf create mode 100644 www/server-config/apache2/mods-available/proxy.load create mode 100644 www/server-config/apache2/mods-available/proxy_ajp.load create mode 100644 www/server-config/apache2/mods-available/proxy_balancer.conf create mode 100644 www/server-config/apache2/mods-available/proxy_balancer.load create mode 100644 www/server-config/apache2/mods-available/proxy_connect.load create mode 100644 www/server-config/apache2/mods-available/proxy_express.load create mode 100644 www/server-config/apache2/mods-available/proxy_fcgi.load create mode 100644 www/server-config/apache2/mods-available/proxy_fdpass.load create mode 100644 www/server-config/apache2/mods-available/proxy_ftp.conf create mode 100644 www/server-config/apache2/mods-available/proxy_ftp.load create mode 100644 www/server-config/apache2/mods-available/proxy_hcheck.load create mode 100644 www/server-config/apache2/mods-available/proxy_html.conf create mode 100644 www/server-config/apache2/mods-available/proxy_html.load create mode 100644 www/server-config/apache2/mods-available/proxy_http.load create mode 100644 www/server-config/apache2/mods-available/proxy_http2.load create mode 100644 www/server-config/apache2/mods-available/proxy_scgi.load create mode 100644 www/server-config/apache2/mods-available/proxy_uwsgi.load create mode 100644 www/server-config/apache2/mods-available/proxy_wstunnel.load create mode 100644 www/server-config/apache2/mods-available/python.load create mode 100644 www/server-config/apache2/mods-available/ratelimit.load create mode 100644 www/server-config/apache2/mods-available/reflector.load create mode 100644 www/server-config/apache2/mods-available/remoteip.load create mode 100644 www/server-config/apache2/mods-available/reqtimeout.conf create mode 100644 www/server-config/apache2/mods-available/reqtimeout.load create mode 100644 www/server-config/apache2/mods-available/request.load create mode 100644 www/server-config/apache2/mods-available/rewrite.load create mode 100644 www/server-config/apache2/mods-available/sed.load create mode 100644 www/server-config/apache2/mods-available/session.load create mode 100644 www/server-config/apache2/mods-available/session_cookie.load create mode 100644 www/server-config/apache2/mods-available/session_crypto.load create mode 100644 www/server-config/apache2/mods-available/session_dbd.load create mode 100644 www/server-config/apache2/mods-available/setenvif.conf create mode 100644 www/server-config/apache2/mods-available/setenvif.load create mode 100644 www/server-config/apache2/mods-available/slotmem_plain.load create mode 100644 www/server-config/apache2/mods-available/slotmem_shm.load create mode 100644 www/server-config/apache2/mods-available/socache_dbm.load create mode 100644 www/server-config/apache2/mods-available/socache_memcache.load create mode 100644 www/server-config/apache2/mods-available/socache_shmcb.load create mode 100644 www/server-config/apache2/mods-available/speling.load create mode 100644 www/server-config/apache2/mods-available/ssl.conf create mode 100644 www/server-config/apache2/mods-available/ssl.load create mode 100644 www/server-config/apache2/mods-available/status.conf create mode 100644 www/server-config/apache2/mods-available/status.load create mode 100644 www/server-config/apache2/mods-available/substitute.load create mode 100644 www/server-config/apache2/mods-available/suexec.load create mode 100644 www/server-config/apache2/mods-available/unique_id.load create mode 100644 www/server-config/apache2/mods-available/userdir.conf create mode 100644 www/server-config/apache2/mods-available/userdir.load create mode 100644 www/server-config/apache2/mods-available/usertrack.load create mode 100644 www/server-config/apache2/mods-available/vhost_alias.load create mode 100644 www/server-config/apache2/mods-available/xml2enc.load create mode 120000 www/server-config/apache2/mods-enabled/access_compat.load create mode 120000 www/server-config/apache2/mods-enabled/alias.conf create mode 120000 www/server-config/apache2/mods-enabled/alias.load create mode 120000 www/server-config/apache2/mods-enabled/auth_basic.load create mode 120000 www/server-config/apache2/mods-enabled/authn_core.load create mode 120000 www/server-config/apache2/mods-enabled/authn_file.load create mode 120000 www/server-config/apache2/mods-enabled/authz_core.load create mode 120000 www/server-config/apache2/mods-enabled/authz_host.load create mode 120000 www/server-config/apache2/mods-enabled/authz_user.load create mode 120000 www/server-config/apache2/mods-enabled/autoindex.conf create mode 120000 www/server-config/apache2/mods-enabled/autoindex.load create mode 120000 www/server-config/apache2/mods-enabled/deflate.conf create mode 120000 www/server-config/apache2/mods-enabled/deflate.load create mode 120000 www/server-config/apache2/mods-enabled/dir.conf create mode 120000 www/server-config/apache2/mods-enabled/dir.load create mode 120000 www/server-config/apache2/mods-enabled/env.load create mode 120000 www/server-config/apache2/mods-enabled/filter.load create mode 120000 www/server-config/apache2/mods-enabled/headers.load create mode 120000 www/server-config/apache2/mods-enabled/mime.conf create mode 120000 www/server-config/apache2/mods-enabled/mime.load create mode 120000 www/server-config/apache2/mods-enabled/mpm_event.conf create mode 120000 www/server-config/apache2/mods-enabled/mpm_event.load create mode 120000 www/server-config/apache2/mods-enabled/negotiation.conf create mode 120000 www/server-config/apache2/mods-enabled/negotiation.load create mode 120000 www/server-config/apache2/mods-enabled/python.load create mode 120000 www/server-config/apache2/mods-enabled/reqtimeout.conf create mode 120000 www/server-config/apache2/mods-enabled/reqtimeout.load create mode 120000 www/server-config/apache2/mods-enabled/setenvif.conf create mode 120000 www/server-config/apache2/mods-enabled/setenvif.load create mode 120000 www/server-config/apache2/mods-enabled/socache_shmcb.load create mode 120000 www/server-config/apache2/mods-enabled/ssl.conf create mode 120000 www/server-config/apache2/mods-enabled/ssl.load create mode 120000 www/server-config/apache2/mods-enabled/status.conf create mode 120000 www/server-config/apache2/mods-enabled/status.load create mode 100644 www/server-config/apache2/ports.conf create mode 100644 www/server-config/apache2/sites-available/000-default.conf create mode 100644 www/server-config/apache2/sites-available/default-ssl.conf create mode 120000 www/server-config/apache2/sites-enabled/000-default.conf create mode 120000 www/server-config/apache2/sites-enabled/default-ssl.conf create mode 100644 www/server-config/help.txt create mode 120000 www/server-config/ssl/certs/02265526.0 create mode 120000 www/server-config/ssl/certs/03179a64.0 create mode 120000 www/server-config/ssl/certs/062cdee6.0 create mode 120000 www/server-config/ssl/certs/064e0aa9.0 create mode 120000 www/server-config/ssl/certs/06dc52d5.0 create mode 120000 www/server-config/ssl/certs/080911ac.0 create mode 120000 www/server-config/ssl/certs/09789157.0 create mode 120000 www/server-config/ssl/certs/0b1b94ef.0 create mode 120000 www/server-config/ssl/certs/0bf05006.0 create mode 120000 www/server-config/ssl/certs/0c4c9b6c.0 create mode 120000 www/server-config/ssl/certs/0f6fa695.0 create mode 120000 www/server-config/ssl/certs/106f3e4d.0 create mode 120000 www/server-config/ssl/certs/116bf586.0 create mode 120000 www/server-config/ssl/certs/128805a3.0 create mode 120000 www/server-config/ssl/certs/157753a5.0 create mode 120000 www/server-config/ssl/certs/1636090b.0 create mode 120000 www/server-config/ssl/certs/18856ac4.0 create mode 120000 www/server-config/ssl/certs/1d3472b9.0 create mode 120000 www/server-config/ssl/certs/1e08bfd1.0 create mode 120000 www/server-config/ssl/certs/1e09d511.0 create mode 120000 www/server-config/ssl/certs/244b5494.0 create mode 120000 www/server-config/ssl/certs/2ae6433e.0 create mode 120000 www/server-config/ssl/certs/2b349938.0 create mode 120000 www/server-config/ssl/certs/2c543cd1.0 create mode 120000 www/server-config/ssl/certs/2e4eed3c.0 create mode 120000 www/server-config/ssl/certs/2e5ac55d.0 create mode 120000 www/server-config/ssl/certs/32888f65.0 create mode 120000 www/server-config/ssl/certs/349f2832.0 create mode 120000 www/server-config/ssl/certs/3513523f.0 create mode 120000 www/server-config/ssl/certs/3bde41ac.0 create mode 120000 www/server-config/ssl/certs/3e44d2f7.0 create mode 120000 www/server-config/ssl/certs/3e45d192.0 create mode 120000 www/server-config/ssl/certs/40193066.0 create mode 120000 www/server-config/ssl/certs/4042bcee.0 create mode 120000 www/server-config/ssl/certs/40547a79.0 create mode 120000 www/server-config/ssl/certs/4304c5e5.0 create mode 120000 www/server-config/ssl/certs/480720ec.0 create mode 120000 www/server-config/ssl/certs/48bec511.0 create mode 120000 www/server-config/ssl/certs/4a6481c9.0 create mode 120000 www/server-config/ssl/certs/4bfab552.0 create mode 120000 www/server-config/ssl/certs/4f316efb.0 create mode 120000 www/server-config/ssl/certs/5273a94c.0 create mode 120000 www/server-config/ssl/certs/5443e9e3.0 create mode 120000 www/server-config/ssl/certs/54657681.0 create mode 120000 www/server-config/ssl/certs/57bcb2da.0 create mode 120000 www/server-config/ssl/certs/5a4d6896.0 create mode 120000 