Solaris 10 with PAM, OpenSSH and OpenLDAP
Hi all,
Due to the mix of Linux and Solaris machines, we decided to do OpenLdap and OpenSSH on the Solaris machines as well. All works fine on the Linux machines, but we cannot get PAM authentification to work on the Solaris machines. I have a user in the ldap database esawyja, when the user su esawyja, it works, but the user cannot ssh into the server.
test5:/ $ su esawyja
test5:/ $ whoami
esawyja
test5:/ $ exit
exit
test5:/ $ whoami
root
test5:/ $
test5:/ $ ssh -v [email protected]
OpenSSH_5.8p1, OpenSSL 1.0.0a 1 Jun 2010
debug1: Reading configuration data /usr/local/etc/ssh_config
debug1: Connecting to 10.1.1.5 [10.1.1.5] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /.ssh/id_rsa type -1
debug1: identity file /.ssh/id_rsa-cert type -1
debug1: identity file /.ssh/id_dsa type -1
debug1: identity file /.ssh/id_dsa-cert type -1
debug1: identity file /.ssh/id_ecdsa type -1
debug1: identity file /.ssh/id_ecdsa-cert type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_5.8
debug1: match: OpenSSH_5.8 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_5.8
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-ctr hmac-md5 none
debug1: kex: client->server aes128-ctr hmac-md5 none
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: RSA 1b:42:5b:37:e4:86:99:e1:af:81:bc:64:c8:68:a6:98
debug1: Host '10.1.1.5' is known and matches the RSA host key.
debug1: Found key in /.ssh/known_hosts:3
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: Roaming not allowed by server
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password,keyboard-interactive
debug1: Next authentication method: publickey
debug1: Trying private key: /.ssh/id_rsa
debug1: Trying private key: /.ssh/id_dsa
debug1: Trying private key: /.ssh/id_ecdsa
debug1: Next authentication method: keyboard-interactive
Password:
debug1: Authentications that can continue: publickey,password,keyboard-interactive
Password:
from the debug parameter on the pam_ldap.so.1 in /etc/pam.conf, see below, I get the error pam_ldap: no legal authentication method configured
from /etc/pam.conf
sshd auth requisite pam_authtok_get.so.1
sshd auth required pam_dhkeys.so.1
sshd auth required pam_unix_cred.so.1
sshd auth binding pam_unix_auth.so.1 server_policy
sshd auth required pam_ldap.so.1 debug
Feb 17 14:48:19 test5.com sshd[11347]: [ID 800047 auth.info] Failed password for esawyja from 10.1.1.215 port 51939 ssh2
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 285619 auth.debug] ldap pam_sm_authenticate(sshd esawyja), flags = 1
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 453631 auth.debug] tid= 1: Adding connection (serverAddr=127.0.0.1)
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 816976 auth.debug] tid= 1: Connection added [0]
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 467101 auth.debug] tid= 1: connectionID=1024
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 805042 auth.debug] tid= 1: shared=1
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 982078 auth.debug] tid= 1: usedBit=0
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 727660 auth.debug] tid= 1: threadID=1
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 577507 auth.debug] tid= 1: serverAddr=127.0.0.1
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 939703 auth.debug] tid= 1: AuthType=0
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 142272 auth.debug] tid= 1: TlsType=0
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 537450 auth.debug] tid= 1: SaslMech=0
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 625532 auth.debug] tid= 1: SaslOpt=0
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 316739 auth.error] pam_ldap: no legal authentication method configured
Feb 17 14:48:23 test5.company.com sshd[11347]: [ID 800047 auth.info] Failed password for esawyja from 10.1.1.215 port 51939 ssh2
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 285619 auth.debug] ldap pam_sm_authenticate(sshd root), flags = 1
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 453631 auth.debug] tid= 1: Adding connection (serverAddr=127.0.0.1)
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 776464 auth.debug] tid= 1: Initialized sessionPool
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 816976 auth.debug] tid= 1: Connection added [0]
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 467101 auth.debug] tid= 1: connectionID=1024
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 805042 auth.debug] tid= 1: shared=1
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 982078 auth.debug] tid= 1: usedBit=0
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 727660 auth.debug] tid= 1: threadID=1
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 577507 auth.debug] tid= 1: serverAddr=127.0.0.1
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 939703 auth.debug] tid= 1: AuthType=0
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 142272 auth.debug] tid= 1: TlsType=0
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 537450 auth.debug] tid= 1: SaslMech=0
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 625532 auth.debug] tid= 1: SaslOpt=0
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 316739 auth.error] pam_ldap: no legal authentication method configured
Feb 17 14:48:39 test5.company.com sshd[11349]: [ID 800047 auth.info] Failed password for root from 10.1.1.215 port 51941 ssh2
Feb 17 14:48:42 test5.company.com sshd[11349]: [ID 800047 auth.info] Accepted password for root from 10.1.1.215 port 51941 ssh2
Feb 17 14:54:59 test5.company.com su: [ID 366847 auth.info] 'su esawyja' succeeded for root on /dev/pts/10
