-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsample-apache.conf
60 lines (49 loc) · 1.75 KB
/
sample-apache.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
<IfModule mod_ssl.c>
SSLStaplingCache "shmcb:logs/stapling-cache(150000)"
<VirtualHost *:443>
ServerAdmin [email protected]
ServerName msgpeek.net
DocumentRoot $JEKYLL_ROOT/blog
<Directory $JEKYLL_ROOT/blog>
AllowOverride All
DirectoryIndex index.html
Require all granted
</Directory>
### JEKYLL blog-preview update trigger ###
Alias /preview $JEKYLL_ROOT/blog-preview
<Directory $JEKYLL_ROOT/blog-preview>
AuthType Digest
AuthName "Members only"
AuthDigestDomain "/blog-preview/" "https://msgpeek.net/blog-preview"
AuthDigestProvider file
# Create a valid user(s), allowed to access preview
AuthUserFile "$JEKYLL_ROOT/.ht_develuser"
AllowOverride All
DirectoryIndex index.html
Require valid-user
</Directory>
Alias /path-to-web-hooks/ $JEKYLL_ROOT/path-to-web-hooks/
<Directory $JEKYLL_ROOT/path-to-web-hooks>
AllowOverride All
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
AddHandler cgi-script .cgi
Require all denied
Require ip $YOURIP # IP of your Git-Management System
Require ip $YOURIPv6 # IPv6 of your Git-Management System
</Directory>
### JEKYLL blog-preview update trigger ###
ErrorLog ${APACHE_LOG_DIR}/error.log
LogLevel info
CustomLog ${APACHE_LOG_DIR}/ssl_access.log combined
Header always set Strict-Transport-Security "max-age=31556926"
SSLEngine on
SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
SSLProtocol TLSv1.2
SSLHonorCipherOrder On
Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload"
Header always set X-Frame-Options DENY
Header always set X-Content-Type-Options nosniff
SSLCertificateKeyFile /etc/$PATH_TO_YOUR_KEY
SSLCertificateFile /etc/$PATH_TO_YOUR_CERT
</VirtualHost>
</IfModule>