www/server-config/ssl/certs/5ad8a5d6.0 create mode 120000 www/server-config/ssl/certs/5c44d531.0 create mode 120000 www/server-config/ssl/certs/5cd81ad7.0 create mode 120000 www/server-config/ssl/certs/5d3033c5.0 create mode 120000 www/server-config/ssl/certs/5f15c80c.0 create mode 120000 www/server-config/ssl/certs/607986c7.0 create mode 120000 www/server-config/ssl/certs/6410666e.0 create mode 120000 www/server-config/ssl/certs/653b494a.0 create mode 120000 www/server-config/ssl/certs/6b99d060.0 create mode 120000 www/server-config/ssl/certs/6d41d539.0 create mode 120000 www/server-config/ssl/certs/6fa5da56.0 create mode 120000 www/server-config/ssl/certs/706f604c.0 create mode 120000 www/server-config/ssl/certs/749e9e03.0 create mode 120000 www/server-config/ssl/certs/75d1b2ed.0 create mode 120000 www/server-config/ssl/certs/76cb8f92.0 create mode 120000 www/server-config/ssl/certs/76faf6c0.0 create mode 120000 www/server-config/ssl/certs/7719f463.0 create mode 120000 www/server-config/ssl/certs/773e07ad.0 create mode 120000 www/server-config/ssl/certs/7aaf71c0.0 create mode 120000 www/server-config/ssl/certs/7d0b38bd.0 create mode 120000 www/server-config/ssl/certs/7f3d5d1d.0 create mode 120000 www/server-config/ssl/certs/812e17de.0 create mode 120000 www/server-config/ssl/certs/8160b96c.0 create mode 120000 www/server-config/ssl/certs/8867006a.0 create mode 120000 www/server-config/ssl/certs/8cb5ee0f.0 create mode 120000 www/server-config/ssl/certs/8d86cdd1.0 create mode 120000 www/server-config/ssl/certs/930ac5d2.0 create mode 120000 www/server-config/ssl/certs/93bc0acc.0 create mode 120000 www/server-config/ssl/certs/988a38cb.0 create mode 120000 www/server-config/ssl/certs/9c2e7d30.0 create mode 120000 www/server-config/ssl/certs/9c8dfbd4.0 create mode 120000 www/server-config/ssl/certs/9d04f354.0 create mode 120000 www/server-config/ssl/certs/9f0f5fd6.0 create mode 120000 www/server-config/ssl/certs/ACCVRAIZ1.pem create mode 120000 www/server-config/ssl/certs/AC_RAIZ_FNMT-RCM.pem create mode 120000 www/server-config/ssl/certs/Actalis_Authentication_Root_CA.pem create mode 120000 www/server-config/ssl/certs/AddTrust_External_Root.pem create mode 120000 www/server-config/ssl/certs/AffirmTrust_Commercial.pem create mode 120000 www/server-config/ssl/certs/AffirmTrust_Networking.pem create mode 120000 www/server-config/ssl/certs/AffirmTrust_Premium.pem create mode 120000 www/server-config/ssl/certs/AffirmTrust_Premium_ECC.pem create mode 120000 www/server-config/ssl/certs/Amazon_Root_CA_1.pem create mode 120000 www/server-config/ssl/certs/Amazon_Root_CA_2.pem create mode 120000 www/server-config/ssl/certs/Amazon_Root_CA_3.pem create mode 120000 www/server-config/ssl/certs/Amazon_Root_CA_4.pem create mode 120000 www/server-config/ssl/certs/Atos_TrustedRoot_2011.pem create mode 120000 www/server-config/ssl/certs/Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.pem create mode 120000 www/server-config/ssl/certs/Baltimore_CyberTrust_Root.pem create mode 120000 www/server-config/ssl/certs/Buypass_Class_2_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Buypass_Class_3_Root_CA.pem create mode 120000 www/server-config/ssl/certs/CA_Disig_Root_R2.pem create mode 120000 www/server-config/ssl/certs/CFCA_EV_ROOT.pem create mode 120000 www/server-config/ssl/certs/COMODO_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/COMODO_ECC_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/COMODO_RSA_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/Certigna.pem create mode 120000 www/server-config/ssl/certs/Certinomis_-_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Certplus_Class_2_Primary_CA.pem create mode 120000 www/server-config/ssl/certs/Certum_Trusted_Network_CA.pem create mode 120000 www/server-config/ssl/certs/Certum_Trusted_Network_CA_2.pem create mode 120000 www/server-config/ssl/certs/Chambers_of_Commerce_Root_-_2008.pem create mode 120000 www/server-config/ssl/certs/Comodo_AAA_Services_root.pem create mode 120000 www/server-config/ssl/certs/Cybertrust_Global_Root.pem create mode 120000 www/server-config/ssl/certs/D-TRUST_Root_Class_3_CA_2_2009.pem create mode 120000 www/server-config/ssl/certs/D-TRUST_Root_Class_3_CA_2_EV_2009.pem create mode 120000 www/server-config/ssl/certs/DST_Root_CA_X3.pem create mode 120000 www/server-config/ssl/certs/Deutsche_Telekom_Root_CA_2.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Assured_ID_Root_CA.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Assured_ID_Root_G2.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Assured_ID_Root_G3.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Global_Root_CA.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Global_Root_G2.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Global_Root_G3.pem create mode 120000 www/server-config/ssl/certs/DigiCert_High_Assurance_EV_Root_CA.pem create mode 120000 www/server-config/ssl/certs/DigiCert_Trusted_Root_G4.pem create mode 120000 www/server-config/ssl/certs/E-Tugra_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/EC-ACC.pem create mode 120000 www/server-config/ssl/certs/EE_Certification_Centre_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Entrust.net_Premium_2048_Secure_Server_CA.pem create mode 120000 www/server-config/ssl/certs/Entrust_Root_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/Entrust_Root_Certification_Authority_-_EC1.pem create mode 120000 www/server-config/ssl/certs/Entrust_Root_Certification_Authority_-_G2.pem create mode 120000 www/server-config/ssl/certs/GDCA_TrustAUTH_R5_ROOT.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Global_CA.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Primary_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Primary_Certification_Authority_-_G2.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Primary_Certification_Authority_-_G3.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Universal_CA.pem create mode 120000 www/server-config/ssl/certs/GeoTrust_Universal_CA_2.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_ECC_Root_CA_-_R4.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_ECC_Root_CA_-_R5.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_Root_CA.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_Root_CA_-_R2.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_Root_CA_-_R3.pem create mode 120000 www/server-config/ssl/certs/GlobalSign_Root_CA_-_R6.pem create mode 120000 www/server-config/ssl/certs/Global_Chambersign_Root_-_2008.pem create mode 120000 www/server-config/ssl/certs/Go_Daddy_Class_2_CA.pem create mode 120000 www/server-config/ssl/certs/Go_Daddy_Root_Certificate_Authority_-_G2.pem create mode 120000 www/server-config/ssl/certs/Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.pem create mode 120000 www/server-config/ssl/certs/Hellenic_Academic_and_Research_Institutions_RootCA_2011.pem create mode 120000 www/server-config/ssl/certs/Hellenic_Academic_and_Research_Institutions_RootCA_2015.pem create mode 120000 www/server-config/ssl/certs/Hongkong_Post_Root_CA_1.pem create mode 120000 www/server-config/ssl/certs/ISRG_Root_X1.pem create mode 120000 www/server-config/ssl/certs/IdenTrust_Commercial_Root_CA_1.pem create mode 120000 www/server-config/ssl/certs/IdenTrust_Public_Sector_Root_CA_1.pem create mode 120000 www/server-config/ssl/certs/Izenpe.com.pem create mode 120000 www/server-config/ssl/certs/LuxTrust_Global_Root_2.pem create mode 120000 www/server-config/ssl/certs/Microsec_e-Szigno_Root_CA_2009.pem create mode 120000 "www/server-config/ssl/certs/NetLock_Arany_=Class_Gold=_F\305\221tan\303\272s\303\255tv\303\241ny.pem" create mode 120000 www/server-config/ssl/certs/Network_Solutions_Certificate_Authority.pem create mode 120000 www/server-config/ssl/certs/OISTE_WISeKey_Global_Root_GA_CA.pem create mode 120000 www/server-config/ssl/certs/OISTE_WISeKey_Global_Root_GB_CA.pem create mode 120000 www/server-config/ssl/certs/OISTE_WISeKey_Global_Root_GC_CA.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA_1_G3.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA_2.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA_2_G3.