Feb 17 14:55:32 test5.company.com sshd[8939]: [ID 800047 auth.info] Received disconnect from 10.1.1.118: 11: disconnected by user
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 285619 auth.debug] ldap pam_sm_authenticate(sshd esawyja), flags = 1
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 453631 auth.debug] tid= 1: Adding connection (serverAddr=127.0.0.1)
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 776464 auth.debug] tid= 1: Initialized sessionPool
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 816976 auth.debug] tid= 1: Connection added [0]
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 467101 auth.debug] tid= 1: connectionID=1024
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 805042 auth.debug] tid= 1: shared=1
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 982078 auth.debug] tid= 1: usedBit=0
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 727660 auth.debug] tid= 1: threadID=1
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 577507 auth.debug] tid= 1: serverAddr=127.0.0.1
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 939703 auth.debug] tid= 1: AuthType=0
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 142272 auth.debug] tid= 1: TlsType=0
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 537450 auth.debug] tid= 1: SaslMech=0
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 625532 auth.debug] tid= 1: SaslOpt=0
Feb 17 14:55:36 test5.company.com sshd[11602]: [ID 316739 auth.error] pam_ldap: no legal authentication method configured
Feb 17 14:55:36 test5.company.com sshd[11600]: [ID 800047 auth.error] error: PAM: Authentication failed for esawyja from 10.1.1.5
Feb 17 14:55:58 test5.company.com sshd[9612]: [ID 800047 auth.info] Received disconnect from 10.1.1.118: 11: disconnected by user
In the slapd logfile I get this
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 737876 local4.debug] => slap_access_allowed: read access granted by read(=rscxd)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 384072 local4.debug] => access_allowed: read access granted by read(=rscxd)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 923158 local4.debug] => access_allowed: read access to "uid=esawyja,ou=People,dc=company,dc=com" "userPassword" requested
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 184944 local4.debug] => dn: [1]
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 184944 local4.debug] => dn: [2] cn=subschema
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 134411 local4.debug] => acl_get: [3] attr userPassword
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 105589 local4.debug] => slap_access_allowed: result not in cache (userPassword)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 971074 local4.debug] => acl_mask: access to entry "uid=esawyja,ou=People,dc=company,dc=com", attr "userPassword" requested
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 488679 local4.debug] => acl_mask: to value by "", (=0)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 704950 local4.debug] <= check a_dn_pat: self
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 704950 local4.debug] <= check a_dn_pat: *
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 279303 local4.debug] <= acl_mask: [2] applying auth(=xd) (stop)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 804284 local4.debug] <= acl_mask: [2] mask: auth(=xd)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 737876 local4.debug] => slap_access_allowed: read access denied by auth(=xd)
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 127828 local4.debug] => access_allowed: no more rules
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 572208 local4.debug] send_search_entry: conn 437 access to attribute userPassword, value #0 not allowed
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 119476 local4.debug] begin get_filter
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 823432 local4.debug] AND
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 679408 local4.debug] begin get_filter_list
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 119476 local4.debug] begin get_filter
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 694368 local4.debug] EQUALITY
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 274773 local4.debug] end get_filter 0
Feb 17 14:59:11 test5.company.com slapd[8208]: [ID 119476 local4.debug] begin get_filter
The user looks like this in the ldap database
test5:/var/log $ ldaplist -l passwd esawyja
dn: uid=esawyja,ou=People,dc=company,dc=com
objectClass: account
objectClass: posixAccount
objectClass: top
objectClass: shadowAccount
cn: xxxxxxxxxxxxxxxxxxxxx
uid: esawyja
loginShell: /usr/bin/bash
uidNumber: 1001
gidNumber: 500
homeDirectory: /home/admin/esawyja
shadowLastChange: 12193
shadowMin: 0
shadowMax: 99999
shadowWarning: 7
shadowInactive: 1
shadowExpire: 12999
gecos: Wynand
test5:/var/log $
PLEASE I need help, been at this for the last week and I'm out of ideas
Thanks
I am not using OpenLDAP as a backend myself, I am using Sun/Oracle directory server. Initially this was version 5, and I have since upgraded to a mix of DS 6 and DS 7.
With Sun DS, you run the idsconfig command (/usr/lib/ldap/idsconfig) which helps configure the server with things like a client profile and appropriate access permissions (e.g compare password). it will also help configure a proxy account. Sun LDAP clients should NOT need a proxy account. Linux clients would need the proxy account.
Similar Messages
-
Problem with PAM "difok" and "remember" options
Hi to all!
I am trying to set the "difok" and "remember" options in PAM
for the passwd command.
