|
@@ -2,14 +2,13 @@ ErrorLog /dev/stderr
|
|
|
LogLevel warn
|
|
|
# LogLevel info rewrite:trace3
|
|
|
|
|
|
-# need to be set in /etc/apache2/envvars
|
|
|
-User ${APACHE_RUN_USER}
|
|
|
-Group ${APACHE_RUN_GROUP}
|
|
|
+# Permission denied: AH00099: could not create /var/run/apache2.pid
|
|
|
+PidFile /tmp/apache2.pid
|
|
|
|
|
|
IncludeOptional mods-enabled/*.load
|
|
|
IncludeOptional mods-enabled/*.conf
|
|
|
|
|
|
-Timeout 256
|
|
|
+Timeout 128
|
|
|
KeepAlive On
|
|
|
MaxKeepAliveRequests 32
|
|
|
KeepAliveTimeout 8
|
|
@@ -24,7 +23,10 @@ Listen 8080
|
|
|
|
|
|
ServerTokens Prod
|
|
|
ServerSignature Off
|
|
|
-Header set X-Frame-Options: "sameorigin"
|
|
|
+FileETag None
|
|
|
+TraceEnable off
|
|
|
+Header always set X-Frame-Options "sameorigin"
|
|
|
+Header set X-XSS-Protection "1; mode=block"
|
|
|
|
|
|
LogFormat "%{%Y-%m-%dT%H:%M:%S%z}t %h \"%r\" %>s" neat
|
|
|
CustomLog /dev/stdout neat
|
|
@@ -36,9 +38,8 @@ CustomLog /dev/stdout neat
|
|
|
</VirtualHost>
|
|
|
|
|
|
<Directory />
|
|
|
- Options FollowSymLinks
|
|
|
- AllowOverride None
|
|
|
- Require all denied
|
|
|
+ AllowOverride None
|
|
|
+ Require all denied
|
|
|
</Directory>
|
|
|
|
|
|
AccessFileName .htaccess
|
|
@@ -48,8 +49,10 @@ AccessFileName .htaccess
|
|
|
|
|
|
<Directory /koel>
|
|
|
# TODO check
|
|
|
- AllowOverride All
|
|
|
- Require all granted
|
|
|
+ Options -Indexes -Includes -FollowSymLinks +SymLinksIfOwnerMatch
|
|
|
+ # TODO check
|
|
|
+ AllowOverride All
|
|
|
+ Require all granted
|
|
|
</Directory>
|
|
|
|
|
|
IncludeOptional conf-enabled/*.conf
|