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA_3.pem create mode 120000 www/server-config/ssl/certs/QuoVadis_Root_CA_3_G3.pem create mode 120000 www/server-config/ssl/certs/SSL.com_EV_Root_Certification_Authority_ECC.pem create mode 120000 www/server-config/ssl/certs/SSL.com_EV_Root_Certification_Authority_RSA_R2.pem create mode 120000 www/server-config/ssl/certs/SSL.com_Root_Certification_Authority_ECC.pem create mode 120000 www/server-config/ssl/certs/SSL.com_Root_Certification_Authority_RSA.pem create mode 120000 www/server-config/ssl/certs/SZAFIR_ROOT_CA2.pem create mode 120000 www/server-config/ssl/certs/SecureSign_RootCA11.pem create mode 120000 www/server-config/ssl/certs/SecureTrust_CA.pem create mode 120000 www/server-config/ssl/certs/Secure_Global_CA.pem create mode 120000 www/server-config/ssl/certs/Security_Communication_RootCA2.pem create mode 120000 www/server-config/ssl/certs/Security_Communication_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Sonera_Class_2_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Staat_der_Nederlanden_EV_Root_CA.pem create mode 120000 www/server-config/ssl/certs/Staat_der_Nederlanden_Root_CA_-_G2.pem create mode 120000 www/server-config/ssl/certs/Staat_der_Nederlanden_Root_CA_-_G3.pem create mode 120000 www/server-config/ssl/certs/Starfield_Class_2_CA.pem create mode 120000 www/server-config/ssl/certs/Starfield_Root_Certificate_Authority_-_G2.pem create mode 120000 www/server-config/ssl/certs/Starfield_Services_Root_Certificate_Authority_-_G2.pem create mode 120000 www/server-config/ssl/certs/SwissSign_Gold_CA_-_G2.pem create mode 120000 www/server-config/ssl/certs/SwissSign_Silver_CA_-_G2.pem create mode 120000 www/server-config/ssl/certs/T-TeleSec_GlobalRoot_Class_2.pem create mode 120000 www/server-config/ssl/certs/T-TeleSec_GlobalRoot_Class_3.pem create mode 120000 www/server-config/ssl/certs/TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.pem create mode 120000 www/server-config/ssl/certs/TWCA_Global_Root_CA.pem create mode 120000 www/server-config/ssl/certs/TWCA_Root_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/Taiwan_GRCA.pem create mode 120000 www/server-config/ssl/certs/TeliaSonera_Root_CA_v1.pem create mode 120000 www/server-config/ssl/certs/TrustCor_ECA-1.pem create mode 120000 www/server-config/ssl/certs/TrustCor_RootCert_CA-1.pem create mode 120000 www/server-config/ssl/certs/TrustCor_RootCert_CA-2.pem create mode 120000 www/server-config/ssl/certs/Trustis_FPS_Root_CA.pem create mode 120000 www/server-config/ssl/certs/USERTrust_ECC_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/USERTrust_RSA_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.pem create mode 120000 www/server-config/ssl/certs/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.pem create mode 120000 www/server-config/ssl/certs/VeriSign_Universal_Root_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.pem create mode 120000 www/server-config/ssl/certs/XRamp_Global_CA_Root.pem create mode 120000 www/server-config/ssl/certs/a72b3a7a create mode 120000 www/server-config/ssl/certs/a94d09e5.0 create mode 120000 www/server-config/ssl/certs/ad088e1d.0 create mode 120000 www/server-config/ssl/certs/aee5f10d.0 create mode 120000 www/server-config/ssl/certs/b0e59380.0 create mode 120000 www/server-config/ssl/certs/b1159c4c.0 create mode 120000 www/server-config/ssl/certs/b1b8a7f3.0 create mode 120000 www/server-config/ssl/certs/b204d74a.0 create mode 120000 www/server-config/ssl/certs/b66938e9.0 create mode 120000 www/server-config/ssl/certs/b727005e.0 create mode 120000 www/server-config/ssl/certs/b7a5b843.0 create mode 120000 www/server-config/ssl/certs/ba89ed3b.0 create mode 120000 www/server-config/ssl/certs/c01cdfa2.0 create mode 120000 www/server-config/ssl/certs/c089bbbd.0 create mode 120000 www/server-config/ssl/certs/c0ff1f52.0 create mode 120000 www/server-config/ssl/certs/c28a8a30.0 create mode 120000 www/server-config/ssl/certs/c47d9980.0 create mode 100644 www/server-config/ssl/certs/ca-certificates.crt create mode 120000 www/server-config/ssl/certs/ca6e4ad9.0 create mode 120000 www/server-config/ssl/certs/cbf06781.0 create mode 120000 www/server-config/ssl/certs/cc450945.0 create mode 120000 www/server-config/ssl/certs/cd58d51e.0 create mode 120000 www/server-config/ssl/certs/cd8c0d63.0 create mode 120000 www/server-config/ssl/certs/ce5e74ef.0 create mode 120000 www/server-config/ssl/certs/certSIGN_ROOT_CA.pem create mode 120000 www/server-config/ssl/certs/d4dae3dd.0 create mode 120000 www/server-config/ssl/certs/d6325660.0 create mode 120000 www/server-config/ssl/certs/d7e8dc79.0 create mode 120000 www/server-config/ssl/certs/d853d49e.0 create mode 120000 www/server-config/ssl/certs/dc4d6a89.0 create mode 120000 www/server-config/ssl/certs/dd8e9d41.0 create mode 120000 www/server-config/ssl/certs/de6d66f3.0 create mode 120000 www/server-config/ssl/certs/def36a68.0 create mode 100644 www/server-config/ssl/certs/dhparam.pem create mode 120000 www/server-config/ssl/certs/e113c810.0 create mode 120000 www/server-config/ssl/certs/e18bfb83.0 create mode 120000 www/server-config/ssl/certs/e2799e36.0 create mode 120000 www/server-config/ssl/certs/e36a6752.0 create mode 120000 www/server-config/ssl/certs/e73d606e.0 create mode 120000 www/server-config/ssl/certs/e8de2f56.0 create mode 120000 www/server-config/ssl/certs/ePKI_Root_Certification_Authority.pem create mode 120000 www/server-config/ssl/certs/ee64a828.0 create mode 120000 www/server-config/ssl/certs/eed8c118.0 create mode 120000 www/server-config/ssl/certs/ef954a4e.0 create mode 120000 www/server-config/ssl/certs/f060240e.0 create mode 120000 www/server-config/ssl/certs/f081611a.0 create mode 120000 www/server-config/ssl/certs/f0c70a8d.0 create mode 120000 www/server-config/ssl/certs/f30dd6ad.0 create mode 120000 www/server-config/ssl/certs/f3377b1b.0 create mode 120000 www/server-config/ssl/certs/f387163d.0 create mode 120000 www/server-config/ssl/certs/f39fc864.0 create mode 120000 www/server-config/ssl/certs/fc5a8f99.0 create mode 120000 www/server-config/ssl/certs/fe8a2cd8.0 create mode 120000 www/server-config/ssl/certs/ff34af3f.0 create mode 100644 www/server-config/ssl/certs/java/cacerts create mode 100644 www/server-config/ssl/certs/localhost.crt create mode 100644 www/server-config/ssl/certs/ssl-cert-snakeoil.pem create mode 120000 www/server-config/ssl/certs/thawte_Primary_Root_CA.pem create mode 120000 www/server-config/ssl/certs/thawte_Primary_Root_CA_-_G2.pem create mode 120000 www/server-config/ssl/certs/thawte_Primary_Root_CA_-_G3.pem create mode 100644 www/server-config/ssl/openssl.cnf create mode 100644 www/server-config/ssl/private/localhost.key create mode 100644 www/server-config/ssl/private/ssl-cert-snakeoil.key diff --git a/www/apache-modified/apache2.conf b/www/apache-modified/apache2.conf deleted file mode 100755 index 3bdb180..0000000 --- a/www/apache-modified/apache2.conf +++ /dev/null @@ -1,233 +0,0 @@ -# This is the main Apache server configuration file. It contains the -# configuration directives that give the server its instructions. -# See http://httpd.apache.org/docs/2.4/ for detailed information about -# the directives and /usr/share/doc/apache2/README.Debian about Debian specific -# hints. -# -# -# Summary of how the Apache 2 configuration works in Debian: -# The Apache 2 web server configuration in Debian is quite different to -# upstream's suggested way to configure the web server. This is because Debian's -# default Apache2 installation attempts to make adding and removing modules, -# virtual hosts, and extra configuration directives as flexible as possible, in -# order to make automating the changes and administering the server as easy as -# possible. - -# It is split into several files forming the configuration hierarchy outlined -# below, all located in the /etc/apache2/ directory: -# -# /etc/apache2/ -# |-- apache2.conf -# | `-- ports.conf -# |-- mods-enabled -# | |-- *.load -# | `-- *.conf -# |-- conf-enabled -# | `-- *.conf -# `-- sites-enabled -# `-- *.conf -# -# -# * apache2.conf is the main configuration file (this file). It puts the pieces -# together by including all remaining configuration files when starting up the -# web server. -# -# * ports.conf is always included from the main configuration file. It is -# supposed to determine listening ports for incoming connections which can be -# customized anytime. -# -# * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/ -# directories contain particular configuration snippets which manage modules, -# global configuration fragments, or virtual host configurations, -# respectively. -# -# They are activated by symlinking available configuration files from their -# respective *-available/ counterparts. These should be managed by using our -# helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See -# their respective man pages for detailed information. -# -# * The binary is called apache2. Due to the use of environment variables, in -# the default configuration, apache2 needs to be started/stopped with -# /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not -# work with the default configuration. - - -# Global configuration -# - -# -# ServerRoot: The top of the directory tree under which the server's -# configuration, error, and log files are kept. -# -# NOTE! If you intend to place this on an NFS (or otherwise network) -# mounted filesystem then please read the Mutex documentation (available -# at ); -# you will save yourself a lot of trouble. -# -# Do NOT add a slash at the end of the directory path. -# -#ServerRoot "/etc/apache2" - -# -# The accept serialization lock file MUST BE STORED ON A LOCAL DISK. -# -#Mutex file:${APACHE_LOCK_DIR} default - -# -# The directory where shm and other runtime files will be stored. -# - -DefaultRuntimeDir ${APACHE_RUN_DIR} - -# -# PidFile: The file in which the server should record its process -# identification number when it starts. -# This needs to be set in /etc/apache2/envvars -# -PidFile ${APACHE_PID_FILE} - -# -# Timeout: The number of seconds before receives and sends time out. -# -Timeout 300 - -# -# KeepAlive: Whether or not to allow persistent connections (more than -# one request per connection). Set to "Off" to deactivate. -# -KeepAlive On - -# -# MaxKeepAliveRequests: The maximum number of requests to allow -# during a persistent connection. Set to 0 to allow an unlimited amount. -# We recommend you leave this number high, for maximum performance. -# -MaxKeepAliveRequests 100 - -# -# KeepAliveTimeout: Number of seconds to