My /etc/pam.d/passwd file has the following
password required pam_cracklib.so difok=2 minlen=8 dcredit=-2 ucredit=-1 ocredit=-2 lcredit=-2 retry=3
password required pam_unix.so md5 shadow use_authtok remember=10
but for no obvious reason neither "difok" nor "remember" are taken into account when changing the passwd
Any suggestions??
Regards
Last edited by idet2 (2010-11-27 23:21:44)Hi Culvi and welcome to our community
I'm unaware of any forthcoming patch that will change this
behavior. Yes, it's a pain to have to use a workaround, but at
least it's a fairly simple (if annoying) one.
I'm fairly confident that the next version will not have this
issue.
Cheers... Rick -
OpenSSH 4.4p1 packages with PAM support for Solaris 9, 10
As mentioned in a previous post* , I've compiled OpenSSH packages with PAM support for Solaris 9 and 10. They've since been updated to version 4.4p1, and are compiled against a static zlib (1.2.3) and OpenSSL (0.9.8c). You can find them here:
http://firewallworks.com/downloads/unsupported/Solaris-sparc/
Regards,
Greg
* http://forum.sun.com/jive/thread.jspa?threadID=103378&tstart=105Yes, zlib 1.2.3 is a requirement. In facts, zlib mentions a 2005 vulnerability fix but I found no matching patch in sunsolve. See
http://www.kb.cert.org/vuls/id/JGEI-6E7RC3
I have been wandering whether to replace the official zlib. Linking statically is probably a better idea. Thanks -
Integration with JBoss and OpenLDAP
Hello All
Please bear with me as I try to pose my questions as clearly as possible given that I'm new to JDeveloper and ADF. I have a client who is looking to develop an application that will be used to monitor and maintain batch processes for a third-party compliance tool that currently does not offer any type of batch scheduling functionality. They are looking to develop and maintain one that is accessible by a handful of users that currently maintain the compliance tool.
The compliance tool is deployed on a JBoss technology stack and the application itself authenticates against and OpenLDAP server.
The goal is to develop an web-based application using JDeveloper that can be deployed as a WAR file to their existing JBoss infrastructure. When accessing the appropriate URL for this tool, it would first present them with a login screen. The credentials entered by the user would then be validated against their OpenLDAP server to determine the level of access granted in the batch monitoring utility.
Can this be accomplished using JDeveloper and ADF? I believe I came across this article that walks on through the deployment of an ADF 11g application to JBoss: http://blogs.oracle.com/jruiz/2009/01/deploying_an_adf_11g_applicati.html
However, I can seem to find a good article or tutorial on how to properly interface with OpenLDAP. Am I correct in assuming that I must develop my own login component to handle this authentication?
Thanks in advance.
JoeHi, my code is something like this:
in the backing file:
import com.bea.netuix.servlets.controls.content.backing.AbstractJspBacking;
import com.bea.wsrp.ext.holders.MarkupRequestState;
import com.bea.wsrp.ext.holders.SimpleStateHolder;
public class xxxx extends AbstractJspBacking
public boolean preRender(HttpServletRequest request,
HttpServletResponse response)
request.setAttribute("parameter","value");
return true;
in the consumer i'm not using :
SimpleStateHolder state = new SimpleStateHolder();
state.addParameter("parameter", "value");
because my producer is jboss portal,
in the producer:
protected void doView(RenderRequest rRequest, RenderResponse rResponse)
throws PortletException, IOException, UnavailableException
rResponse.setContentType("text/html");
rRequest.getParameter("parameter");
thanks! -
I have recently started a solaris. I have a solaris using 64x and 86x systems and have java. The machine is very active and is very quick. I am happy so far with its performance and think its worthwhile to continue with my projects. That's all I have to say.
John LuptonI have recently started a solaris. I have a solaris using 64x and 86x systems and have java. The machine is very active and is very quick. I am happy so far with its performance and think its worthwhile to continue with my projects. That's all I have to say.
John Lupton -
Php with mysqli, mbstring and xsl extensions
I don't understand why php isn't build with mysqli and mbstring extensions since mysql4 is installed and there are a lot of languages that need multibytes strings. Here is a PKGBUILD that enable them. I also added xsl extension to use xsl files with php.
# $Id: PKGBUILD,v 1.51 2004/12/16 22:03:19 judd Exp $
# Maintainer: dorphell <[email protected]>
# Contributor: Benoit Chesneau <[email protected]>
pkgname=php
pkgver=5.0.3
pkgrel=2
pkgdesc="A high-level scripting language"
url="http://www.php.net"
backup=(etc/php.ini)
depends=('openssl' 'libjpeg' 'freetype2' 'libpng' 'pam'
'gdbm' 'libxml2' 'openldap' 'ncurses' 'curl' 'libxslt')
makedepends=('apache' 'mysql' 'imap' 'postgresql' 'bzip2' 'smtp-server'
'gd' 'fam' 'sqlite3' 'unixodbc')
source=(http://www.php.net/distributions/$pkgname-$pkgver.tar.gz php.ini)
md5sums=('bf89557056ce34d502e20e24071616c7' 'd5b9b37fbb746f0967d795763106735a')
build() {
cd $startdir/src/$pkgname-$pkgver
./configure --with-apxs2 --prefix=/usr --sysconfdir=/etc
--with-layout=PHP
--with-ttf --enable-mailparse --with-config-file-scan-dir=/etc
--enable-bcmath=shared --enable-calendar=shared --enable-ftp=shared
--enable-gd-native-ttf --enable-magic-quotes --enable-posix=shared
--enable-session --enable-shared --enable-shmop=shared --with-imap
--with-imap-ssl --with-ncurses --with-readline --with-sqlite=shared
--enable-sysvsem=shared --enable-sysvshm=shared --enable-track-vars
--enable-trans-sid --enable-safe-mode --enable-sockets=shared
--enable-xml --with-bz2=shared --with-curl --with-mime-magic
--with-unixODBC=shared
--enable-dba --without-db2 --without-db3 --with-inifile --with-flatfile
--with-gdbm --with-freetype-dir=/usr --with-gd=shared --enable-exif
--with-jpeg-dir=/usr --with-mysql=/usr --with-mysqli=/usr/bin/mysql_config
--with-ldap=shared
--with-mysql-sock=/tmp/mysql.sock --with-openssl --with-gettext
--with-pear=/usr/share/pear --with-dom --with-dom-xslt
--with-pgsql=shared --with-pgsql-sock=/tmp/pgsql.sock
--with-png-dir=/usr --with-regex=php --with-zlib --with-fam=shared
--with-xsl
--enable-mbstring=all --enable-mbregex
# fixes a build error in sqlite support
ln -s main/php_config.h ./config.h
make || return 1
mkdir -p $startdir/pkg/usr/lib/apache
# cp config_vars.mk config_vars.old
# sed "s|^INSTALL_IT.*$|INSTALL_IT = apxs -i -a -S LIBEXECDIR=$startdir/pkg/usr/lib/apache -n php4 libs/libphp4.so|" config_vars.old >config_vars.mk
sed -i "s|-i -a -n php5|-i -n php5|g" Makefile
make INSTALL_ROOT=$startdir/pkg EXTENSION_DIR=/usr/lib/php install
cp ../php.ini $startdir/pkg/etci suggest filing a feature request through the bug tracker.
As for why such features may not be compiled in is that whoever maintains the package may have never had the need to have such features in php or experienced any issue because of it. You will experience this with many distros so I suggest not getting accusatory and simply request the feature through the proper channels.
Each persons needs and experience are different and that is why developers write their code to encompass as many features as their users request. How robust a package needs to be in arch is up to people like you giving the crucial feedback.
(btw i don't see why your request would not be granted. I suggest the feature request though because i know the maintainer of the PHP package is not a frequent visitor to this forum but he will get your request if you make to the bug tracker) -
Problem With httpd.conf and mod_rewrite rules Apache 2.2
I have some RewriteRules that are working on my Leopard Client Apache 2.2 machine - but when I try to implement them on Leopard Server Apache 2.2, they don't work. I don't get any errors, they just won't execute.
Could somebody with Leopard Server help me out using the below info?
Here are the rules I am trying to add: (below is the httpd.conf file)
======RULES========
RewriteEngine On
Options +FollowSymLinks
RewriteRule ^(.+)/$ http://%{HTTP_HOST}$1 [R=301, L]
# Remove ".php"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.php(.*)\ HTTP
RewriteRule (.+)\.php(.*)$ $1$2 [R, L]
# Remove ".asp"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.asp(.*)\ HTTP
RewriteRule (.+)\.asp(.*)$ $1$2 [R, L]
# Remove ".aspx"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.aspx(.*)\ HTTP
RewriteRule (.+)\.aspx(.*)$ $1$2 [R, L]
# Remove ".htm" and ".html"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.htm.(.)\ HTTP
RewriteRule (.+)\.htm.(.)$ $1$2 [R, L]
# Remove ".cfm"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.cfm(.*)\ HTTP
RewriteRule (.+)\.cfm(.*)$ $1$2 [R, L]
# Remove ".bak"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.bak(.*)\ HTTP
RewriteRule (.+)\.bak(.*)$ $1$2 [R, L]
# Remove ".inc"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.inc(.*)\ HTTP
RewriteRule (.+)\.inc(.*)$ $1$2 [R, L]
# Remove ".*"
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\..(.)\ HTTP
RewriteRule (.+)\..(.)$ $1$2 [R, L]