wait for the next request from the -# same client on the same connection. -# -KeepAliveTimeout 5 - - -# These need to be set in /etc/apache2/envvars -User ${APACHE_RUN_USER} -Group ${APACHE_RUN_GROUP} - -# -# HostnameLookups: Log the names of clients or just their IP addresses -# e.g., www.apache.org (on) or 204.62.129.132 (off). -# The default is off because it'd be overall better for the net if people -# had to knowingly turn this feature on, since enabling it means that -# each client request will result in AT LEAST one lookup request to the -# nameserver. -# -HostnameLookups Off - -# ErrorLog: The location of the error log file. -# If you do not specify an ErrorLog directive within a -# container, error messages relating to that virtual host will be -# logged here. If you *do* define an error logfile for a -# container, that host's errors will be logged there and not here. -# -ErrorLog ${APACHE_LOG_DIR}/error.log - -# -# LogLevel: Control the severity of messages logged to the error_log. -# Available values: trace8, ..., trace1, debug, info, notice, warn, -# error, crit, alert, emerg. -# It is also possible to configure the log level for particular modules, e.g. -# "LogLevel info ssl:warn" -# -LogLevel warn - -# Include module configuration: -IncludeOptional mods-enabled/*.load -IncludeOptional mods-enabled/*.conf - -# Include list of ports to listen on -Include ports.conf - - -# Sets the default security model of the Apache2 HTTPD server. It does -# not allow access to the root filesystem outside of /usr/share and /var/www. -# The former is used by web applications packaged in Debian, -# the latter may be used for local directories served by the web server. If -# your system is serving content from a sub-directory in /srv you must allow -# access here, or in any related virtual host. - - Options FollowSymLinks - AllowOverride None - Require all denied - - - - AllowOverride None - Require all granted - - - - Options Indexes FollowSymLinks - AllowOverride All - Require all granted - AddHandler mod_python .py - PythonHandler mod_python.publisher - PythonDebug On - - -# -# Options Indexes FollowSymLinks -# AllowOverride None -# Require all granted -# - - - - -# AccessFileName: The name of the file to look for in each directory -# for additional configuration directives. See also the AllowOverride -# directive. -# -AccessFileName .htaccess - -# -# The following lines prevent .htaccess and .htpasswd files from being -# viewed by Web clients. -# - - Require all denied - - - -# -# The following directives define some format nicknames for use with -# a CustomLog directive. -# -# These deviate from the Common Log Format definitions in that they use %O -# (the actual bytes sent including headers) instead of %b (the size of the -# requested file), because the latter makes it impossible to detect partial -# requests. -# -# Note that the use of %{X-Forwarded-For}i instead of %h is not recommended. -# Use mod_remoteip instead. -# -LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined -LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined -LogFormat "%h %l %u %t \"%r\" %>s %O" common -LogFormat "%{Referer}i -> %U" referer -LogFormat "%{User-agent}i" agent - -# Include of directories ignores editors' and dpkg's backup files, -# see README.Debian for details. - -# Include generic snippets of statements -IncludeOptional conf-enabled/*.conf - -# Include the virtual host configurations: -IncludeOptional sites-enabled/*.conf - -# vim: syntax=apache ts=4 sw=4 sts=4 sr noet - -#ErrorDocument 404 /404.html - diff --git a/www/apache-modified/help.txt b/www/apache-modified/help.txt deleted file mode 100644 index 80b10ff..0000000 --- a/www/apache-modified/help.txt +++ /dev/null @@ -1,13 +0,0 @@ -#pour felix - -#first, you have to install apache2 (server), mod_python (to build html via python) and python-psycopg2 (to use psql) : -apt install apache2 libapache2-mod-python python-psycopg2 - -#replace the actual /var/www by our ATS-Project/www -cp -r /root/ATS-Project/www /var/ - -#give the x rights on the .py files -chmod +x /var/www/html *.py - -#replace the actual /etc/apache2/apache2.conf by our ATS-Project/www/apache-modified/apache2.conf -cp -r ... diff --git a/www/server-config/apache2/apache2.conf b/www/server-config/apache2/apache2.conf new file mode 100644 index 0000000..3bdb180 --- /dev/null +++ b/www/server-config/apache2/apache2.conf @@ -0,0 +1,233 @@ +# This is the main Apache server configuration file. It contains the +# configuration directives that give the server its instructions. +# See http://httpd.apache.org/docs/2.4/ for detailed information about +# the directives and /usr/share/doc/apache2/README.Debian about Debian specific +# hints. +# +# +# Summary of how the Apache 2 configuration works in Debian: +# The Apache 2 web server configuration in Debian is quite different to +# upstream's suggested way to configure the web server. This is because Debian's +# default Apache2 installation attempts to make adding and removing modules, +# virtual hosts, and extra configuration directives as flexible as possible, in +# order to make automating the changes and administering the server as easy as +# possible. + +# It is split into several files forming the configuration hierarchy outlined +# below, all located in the /etc/apache2/ directory: +# +# /etc/apache2/ +# |-- apache2.conf +# | `-- ports.conf +# |-- mods-enabled +# | |-- *.load +# | `-- *.conf +# |-- conf-enabled +# | `-- *.conf +# `-- sites-enabled +# `-- *.conf +# +# +# * apache2.conf is the main configuration file (this file). It puts the pieces +# together by including all remaining configuration files when starting up the +# web server. +# +# * ports.conf is always included from the main configuration file. It is +# supposed to determine listening ports for incoming connections which can be +# customized anytime. +# +# * Configuration files in the mods-enabled/, conf-enabled/ and sites-enabled/ +# directories contain particular configuration snippets which manage modules, +# global configuration fragments, or virtual host configurations, +# respectively. +# +# They are activated by symlinking available configuration files from their +# respective *-available/ counterparts. These should be managed by using our +# helpers a2enmod/a2dismod, a2ensite/a2dissite and a2enconf/a2disconf. See +# their respective man pages for detailed information. +# +# * The binary is called apache2. Due to the use of environment variables, in +# the default configuration, apache2 needs to be started/stopped with +# /etc/init.d/apache2 or apache2ctl. Calling /usr/bin/apache2 directly will not +# work with the default configuration. + + +# Global configuration +# + +# +# ServerRoot: The top of the directory tree under which the server's +# configuration, error, and log files are kept. +# +# NOTE! If you intend to place this on an NFS (or otherwise network) +# mounted filesystem then please read the Mutex documentation (available +# at ); +# you will save yourself a lot of trouble. +# +# Do NOT add a slash at the end of the directory path. +# +#ServerRoot "/etc/apache2" + +# +# The accept serialization lock file MUST BE STORED ON A LOCAL DISK. +# +#Mutex file:${APACHE_LOCK_DIR} default + +# +# The directory where shm and other runtime files will be stored. +# + +DefaultRuntimeDir ${APACHE_RUN_DIR} + +# +# PidFile: The file in which the server should record its process +# identification number when it starts. +# This needs to be set in /etc/apache2/envvars +# +PidFile ${APACHE_PID_FILE} + +# +# Timeout: The number of seconds before receives and sends time out. +# +Timeout 300 + +# +# KeepAlive: Whether or not to allow persistent connections (more than +# one request per connection). Set to "Off" to deactivate. +# +KeepAlive On + +# +# MaxKeepAliveRequests: The maximum number of requests to allow +# during a persistent connection. Set to 0 to allow an unlimited amount. +# We recommend you leave this number high, for maximum performance. +# +MaxKeepAliveRequests 100 + +# +# KeepAliveTimeout: Number of seconds to wait for the next request from the +# same client on the same connection. +# +KeepAliveTimeout 5 + + +# These need to be set in /etc/apache2/envvars +User ${APACHE_RUN_USER} +Group ${APACHE_RUN_GROUP} + +# +# HostnameLookups: Log the names of clients or just their IP addresses +# e.g., www.apache.org (on) or 204.62.129.132 (off). +# The default is off because it'd be overall better for the net if people +# had to knowingly turn this feature on, since enabling it means that +# each client request will result in AT LEAST one lookup request to the +# nameserver. +# +HostnameLookups Off + +# ErrorLog: The location of the error log file. +# If you do not specify an ErrorLog directive within a +# container, error messages relating to that virtual host will be +# logged here. If you *do* define an error logfile for a +# container, that host's errors will be logged there and not here. +# +ErrorLog ${APACHE_LOG_DIR}/error.log + +# +# LogLevel: Control the severity of messages logged to the error_log. +# Available values: trace8, ..., trace1, debug, info, notice, warn, +# error, crit, alert, emerg. +# It is also possible to configure the log level for particular modules, e.g. +# "LogLevel info ssl:warn" +# +LogLevel warn + +# Include module configuration: +IncludeOptional