=====RULES============
=========HTTPD.CONF=============
#### Default httpd.conf for Mac OS X Server, Apache 2.2
#### This httpd.conf differs from the httpd.conf distributed
#### with Apache and the httpd.conf present on Mac OS X.
#### Feel free to edit this; the Server Admin app also edits this file but will
#### respect your changes unless noted below. See also ReadMe.txt.
## ServerRoot: The top of the directory tree under which the server's
## configuration, error, and log files are kept.
## NOTE! If you intend to place this on an NFS (or otherwise network)
## mounted filesystem then please read the LockFile documentation
## (available at <URL:<a class="jive-link-external-small" href="http://">http://www.apache.org/docs/mod/core.html#lockfile>);
## you will save yourself a lot of trouble.
## Do NOT add a slash at the end of the directory path.
ServerRoot "/usr"
## PidFile: The file in which the server should record its process
## identification number when it starts.
PidFile /var/run/httpd.pid
## ScoreBoardFile: File used to store internal server process information.
## Not all architectures require this. But if yours does (you'll know because
## this file will be created when you run Apache) then you must ensure that
## no two invocations of Apache share the same scoreboard file.
#ScoreBoardFile "/var/run/apache2runtimestatus"
## Server-pool size regulation. Rather than making you guess how many
## server processes you need, Apache dynamically adapts to the load it
## sees --- that is, it tries to maintain enough server processes to
## handle the current load, plus a few spare servers to handle transient
## load spikes (e.g., multiple simultaneous requests from a single
## Netscape browser).
## It does this by periodically checking how many servers are waiting
## for a request. If there are fewer than MinSpareServers, it creates
## a new spare. If there are more than MaxSpareServers, some of the
## spares die off. The default values are probably OK for most sites.
MinSpareServers 1
MaxSpareServers 1
## Number of servers to start initially --- should be a reasonable ballpark
## figure.
StartServers 1
## MaxRequestsPerChild: the number of requests each child process is
## allowed to process before the child dies. The child will exit so
## as to avoid problems after prolonged use when Apache (and maybe the
## libraries it uses) leak memory or other resources. On most systems, this
## isn't really needed, but a few (such as Solaris) do have notable leaks
## in the libraries. For these platforms, set to something like 10000
## or so; a setting of 0 means unlimited.
## NOTE: This value does not include keepalive requests after the initial
## request per connection. For example, if a child process handles
## an initial request and 10 subsequent "keptalive" requests, it
## would only count as 1 request towards this limit.
MaxRequestsPerChild 100000
## Dynamic Shared Object (DSO) Support
## To be able to use the functionality of a module which was built as a DSO you
## have to place corresponding `LoadModule' lines at this location so the
## directives contained in it are actually available before they are used.
## Please read the file http://httpd.apache.org/docs/dso.html for more
## details about the DSO mechanism and run `httpd -l' for the list of already
## built-in (statically linked and thus always available) modules in your httpd
## binary.
## Note: The order in which modules are loaded is important. Don't change
## the order below without expert advice.
## Example:
## LoadModule foo_module libexec/mod_foo.so
#### For Mac OS X Server: Note that the Server Admin application
#### and the apxs utility enable and disable modules
#### by removing and adding a comment character.
LoadModule authnfilemodule libexec/apache2/modauthnfile.so
#LoadModule authndbmmodule libexec/apache2/modauthndbm.so
#LoadModule authnanonmodule libexec/apache2/modauthnanon.so
#LoadModule authndbdmodule libexec/apache2/modauthndbd.so
#LoadModule authndefaultmodule libexec/apache2/modauthndefault.so
LoadModule authzhostmodule libexec/apache2/modauthzhost.so
#LoadModule authzgroupfilemodule libexec/apache2/modauthzgroupfile.so
#LoadModule authzusermodule libexec/apache2/modauthzuser.so
#LoadModule authzdbmmodule libexec/apache2/modauthzdbm.so
#LoadModule authzownermodule libexec/apache2/modauthzowner.so
#LoadModule authzdefaultmodule libexec/apache2/modauthzdefault.so
#LoadModule authbasicmodule libexec/apache2/modauthbasic.so
#LoadModule authdigest_applemodule libexec/apache2/modauth_digestapple.so
LoadModule cache_module libexec/apache2/mod_cache.so
LoadModule memcachemodule libexec/apache2/modmemcache.so
LoadModule diskcachemodule libexec/apache2/moddiskcache.so
#LoadModule dbd_module libexec/apache2/mod_dbd.so
LoadModule dumpio_module libexec/apache2/mod_dumpio.so
LoadModule extfiltermodule libexec/apache2/modextfilter.so
LoadModule include_module libexec/apache2/mod_include.so
LoadModule filter_module libexec/apache2/mod_filter.so
LoadModule deflate_module libexec/apache2/mod_deflate.so
LoadModule logconfigmodule libexec/apache2/modlogconfig.so
LoadModule logio_module libexec/apache2/mod_logio.so
LoadModule env_module libexec/apache2/mod_env.so
LoadModule expires_module libexec/apache2/mod_expires.so
LoadModule headers_module libexec/apache2/mod_headers.so
LoadModule ident_module libexec/apache2/mod_ident.so
LoadModule setenvif_module libexec/apache2/mod_setenvif.so
LoadModule proxy_module libexec/apache2/mod_proxy.so
#LoadModule proxyconnectmodule libexec/apache2/modproxyconnect.so
#LoadModule proxyftpmodule libexec/apache2/modproxyftp.so
LoadModule proxyhttpmodule libexec/apache2/modproxyhttp.so
#LoadModule proxyajpmodule libexec/apache2/modproxyajp.so
LoadModule proxybalancermodule libexec/apache2/modproxybalancer.so
LoadModule ssl_module libexec/apache2/mod_ssl.so
LoadModule mime_module libexec/apache2/mod_mime.so
#LoadModule mimemagicmodule libexec/apache2/modmimemagic.so
#LoadModule dav_module libexec/apache2/mod_dav.so
LoadModule status_module libexec/apache2/mod_status.so
LoadModule autoindex_module libexec/apache2/mod_autoindex.so
LoadModule asis_module libexec/apache2/mod_asis.so
LoadModule info_module libexec/apache2/mod_info.so
LoadModule cgi_module libexec/apache2/mod_cgi.so
#LoadModule davfsmodule libexec/apache2/moddavfs.so
LoadModule vhostaliasmodule libexec/apache2/modvhostalias.so
LoadModule negotiation_module libexec/apache2/mod_negotiation.so
LoadModule dir_module libexec/apache2/mod_dir.so
LoadModule imagemap_module libexec/apache2/mod_imagemap.so
LoadModule actions_module libexec/apache2/mod_actions.so
LoadModule speling_module libexec/apache2/mod_speling.so
LoadModule userdir_module libexec/apache2/mod_userdir.so
LoadModule alias_module libexec/apache2/mod_alias.so
LoadModule rewrite_module libexec/apache2/mod_rewrite.so
#LoadModule php5_module libexec/apache2/libphp5.so
#LoadModule encoding_module libexec/apache2/mod_encoding.so
#LoadModule jk_module libexec/apache2/mod_jk.so
#LoadModule applespotlightmodule libexec/apache2/modspotlightapple.so
#LoadModule bonjour_module libexec/apache2/mod_bonjour.so
LoadModule appleauthmodule libexec/apache2/modauthapple.so
LoadModule spnegoauthmodule libexec/apache2/modspnegoapple.so
LoadModule appledigestmodule libexec/apache2/moddigestapple.so
LoadModule hfsapplemodule libexec/apache2/modhfsapple.so
#LoadModule fastcgi_module libexec/apache2/mod_fastcgi.so
#LoadModule scgipubsubmodule libexec/apache2/modscgipubsub.so
#LoadModule davsvnmodule libexec/apache2/moddavsvn.so
#LoadModule authzsvnmodule libexec/apache2/modauthzsvn.so
## If you wish httpd to run as a different user or group, you must run
## httpd as root initially and it will switch.
## User/Group: The name (or #number) of the user/group to run httpd as.
## It is usually good practice to create a dedicated user and group for
## running httpd, as with most system services.
User www
Group www
## Each directory to which Apache has access, can be configured with respect
## to which services and features are allowed and/or disabled in that
## directory (and its subdirectories).
## First, we configure the "default" to be a very restrictive set of
## features.
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
## UserDir: The name of the directory which is appended onto a user's home
## directory if a ~user request is received.
#### For Mac OS X Server: Note that
#### personal websharing is not supported on Mac OS X Server.
<IfModule mod_userdir.c>
UserDir Sites
</IfModule>
## AccessFileName: The name of the file to look for in each directory
## for access control information.
AccessFileName .htaccess
## The following lines prevent .htaccess files from being viewed by
## Web clients.
#### For Mac OS X Server: Note the case-insensitive pattern, which protects
#### .htaccess fils on HFS volumes.
#### (Note: Denying .DS_S* may interfere with Finder WebDAV operation)
<Files ~ "^\.([Hh][Tt]|[Dd][Ss]_[Ss])">
Order allow,deny
Deny from all
Satisfy All
</Files>
#### Block attempts to circumvent access controls by requesting forks.
<Files "rsrc">
Order allow,deny