mods-enabled/*.load +IncludeOptional mods-enabled/*.conf + +# Include list of ports to listen on +Include ports.conf + + +# Sets the default security model of the Apache2 HTTPD server. It does +# not allow access to the root filesystem outside of /usr/share and /var/www. +# The former is used by web applications packaged in Debian, +# the latter may be used for local directories served by the web server. If +# your system is serving content from a sub-directory in /srv you must allow +# access here, or in any related virtual host. + + Options FollowSymLinks + AllowOverride None + Require all denied + + + + AllowOverride None + Require all granted + + + + Options Indexes FollowSymLinks + AllowOverride All + Require all granted + AddHandler mod_python .py + PythonHandler mod_python.publisher + PythonDebug On + + +# +# Options Indexes FollowSymLinks +# AllowOverride None +# Require all granted +# + + + + +# AccessFileName: The name of the file to look for in each directory +# for additional configuration directives. See also the AllowOverride +# directive. +# +AccessFileName .htaccess + +# +# The following lines prevent .htaccess and .htpasswd files from being +# viewed by Web clients. +# + + Require all denied + + + +# +# The following directives define some format nicknames for use with +# a CustomLog directive. +# +# These deviate from the Common Log Format definitions in that they use %O +# (the actual bytes sent including headers) instead of %b (the size of the +# requested file), because the latter makes it impossible to detect partial +# requests. +# +# Note that the use of %{X-Forwarded-For}i instead of %h is not recommended. +# Use mod_remoteip instead. +# +LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined +LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined +LogFormat "%h %l %u %t \"%r\" %>s %O" common +LogFormat "%{Referer}i -> %U" referer +LogFormat "%{User-agent}i" agent + +# Include of directories ignores editors' and dpkg's backup files, +# see README.Debian for details. + +# Include generic snippets of statements +IncludeOptional conf-enabled/*.conf + +# Include the virtual host configurations: +IncludeOptional sites-enabled/*.conf + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet + +#ErrorDocument 404 /404.html + diff --git a/www/server-config/apache2/conf-available/charset.conf b/www/server-config/apache2/conf-available/charset.conf new file mode 100644 index 0000000..8b0f415 --- /dev/null +++ b/www/server-config/apache2/conf-available/charset.conf @@ -0,0 +1,8 @@ +# Read the documentation before enabling AddDefaultCharset. +# In general, it is only a good idea if you know that all your files +# have this encoding. It will override any encoding given in the files +# in meta http-equiv or xml encoding tags. + +#AddDefaultCharset UTF-8 + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/www/server-config/apache2/conf-available/javascript-common.conf b/www/server-config/apache2/conf-available/javascript-common.conf new file mode 100644 index 0000000..7e5dbd3 --- /dev/null +++ b/www/server-config/apache2/conf-available/javascript-common.conf @@ -0,0 +1,5 @@ +Alias /javascript /usr/share/javascript/ + + + Options FollowSymLinks MultiViews + diff --git a/www/server-config/apache2/conf-available/localized-error-pages.conf b/www/server-config/apache2/conf-available/localized-error-pages.conf new file mode 100644 index 0000000..f188d80 --- /dev/null +++ b/www/server-config/apache2/conf-available/localized-error-pages.conf @@ -0,0 +1,81 @@ +# Customizable error responses come in three flavors: +# 1) plain text +# 2) local redirects +# 3) external redirects +# +# Some examples: +#ErrorDocument 500 "The server made a boo boo." +#ErrorDocument 404 /missing.html +#ErrorDocument 404 "/cgi-bin/missing_handler.pl" +#ErrorDocument 402 http://www.example.com/subscription_info.html +# + +# +# Putting this all together, we can internationalize error responses. +# +# We use Alias to redirect any /error/HTTP_.html.var response to +# our collection of by-error message multi-language collections. We use +# includes to substitute the appropriate text. +# +# You can modify the messages' appearance without changing any of the +# default HTTP_.html.var files by adding the line: +# +#Alias /error/include/ "/your/include/path/" +# +# which allows you to create your own set of files by starting with the +# /usr/share/apache2/error/include/ files and copying them to /your/include/path/, +# even on a per-VirtualHost basis. If you include the Alias in the global server +# context, is has to come _before_ the 'Alias /error/ ...' line. +# +# The default include files will display your Apache version number and your +# ServerAdmin email address regardless of the setting of ServerSignature. +# +# WARNING: The configuration below will NOT work out of the box if you have a +# SetHandler directive in a context somewhere. Adding +# the following three lines AFTER the context should +# make it work in most cases: +# +# SetHandler none +# +# +# The internationalized error documents require mod_alias, mod_include +# and mod_negotiation. To activate them, uncomment the following 37 lines. + +# +# +# +# +# Alias /error/ "/usr/share/apache2/error/" +# +# +# Options IncludesNoExec +# AddOutputFilter Includes html +# AddHandler type-map var +# Order allow,deny +# Allow from all +# LanguagePriority en cs de es fr it nl sv pt-br ro +# ForceLanguagePriority Prefer Fallback +# +# +# ErrorDocument 400 /error/HTTP_BAD_REQUEST.html.var +# ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var +# ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var +# ErrorDocument 404 /error/HTTP_NOT_FOUND.html.var +# ErrorDocument 405 /error/HTTP_METHOD_NOT_ALLOWED.html.var +# ErrorDocument 408 /error/HTTP_REQUEST_TIME_OUT.html.var +# ErrorDocument 410 /error/HTTP_GONE.html.var +# ErrorDocument 411 /error/HTTP_LENGTH_REQUIRED.html.var +# ErrorDocument 412 /error/HTTP_PRECONDITION_FAILED.html.var +# ErrorDocument 413 /error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var +# ErrorDocument 414 /error/HTTP_REQUEST_URI_TOO_LARGE.html.var +# ErrorDocument 415 /error/HTTP_UNSUPPORTED_MEDIA_TYPE.html.var +# ErrorDocument 500 /error/HTTP_INTERNAL_SERVER_ERROR.html.var +# ErrorDocument 501 /error/HTTP_NOT_IMPLEMENTED.html.var +# ErrorDocument 502 /error/HTTP_BAD_GATEWAY.html.var +# ErrorDocument 503 /error/HTTP_SERVICE_UNAVAILABLE.html.var +# ErrorDocument 506 /error/HTTP_VARIANT_ALSO_VARIES.html.var +# +# +# + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/www/server-config/apache2/conf-available/other-vhosts-access-log.conf b/www/server-config/apache2/conf-available/other-vhosts-access-log.conf new file mode 100644 index 0000000..5e9f5e9 --- /dev/null +++ b/www/server-config/apache2/conf-available/other-vhosts-access-log.conf @@ -0,0 +1,4 @@ +# Define an access log for VirtualHosts that don't define their own logfile +CustomLog ${APACHE_LOG_DIR}/other_vhosts_access.log vhost_combined + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/www/server-config/apache2/conf-available/security.conf b/www/server-config/apache2/conf-available/security.conf new file mode 100644 index 0000000..f9f69d4 --- /dev/null +++ b/www/server-config/apache2/conf-available/security.conf @@ -0,0 +1,73 @@ +# +# Disable access to the entire file system except for the directories that +# are explicitly allowed later. +# +# This currently breaks the configurations that come with some web application +# Debian packages. +# +# +# AllowOverride None +# Require all denied +# + + +# Changing the following options will not really affect the security of the +# server, but might make attacks slightly more difficult in some cases. + +# +# ServerTokens +# This directive configures what you return as the Server HTTP response +# Header. The default is 'Full' which sends information about the OS-Type +# and compiled in modules. +# Set to one of: Full | OS | Minimal | Minor | Major | Prod +# where Full conveys the most information, and Prod the least. +#ServerTokens Minimal +ServerTokens OS +#ServerTokens Full + +# +# Optionally add a line containing the server version and virtual host +# name to server-generated pages (internal error documents, FTP directory +# listings, mod_status and mod_info output etc., but not CGI generated +# documents or custom error documents). +# Set to "EMail" to also include a mailto: link to the ServerAdmin. +# Set to one of: On | Off | EMail +#ServerSignature Off +ServerSignature On + +# +# Allow TRACE method +# +# Set to "extended" to also reflect the request body (only for testing and +# diagnostic purposes). +# +# Set to one of: On | Off | extended +TraceEnable Off +#TraceEnable On + +# +# Forbid access to version control directories +# +# If you use version control systems in your document root, you should +# probably deny access to their directories. For example, for subversion: +# +# +# Require all denied +# + +# +# Setting this header will prevent MSIE from interpreting files as something +# else than declared by the content type in the HTTP headers. +# Requires mod_headers to be enabled. +# +#Header set X-Content-Type-Options: "nosniff" + +# +# Setting this header will prevent other sites from embedding pages from this +# site as frames. This defends against clickjacking attacks. +# Requires mod_headers to be enabled. +# +#Header