Deny from all
Satisfy All
</Files>
<DirectoryMatch ".*\.\.namedfork">
Order allow,deny
Deny from all
Satisfy All
</DirectoryMatch>
## DefaultType is the default MIME type the server will use for a document
## if it cannot otherwise determine one, such as from filename extensions.
## If your server contains mostly text or HTML documents, "text/plain" is
## a good value. If most of your content is binary, such as applications
## or images, you may want to use "application/octet-stream" instead to
## keep browsers from trying to display binary files as though they are
## text.
DefaultType text/plain
<IfModule mod_mime.c>
# TypesConfig points to the file containing the list of mappings from
# filename extension to MIME-type.
TypesConfig /dev/null
#AddType application/x-gzip .tgz
# AddEncoding allows you to have certain browsers uncompress
# information on the fly. Note: Not all browsers support this.
#AddEncoding x-compress .Z
#AddEncoding x-gzip .gz .tgz
# Filters allow you to process content before it is sent to the client.
# To parse .shtml files for server-side includes (SSI):
# (You will also need to add "Includes" to the "Options" directive.)
#AddOutputFilter INCLUDES .shtml
## Although mod_mime may support several extensions following a single
## mime type (ex: "AddType video/quicktime qt mov"), the parser used
## by the Server Admin application expects only one extension per line.
AddHandler send-as-is asis
AddHandler cgi-script cgi
AddHandler fastcgi-script fcgi
AddHandler imap-file map
AddHandler server-parsed shtml
AddHandler type-map var
AddHandler spotlight-search spotlight
AddType application/andrew-inset ez
AddType application/atom+xml atom
AddType application/atomcat+xml atomcat
AddType application/atomsvc+xml atomsvc
AddType application/ccxml+xml ccxml
AddType application/davmount+xml davmount
AddType application/ecmascript ecma
AddType application/font-tdpfr pfr
AddType application/hyperstudio stk
AddType application/javascript js
AddType application/json json
AddType application/mac-binhex40 hqx
AddType application/mac-compactpro cpt
AddType application/marc mrc
AddType application/mathematica ma
AddType application/mathematica mb
AddType application/mathematica nb
AddType application/mathml+xml mathml
AddType application/mbox mbox
AddType application/mediaservercontrol+xml mscml
AddType application/mp4 mp4s
AddType application/msword doc
AddType application/msword dot
AddType application/mxf mxf
AddType application/octet-stream bin
AddType application/octet-stream bpk
AddType application/octet-stream class
AddType application/octet-stream dist
AddType application/octet-stream distz
AddType application/octet-stream dmg
AddType application/octet-stream dms
AddType application/octet-stream dump
AddType application/octet-stream elc
AddType application/octet-stream iso
AddType application/octet-stream lha
AddType application/octet-stream lzh
AddType application/octet-stream scpt
AddType application/octet-stream so
AddType application/oda oda
AddType application/ogg ogg
AddType application/pdf pdf
AddType application/pgp-encrypted pgp
AddType application/pgp-signature asc
AddType application/pgp-signature sig
AddType application/pics-rules prf
AddType application/pkcs10 p10
AddType application/pkcs7-mime p7c
AddType application/pkcs7-mime p7m
AddType application/pkcs7-signature p7s
AddType application/pkix-cert cer
AddType application/pkix-crl crl
AddType application/pkix-pkipath pkipath
AddType application/pkixcmp pki
AddType application/pls+xml pls
AddType application/postscript ai
AddType application/postscript eps
AddType application/postscript ps
AddType application/prs.cww cww
AddType application/rdf+xml rdf
AddType application/reginfo+xml rif
AddType application/relax-ng-compact-syntax rnc
AddType application/resource-lists+xml rl
AddType application/rls-services+xml rs
AddType application/rsd+xml rsd
AddType application/rss+xml rss
AddType application/rtf rtf
AddType application/sbml+xml sbml
AddType application/sdp sdp
AddType application/set-payment-initiation setpay
AddType application/set-registration-initiation setreg
AddType application/shf+xml shf
AddType application/smil+xml smi
AddType application/smil+xml smil
AddType application/srgs gram
AddType application/srgs+xml grxml
AddType application/ssml+xml ssml
AddType application/vnd.3gpp.pic-bw-large plb
AddType application/vnd.3gpp.pic-bw-small psb
AddType application/vnd.3gpp.pic-bw-var pvb
AddType application/vnd.3m.post-it-notes pwn
AddType application/vnd.accpac.simply.aso aso
AddType application/vnd.accpac.simply.imp imp