set X-Frame-Options: "sameorigin" + + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/www/server-config/apache2/conf-available/serve-cgi-bin.conf b/www/server-config/apache2/conf-available/serve-cgi-bin.conf new file mode 100644 index 0000000..b02782d --- /dev/null +++ b/www/server-config/apache2/conf-available/serve-cgi-bin.conf @@ -0,0 +1,20 @@ + + + Define ENABLE_USR_LIB_CGI_BIN + + + + Define ENABLE_USR_LIB_CGI_BIN + + + + ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/ + + AllowOverride None + Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch + Require all granted + + + + +# vim: syntax=apache ts=4 sw=4 sts=4 sr noet diff --git a/www/server-config/apache2/conf-available/ssl-params.conf b/www/server-config/apache2/conf-available/ssl-params.conf new file mode 100644 index 0000000..bbe4509 --- /dev/null +++ b/www/server-config/apache2/conf-available/ssl-params.conf @@ -0,0 +1,16 @@ +SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH +SSLProtocol All -SSLv2 -SSLv3 +SSLHonorCipherOrder On +# Disable preloading HSTS for now. You can use the commented out header line that includes +# the "preload" directive if you understand the implications. +#Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains; preload" +Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains" +Header always set X-Frame-Options DENY +Header always set X-Content-Type-Options nosniff +# Requires Apache >= 2.4 +SSLCompression off +SSLSessionTickets Off +SSLUseStapling on +SSLStaplingCache "shmcb:logs/stapling-cache(150000)" + +SSLOpenSSLConfCmd DHParameters "/etc/ssl/certs/dhparam.pem" diff --git a/www/server-config/apache2/conf-enabled/charset.conf b/www/server-config/apache2/conf-enabled/charset.conf new file mode 120000 index 0000000..4a6ca08 --- /dev/null +++ b/www/server-config/apache2/conf-enabled/charset.conf @@ -0,0 +1 @@ +../conf-available/charset.conf \ No newline at end of file diff --git a/www/server-config/apache2/conf-enabled/localized-error-pages.conf b/www/server-config/apache2/conf-enabled/localized-error-pages.conf new file mode 120000 index 0000000..6e5ddaf --- /dev/null +++ b/www/server-config/apache2/conf-enabled/localized-error-pages.conf @@ -0,0 +1 @@ +../conf-available/localized-error-pages.conf \ No newline at end of file diff --git a/www/server-config/apache2/conf-enabled/other-vhosts-access-log.conf b/www/server-config/apache2/conf-enabled/other-vhosts-access-log.conf new file mode 120000 index 0000000..8af91e5 --- /dev/null +++ b/www/server-config/apache2/conf-enabled/other-vhosts-access-log.conf @@ -0,0 +1 @@ +../conf-available/other-vhosts-access-log.conf \ No newline at end of file diff --git a/www/server-config/apache2/conf-enabled/security.conf b/www/server-config/apache2/conf-enabled/security.conf new file mode 120000 index 0000000..036c97f --- /dev/null +++ b/www/server-config/apache2/conf-enabled/security.conf @@ -0,0 +1 @@ +../conf-available/security.conf \ No newline at end of file diff --git a/www/server-config/apache2/conf-enabled/serve-cgi-bin.conf b/www/server-config/apache2/conf-enabled/serve-cgi-bin.conf new file mode 120000 index 0000000..d917f68 --- /dev/null +++ b/www/server-config/apache2/conf-enabled/serve-cgi-bin.conf @@ -0,0 +1 @@ +../conf-available/serve-cgi-bin.conf \ No newline at end of file diff --git a/www/server-config/apache2/conf-enabled/ssl-params.conf b/www/server-config/apache2/conf-enabled/ssl-params.conf new file mode 120000 index 0000000..37e63ba --- /dev/null +++ b/www/server-config/apache2/conf-enabled/ssl-params.conf @@ -0,0 +1 @@ +../conf-available/ssl-params.conf \ No newline at end of file diff --git a/www/server-config/apache2/envvars b/www/server-config/apache2/envvars new file mode 100644 index 0000000..708d170 --- /dev/null +++ b/www/server-config/apache2/envvars @@ -0,0 +1,47 @@ +# envvars - default environment variables for apache2ctl + +# this won't be correct after changing uid +unset HOME + +# for supporting multiple apache2 instances +if [ "${APACHE_CONFDIR##/etc/apache2-}" != "${APACHE_CONFDIR}" ] ; then + SUFFIX="-${APACHE_CONFDIR##/etc/apache2-}" +else + SUFFIX= +fi + +# Since there is no sane way to get the parsed apache2 config in scripts, some +# settings are defined via environment variables and then used in apache2ctl, +# /etc/init.d/apache2, /etc/logrotate.d/apache2, etc. +export APACHE_RUN_USER=www-data +export APACHE_RUN_GROUP=www-data +# temporary state file location. This might be changed to /run in Wheezy+1 +export APACHE_PID_FILE=/var/run/apache2$SUFFIX/apache2.pid +export APACHE_RUN_DIR=/var/run/apache2$SUFFIX +export APACHE_LOCK_DIR=/var/lock/apache2$SUFFIX +# Only /var/log/apache2 is handled by /etc/logrotate.d/apache2. +export APACHE_LOG_DIR=/var/log/apache2$SUFFIX + +## The locale used by some modules like mod_dav +export LANG=C +## Uncomment the following line to use the system default locale instead: +#. /etc/default/locale + +export LANG + +## The command to get the status for 'apache2ctl status'. +## Some packages providing 'www-browser' need '--dump' instead of '-dump'. +#export APACHE_LYNX='www-browser -dump' + +## If you need a higher file descriptor limit, uncomment and adjust the +## following line (default is 8192): +#APACHE_ULIMIT_MAX_FILES='ulimit -n 65536' + +## If you would like to pass arguments to the web server, add them below +## to the APACHE_ARGUMENTS environment. +#export APACHE_ARGUMENTS='' + +## Enable the debug mode for maintainer scripts. +## This will produce a verbose output on package installations of web server modules and web application +## installations which interact with Apache +#export APACHE2_MAINTSCRIPT_DEBUG=1 diff --git a/www/server-config/apache2/magic b/www/server-config/apache2/magic new file mode 100644 index 0000000..cdf9ac5 --- /dev/null +++ b/www/server-config/apache2/magic @@ -0,0 +1,935 @@ +# Magic data for mod_mime_magic (originally for file(1) command) +# +# The format is 4-5 columns: +# Column #1: byte number to begin checking from, ">" indicates continuation +# Column #2: type of data to match +# Column #3: contents of data to match +# Column #4: MIME type of result +# Column #5: MIME encoding of result (optional) + +#------------------------------------------------------------------------------ +# Localstuff: file(1) magic for locally observed files +# Add any locally observed files here. + +# Real Audio (Magic .ra\0375) +0 belong 0x2e7261fd audio/x-pn-realaudio +0 string .RMF application/vnd.rn-realmedia + +#video/x-pn-realvideo +#video/vnd.rn-realvideo +#application/vnd.rn-realmedia +# sigh, there are many mimes for that but the above are the most common. + +# Taken from magic, converted to magic.mime +# mime types according to http://www.geocities.com/nevilo/mod.htm: +# audio/it .it +# audio/x-zipped-it .itz +# audio/xm fasttracker modules +# audio/x-s3m screamtracker modules +# audio/s3m screamtracker modules +# audio/x-zipped-mod mdz +# audio/mod mod +# audio/x-mod All modules (mod, s3m, 669, mtm, med, xm, it, mdz, stm, itz, xmz, s3z) + +# Taken from loader code from mikmod version 2.14 +# by Steve McIntyre (stevem@chiark.greenend.org.uk) +# added title printing on 2003-06-24 +0 string MAS_UTrack_V00 +>14 string >/0 audio/x-mod +#audio/x-tracker-module + +#0 string UN05 MikMod UNI format module sound data + +0 string Extended\ Module: audio/x-mod +#audio/x-tracker-module +##>17 string >\0 Title: "%s" + +21 string/c \!SCREAM! audio/x-mod +#audio/x-screamtracker-module +21 string BMOD2STM audio/x-mod +#audio/x-screamtracker-module +1080 string M.K. audio/x-mod +#audio/x-protracker-module +#>0 string >\0 Title: "%s" +1080 string M!K! audio/x-mod +#audio/x-protracker-module +#>0 string >\0 Title: "%s" +1080 string FLT4 audio/x-mod +#audio/x-startracker-module +#>0 string >\0 Title: "%s" +1080 string FLT8 audio/x-mod +#audio/x-startracker-module +#>0 string >\0 Title: "%s" +1080 string 4CHN audio/x-mod +#audio/x-fasttracker-module +#>0 string >\0 Title: "%s" +1080 string 6CHN audio/x-mod +#audio/x-fasttracker-module +#>0 string >\0 Title: "%s" +1080 string 8CHN audio/x-mod +#audio/x-fasttracker-module +#>0 string >\0 Title: "%s" +1080 string CD81 audio/x-mod +#audio/x-oktalyzer-tracker-module +#>0 string >\0 Title: "%s" +1080 string OKTA audio/x-mod +#audio/x-oktalyzer-tracker-module +#>0 string >\0 Title: "%s" +# Not good enough. +#1082 string CH +#>1080 string >/0 %.2s-channel Fasttracker "oktalyzer" module sound data +1080 string 16CN audio/x-mod +#audio/x-taketracker-module +#>0 string >\0 Title: "%s" +1080 string 32CN audio/x-mod +#audio/x-taketracker-module +#>0 string >\0 Title: "%s" + +# Impuse tracker module (it) +0 string IMPM audio/x-mod +#>4 string >\0 "%s" +#>40 leshort !0 compatible w/ITv%x +#>42 leshort !0 created w/ITv%x + +#------------------------------------------------------------------------------ +# end local stuff +#------------------------------------------------------------------------------ + +# xml based formats! + +# svg + +0 string \38 string \<\!DOCTYPE\040svg image/svg+xml + + +# xml +0 string \2 short 0xbabe application/java + +#------------------------------------------------------------------------------ +# audio: file(1) magic for sound formats +# +# from Jan Nicolai Langfeldt , +# + +# Sun/NeXT audio data +0 string .snd +>12 belong 1 audio/basic +>12 belong 2 audio/basic +>12 belong 3 audio/basic +>12 belong 4 audio/basic +>12 belong 5 audio/basic +>12 belong 6 audio/basic +>12 belong 7 audio/basic + +>12 belong 23 audio/x-adpcm + +# DEC systems (e.g. DECstation 5000) use a variant of the Sun/NeXT format +# that uses little-endian encoding and has a different magic number +# (0x0064732E in little-endian encoding). +0 lelong 0x0064732E +>12 lelong 1 audio/x-dec-basic +>12 lelong 2 audio/x-dec-basic +>12 lelong 3 audio/x-dec-basic +>12 lelong 4 audio/x-dec-basic +>12 lelong 5 audio/x-dec-basic +>12 lelong 6 audio/x-dec-basic +>12 lelong 7 audio/x-dec-basic +# compressed (G.721 ADPCM) +>12 lelong 23 audio/x-dec-adpcm + +# Bytes 0-3 of AIFF, AIFF-C, & 8SVX audio files are "FORM" +# AIFF audio data +8 string AIFF audio/x-aiff +# AIFF-C audio data +8 string AIFC audio/x-aiff +# IFF/8SVX audio data +8 string 8SVX audio/x-aiff + + + +# Creative Labs AUDIO stuff +# Standard MIDI data +0 string MThd audio/unknown +#>9 byte >0 (format %d) +#>11 byte >1 using %d channels +# Creative Music (CMF) data +0 string CTMF audio/unknown +# SoundBlaster instrument data +0 string SBI audio/unknown +# Creative Labs voice data +0 string Creative\ Voice\ File audio/unknown +## is this next line right? it came this way... +#>19 byte 0x1A +#>23 byte >0 - version %d +#>22 byte >0 \b.%d + +# [GRR 950115: is this also Creative Labs? Guessing that first line +# should be string instead of unknown-endian long...] +#0 long 0x4e54524b MultiTrack sound data +#0 string NTRK MultiTrack sound data +#>4 long x - version %ld + +# Microsoft WAVE format (*.wav) +# [GRR 950115: probably all of the shorts and longs should be leshort/lelong] +# Microsoft RIFF +0 string RIFF +# - WAVE format +>8 string WAVE audio/x-wav +>8 string/B AVI video/x-msvideo +# +>8 string CDRA image/x-coreldraw + +# AAC (aka MPEG-2 NBC) +0 beshort&0xfff6 0xfff0 audio/X-HX-AAC-ADTS +0 string ADIF audio/X-HX-AAC-ADIF +0 beshort&0xffe0 0x56e0 audio/MP4A-LATM +0 beshort 0x4De1 audio/MP4A-LATM + +# MPEG Layer 3 sound files +0 beshort&0xfffe =0xfffa audio/mpeg +#MP3 with ID3 tag +0 string ID3 audio/mpeg +# Ogg/Vorbis +0 string OggS application/ogg + +#------------------------------------------------------------------------------ +# c-lang: file(1) magic for C programs or various scripts +# + +# XPM icons (Greg Roelofs, newt@uchicago.edu) +# ideally should go into "images", but entries below would tag XPM as C source +0 string /*\ XPM image/x-xpmi 7bit + +# 3DS (3d Studio files) +#16 beshort 0x3d3d image/x-3ds + +# this first will upset you if you're a PL/1 shop... (are there any left?) +# in which case rm it; ascmagic will catch real C programs +# C or REXX program text +#0 string /* text/x-c +# C++ program text +#0 string // text/x-c++ + +#------------------------------------------------------------------------------ +# commands: file(1) magic for various shells and interpreters +# +#0 string :\ shell archive or commands for antique kernel text +0 string #!/bin/sh application/x-shellscript +0 string #!\ /bin/sh application/x-shellscript +0 string #!/bin/csh application/x-shellscript +0 string #!\ /bin/csh application/x-shellscript +# korn shell magic, sent by George Wu, gwu@clyde.att.com +0 string #!/bin/ksh application/x-shellscript +0 string #!\ /bin/ksh application/x-shellscript +0 string #!/bin/tcsh application/x-shellscript +0 string #!\ /bin/tcsh application/x-shellscript +0 string #!/usr/local/tcsh application/x-shellscript +0 string #!\ /usr/local/tcsh application/x-shellscript +0 string #!/usr/local/bin/tcsh application/x-shellscript +0 string #!\ /usr/local/bin/tcsh application/x-shellscript +# bash shell magic, from Peter Tobias (tobias@server.et-inf.fho-emden.de) +0 string #!/bin/bash application/x-shellscript +0 string #!\ /bin/bash application/x-shellscript +0 string #!/usr/local/bin/bash application/x-shellscript +0 string #!\ /usr/local/bin/bash application/x-shellscript + +# +# zsh/ash/ae/nawk/gawk magic from cameron@cs.unsw.oz.au (Cameron Simpson) +0 string #!/bin/zsh application/x-shellscript +0 string #!/usr/bin/zsh application/x-shellscript +0 string #!/usr/local/bin/zsh application/x-shellscript +0 string #!\ /usr/local/bin/zsh application/x-shellscript +0 string #!/usr/local/bin/ash application/x-shellscript +0 string #!\ /usr/local/bin/ash application/x-shellscript +#0 string #!/usr/local/bin/ae Neil Brown's ae +#0 string #!\ /usr/local/bin/ae Neil Brown's ae +0 string #!/bin/nawk application/x-nawk +0 string #!\ /bin/nawk application/x-nawk +0 string #!/usr/bin/nawk application/x-nawk +0 string #!\ /usr/bin/nawk application/x-nawk +0 string #!/usr/local/bin/nawk application/x-nawk +0 string #!\ /usr/local/bin/nawk application/x-nawk +0 string #!/bin/gawk application/x-gawk +0 string #!\ /bin/gawk application/x-gawk +0 string #!/usr/bin/gawk application/x-gawk +0 string #!\ /usr/bin/gawk application/x-gawk +0 string #!/usr/local/bin/gawk application/x-gawk +0 string #!\ /usr/local/bin/gawk application/x-gawk +# +0 string #!/bin/awk application/x-awk +0 string #!\ /bin/awk application/x-awk +0 string #!/usr/bin/awk application/x-awk +0 string #!\ /usr/bin/awk application/x-awk +# update to distinguish from *.vcf files by Joerg Jenderek: joerg dot jenderek at web dot de +#0 regex BEGIN[[:space:]]*[{] application/x-awk + +# For Larry Wall's perl language. The ``eval'' line recognizes an +# outrageously clever hack for USG systems. +# Keith Waclena +0 string #!/bin/perl application/x-perl +0 string #!\ /bin/perl application/x-perl +0 string eval\ "exec\ /bin/perl application/x-perl +0 string #!/usr/bin/perl application/x-perl +0 string #!\ /usr/bin/perl application/x-perl +0 string eval\ "exec\ /usr/bin/perl application/x-perl +0 string #!/usr/local/bin/perl application/x-perl +0 string #!\ /usr/local/bin/perl application/x-perl +0 string eval\ "exec\ /usr/local/bin/perl application/x-perl + +#------------------------------------------------------------------------------ +# compress: file(1) magic for pure-compression formats (no archives) +# +# compress, gzip, pack, compact, huf, squeeze, crunch, freeze, yabba, whap, etc. +# +# Formats for various forms of compressed data +# Formats for "compress" proper have been moved into "compress.c", +# because it tries to uncompress it to figure out what's inside. + +# standard unix compress +#0 string \037\235 application/x-compress + +# gzip (GNU zip, not to be confused with [Info-ZIP/PKWARE] zip archiver) +#0 string \037\213 application/x-gzip + +0 string PK\003\004 application/x-zip + +# RAR archiver (Greg Roelofs, newt@uchicago.edu) +0 string Rar! application/x-rar + +# According to gzip.h, this is the correct byte order for packed data. +0 string \037\036 application/octet-stream +# +# This magic number is byte-order-independent. +# +0 short 017437 application/octet-stream + +# XXX - why *two* entries for "compacted data", one of which is +# byte-order independent, and one of which is byte-order dependent? +# +# compacted data +0 short 0x1fff application/octet-stream +0 string \377\037 application/octet-stream +# huf output +0 short 0145405 application/octet-stream + +# Squeeze and Crunch... +# These numbers were gleaned from the Unix versions of the programs to +# handle these formats. Note that I can only uncrunch, not crunch, and +# I didn't have a crunched file handy, so the crunch number is untested. +# Keith Waclena +#0 leshort 0x76FF squeezed data (CP/M, DOS) +#0 leshort 0x76FE crunched data (CP/M, DOS) + +# Freeze +#0 string \037\237 Frozen file 2.1 +#0 string \037\236 Frozen file 1.0 (or gzip 0.5) + +# lzh? +#0 string \037\240 LZH compressed data + +257 string ustar\0 application/x-tar posix +257 string ustar\040\040\0 application/x-tar gnu + +0 short 070707 application/x-cpio +0 short 0143561 application/x-cpio swapped + +0 string = application/x-archive +0 string \! application/x-archive +>8 string debian application/x-debian-package + +#------------------------------------------------------------------------------ +# +# RPM: file(1) magic for Red Hat Packages Erik Troan (ewt@redhat.com) +# +0 beshort 0xedab +>2 beshort 0xeedb application/x-rpm + +0 lelong&0x8080ffff 0x0000081a application/x-arc lzw +0 lelong&0x8080ffff 0x0000091a application/x-arc squashed +0 lelong&0x8080ffff 0x0000021a application/x-arc uncompressed +0 lelong&0x8080ffff 0x0000031a application/x-arc packed +0 lelong&0x8080ffff 0x0000041a application/x-arc squeezed +0 lelong&0x8080ffff 0x0000061a application/x-arc crunched + +0 leshort 0xea60 application/x-arj + +# LHARC/LHA archiver (Greg Roelofs, newt@uchicago.edu) +2 string -lh0- application/x-lharc lh0 +2 string -lh1- application/x-lharc lh1 +2 string -lz4- application/x-lharc lz4 +2 string -lz5- application/x-lharc lz5 +# [never seen any but the last; -lh4- reported in comp.compression:] +2 string -lzs- application/x-lha lzs +2 string -lh\ - application/x-lha lh +2 string -lhd- application/x-lha lhd +2 string -lh2- application/x-lha lh2 +2 string -lh3- application/x-lha lh3 +2 string -lh4- application/x-lha lh4 +2 string -lh5- application/x-lha lh5 +2 string -lh6- application/x-lha lh6 +2 string -lh7- application/x-lha lh7 +# Shell archives +10 string #\ This\ is\ a\ shell\ archive application/octet-stream x-shell + +#------------------------------------------------------------------------------ +# frame: file(1) magic for FrameMaker files +# +# This stuff came on a FrameMaker demo tape, most of which is +# copyright, but this file is "published" as witness the following: +# +0 string \ +# +0 string/cB \14 byte 12 (OS/2 1.x format) +#>14 byte 64 (OS/2 2.x format) +#>14 byte 40 (Windows 3.x format) +#0 string IC icon +#0 string PI pointer +#0 string CI color icon +#0 string CP color pointer +#0 string BA bitmap array + +# CDROM Filesystems +32769 string CD001 application/x-iso9660 + +# Newer StuffIt archives (grant@netbsd.org) +0 string StuffIt application/x-stuffit +#>162 string >0 : %s + +# BinHex is the Macintosh ASCII-encoded file format (see also "apple") +# Daniel Quinlan, quinlan@yggdrasil.com +11 string must\ be\ converted\ with\ BinHex\ 4 application/mac-binhex40 +##>41 string x \b, version %.3s + + +#------------------------------------------------------------------------------ +# lisp: file(1) magic for lisp programs +# +# various lisp types, from Daniel Quinlan (quinlan@yggdrasil.com) +0 string ;; text/plain 8bit +# Emacs 18 - this is always correct, but not very magical. +0 string \012( application/x-elc +# Emacs 19 +0 string ;ELC\023\000\000\000 application/x-elc + +#------------------------------------------------------------------------------ +# mail.news: file(1) magic for mail and news +# +# There are tests to ascmagic.c to cope with mail and news. +0 string Relay-Version: message/rfc822 7bit +0 string #!\ rnews message/rfc822 7bit +0 string N#!\ rnews message/rfc822 7bit +0 string Forward\ to message/rfc822 7bit +0 string Pipe\ to message/rfc822 7bit +0 string Return-Path: message/rfc822 7bit +0 string Received: message/rfc822 +0 string Path: message/news 8bit +0 string Xref: message/news 8bit +0 string From: message/rfc822 7bit +0 string Article message/news 8bit +#------------------------------------------------------------------------------ +# msword: file(1) magic for MS Word files +# +# Contributor claims: +# Reversed-engineered MS Word magic numbers +# + +0 string \376\067\0\043 application/msword +0 string \320\317\021\340\241\261 application/msword +0 string \333\245-\0\0\0 application/msword + + + +#------------------------------------------------------------------------------ +# printer: file(1) magic for printer-formatted files +# + +# PostScript +0 string %! application/postscript +0 string \004%! application/postscript + +# Acrobat +# (due to clamen@cs.cmu.edu) +0 string %PDF- application/pdf + +#------------------------------------------------------------------------------ +# sc: file(1) magic for "sc" spreadsheet +# +38 string Spreadsheet application/x-sc + +#------------------------------------------------------------------------------ +# tex: file(1) magic for TeX files +# +# XXX - needs byte-endian stuff (big-endian and little-endian DVI?) +# +# From + +# Although we may know the offset of certain text fields in TeX DVI +# and font files, we can't use them reliably because they are not +# zero terminated. [but we do anyway, christos] +0 string \367\002 application/x-dvi +#0 string \367\203 TeX generic font data +#0 string \367\131 TeX packed font data +#0 string \367\312 TeX virtual font data +#0 string This\ is\ TeX, TeX transcript text +#0 string This\ is\ METAFONT, METAFONT transcript text + +# There is no way to detect TeX Font Metric (*.tfm) files without +# breaking them apart and reading the data. The following patterns +# match most *.tfm files generated by METAFONT or afm2tfm. +2 string \000\021 application/x-tex-tfm +2 string \000\022 application/x-tex-tfm +#>34 string >\0 (%s) + +# Texinfo and GNU Info, from Daniel Quinlan (quinlan@yggdrasil.com) +0 string \\input\ texinfo text/x-texinfo +0 string This\ is\ Info\ file text/x-info + +# correct TeX magic for Linux (and maybe more) +# from Peter Tobias (tobias@server.et-inf.fho-emden.de) +# +0 leshort 0x02f7 application/x-dvi + +# RTF - Rich Text Format +0 string {\\rtf text/rtf + +#------------------------------------------------------------------------------ +# animation: file(1) magic for animation/movie formats +# +# animation formats, originally from vax@ccwf.cc.utexas.edu (VaX#n8) +# MPEG file +# MPEG sequences +0 belong 0x000001BA +>4 byte &0x40 video/mp2p +>4 byte ^0x40 video/mpeg +0 belong 0x000001BB video/mpeg +0 belong 0x000001B0 video/mp4v-es +0 belong 0x000001B5 video/mp4v-es +0 belong 0x000001B3 video/mpv +0 belong&0xFF5FFF1F 0x47400010 video/mp2t +0 belong 0x00000001 +>4 byte&0x1F 0x07 video/h264 + +# FLI animation format +0 leshort 0xAF11 video/fli +# FLC animation format +0 leshort 0xAF12 video/flc +# +# SGI and Apple formats +# Added ISO mimes +0 string MOVI video/sgi +4 string moov video/quicktime +4 string mdat video/quicktime +4 string wide video/quicktime +4 string skip video/quicktime +4 string free video/quicktime +4 string idsc image/x-quicktime +4 string idat image/x-quicktime +4 string pckg application/x-quicktime +4 string/B jP image/jp2 +4 string ftyp +>8 string isom video/mp4 +>8 string mp41 video/mp4 +>8 string mp42 video/mp4 +>8 string/B jp2 image/jp2 +>8 string 3gp video/3gpp +>8 string avc1 video/3gpp +>8 string mmp4 video/mp4 +>8 string/B M4A audio/mp4 +>8 string/B qt video/quicktime +# The contributor claims: +# I couldn't find a real magic number for these, however, this +# -appears- to work. Note that it might catch other files, too, +# so BE CAREFUL! +# +# Note that title and author appear in the two 20-byte chunks +# at decimal offsets 2 and 22, respectively, but they are XOR'ed with +# 255 (hex FF)! DL format SUCKS BIG ROCKS. +# +# DL file version 1 , medium format (160x100, 4 images/screen) +0 byte 1 video/unknown +0 byte 2 video/unknown +# +# Databases +# +# GDBM magic numbers +# Will be maintained as part of the GDBM distribution in the future. +# +0 belong 0x13579ace application/x-gdbm +0 lelong 0x13579ace application/x-gdbm +0 string GDBM application/x-gdbm +# +0 belong 0x061561 application/x-dbm +# +# Executables +# +0 string \177ELF +>16 leshort 0 application/octet-stream +>16 leshort 1 application/x-object +>16 leshort 2 application/x-executable +>16 leshort 3 application/x-sharedlib +>16 leshort 4 application/x-coredump +>16 beshort 0 application/octet-stream +>16 beshort 1 application/x-object +>16 beshort 2 application/x-executable +>16 beshort 3 application/x-sharedlib +>16 beshort 4 application/x-coredump +# +# DOS +0 string MZ application/x-dosexec +# +# KDE +0 string [KDE\ Desktop\ Entry] application/x-kdelnk +0 string \#\ KDE\ Config\ File application/x-kdelnk +# xmcd database file for kscd +0 string \#\ xmcd text/xmcd + +#------------------------------------------------------------------------------ +# pkgadd: file(1) magic for SysV R4 PKG Datastreams +# +0 string #\ PaCkAgE\ DaTaStReAm application/x-svr4-package + +#PNG Image Format +0 string \x89PNG image/png + +# MNG Video Format, +0 string \x8aMNG video/x-mng +0 string \x8aJNG video/x-jng + +#------------------------------------------------------------------------------ +# Hierarchical Data Format, used to facilitate scientific data exchange +# specifications at http://hdf.ncsa.uiuc.edu/ +#Hierarchical Data Format (version 4) data +0 belong 0x0e031301 application/x-hdf +#Hierarchical Data Format (version 5) data +0 string \211HDF\r\n\032 application/x-hdf + +# Adobe Photoshop +0 string 8BPS image/x-photoshop + +# Felix von Leitner +0 string d8:announce application/x-bittorrent + + +# lotus 1-2-3 document +0 belong 0x00001a00 application/x-123 +0 belong 0x00000200 application/x-123 + +# MS Access database +4 string Standard\ Jet\ DB application/msaccess + +## magic for XBase files +#0 byte 0x02 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x03 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x04 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x05 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x30 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x43 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x7b +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x83 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x8b +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0x8e +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0xb3 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 byte 0xf5 +#>8 leshort >0 +#>>12 leshort 0 application/x-dbf +# +#0 leshort 0x0006 application/x-dbt + +# Debian has entries for the old PGP formats: +# pgp: file(1) magic for Pretty Good Privacy +# see http://lists.gnupg.org/pipermail/gnupg-devel/1999-September/016052.html +#text/PGP key public ring +0 beshort 0x9900 application/pgp +#text/PGP key security ring +0 beshort 0x9501 application/pgp +#text/PGP key security ring +0 beshort 0x9500 application/pgp +#text/PGP encrypted data +0 beshort 0xa600 application/pgp-encrypted +#text/PGP armored data +##public key block +2 string ---BEGIN\ PGP\ PUBLIC\ KEY\ BLOCK- application/pgp-keys +0 string -----BEGIN\040PGP\40MESSAGE- application/pgp +0 string -----BEGIN\040PGP\40SIGNATURE- application/pgp-signature +# +# GnuPG Magic: +# +# +#text/GnuPG key public ring +0 beshort 0x9901 application/pgp +#text/OpenPGP data +0 beshort 0x8501 application/pgp-encrypted + +# flash: file(1) magic for Macromedia Flash file format +# +# See +# +# http://www.macromedia.com/software/flash/open/ +# +0 string FWS +>3 byte x application/x-shockwave-flash + +# The following paramaters are created for Namazu. +# +# +# 1999/08/13 +#0 string \