AddType application/vnd.acucobol acu
AddType application/vnd.acucorp acutc
AddType application/vnd.acucorp atc
AddType application/vnd.adobe.xdp+xml xdp
AddType application/vnd.adobe.xfdf xfdf
AddType application/vnd.amiga.ami ami
AddType application/vnd.anser-web-certificate-issue-initiation cii
AddType application/vnd.anser-web-funds-transfer-initiation fti
AddType application/vnd.antix.game-component atx
AddType application/vnd.apple.installer+xml mpkg
AddType application/vnd.apple.installer+xml pkg
AddType application/vnd.audiograph aep
AddType application/vnd.blueice.multipass mpm
AddType application/vnd.bmi bmi
AddType application/vnd.businessobjects rep
AddType application/vnd.chemdraw+xml cdxml
AddType application/vnd.chipnuts.karaoke-mmd mmd
AddType application/vnd.cinderella cdy
AddType application/vnd.claymore cla
AddType application/vnd.clonk.c4group c4d
AddType application/vnd.clonk.c4group c4f
AddType application/vnd.clonk.c4group c4g
AddType application/vnd.clonk.c4group c4p
AddType application/vnd.clonk.c4group c4u
AddType application/vnd.commonspace csp
AddType application/vnd.commonspace cst
AddType application/vnd.contact.cmsg cdbcmsg
AddType application/vnd.cosmocaller cmc
AddType application/vnd.crick.clicker clkx
AddType application/vnd.crick.clicker.keyboard clkk
AddType application/vnd.crick.clicker.palette clkp
AddType application/vnd.crick.clicker.template clkt
AddType application/vnd.crick.clicker.wordbank clkw
AddType application/vnd.criticaltools.wbs+xml wbs
AddType application/vnd.ctc-posml pml
AddType application/vnd.cups-ppd ppd
AddType application/vnd.curl curl
AddType application/vnd.data-vision.rdz rdz
AddType application/vnd.denovo.fcselayout-link fe_launch
AddType application/vnd.dna dna
AddType application/vnd.dolby.mlp mlp
AddType application/vnd.dpgraph dpg
AddType application/vnd.dreamfactory dfac
AddType application/vnd.ecowin.chart mag
AddType application/vnd.enliven nml
AddType application/vnd.epson.esf esf
AddType application/vnd.epson.msf msf
AddType application/vnd.epson.quickanime qam
AddType application/vnd.epson.salt slt
AddType application/vnd.epson.ssf ssf
AddType application/vnd.eszigno3+xml es3 et3
AddType application/vnd.ezpix-album ez2
AddType application/vnd.ezpix-package ez3
AddType application/vnd.fdf fdf
AddType application/vnd.flographit gph
AddType application/vnd.fluxtime.clip ftc
AddType application/vnd.framemaker fm
AddType application/vnd.framemaker frame
AddType application/vnd.framemaker maker
AddType application/vnd.frogans.fnc fnc
AddType application/vnd.frogans.ltf ltf
AddType application/vnd.fsc.weblaunch fsc
AddType application/vnd.fujitsu.oasys oas
AddType application/vnd.fujitsu.oasys2 oa2
AddType application/vnd.fujitsu.oasys3 oa3
AddType application/vnd.fujitsu.oasysgp fg5
AddType application/vnd.fujitsu.oasysprs bh2
AddType application/vnd.fujixerox.ddd ddd
AddType application/vnd.fujixerox.docuworks xdw
AddType application/vnd.fujixerox.docuworks.binder xbd
AddType application/vnd.fuzzysheet fzs
AddType application/vnd.genomatix.tuxedo txd
AddType application/vnd.google-earth.kml+xml kml
AddType application/vnd.google-earth.kmz kmz
AddType application/vnd.grafeq gqf
AddType application/vnd.grafeq gqs
AddType application/vnd.groove-account gac
AddType application/vnd.groove-help ghf
AddType application/vnd.groove-identity-message gim
AddType application/vnd.groove-injector grv
AddType application/vnd.groove-tool-message gtm
AddType application/vnd.groove-tool-template tpl
AddType application/vnd.groove-vcard vcg
AddType application/vnd.handheld-entertainment+xml zmm
AddType application/vnd.hbci hbci
AddType application/vnd.hhe.lesson-player les
AddType application/vnd.hp-hpgl hpgl
AddType application/vnd.hp-hpid hpid
AddType application/vnd.hp-hps hps
AddType application/vnd.hp-jlyt jlt
AddType application/vnd.hp-pcl pcl
AddType application/vnd.hp-pclxl pclxl
AddType application/vnd.hzn-3d-crossword x3d
AddType application/vnd.ibm.minipay mpy
AddType application/vnd.ibm.modcap afp
AddType application/vnd.ibm.modcap list3820
AddType application/vnd.ibm.modcap listafp
AddType application/vnd.ibm.rights-management irm
AddType application/vnd.ibm.secure-container sc
AddType application/vnd.igloader igl
AddType application/vnd.immervision-ivp ivp
AddType application/vnd.immervision-ivu ivu
AddType application/vnd.intercon.formnet xpw
AddType application/vnd.intercon.formnet xpx
AddType application/vnd.intu.qbo qbo
AddType application/vnd.intu.qfx qfx
AddType application/vnd.ipunplugged.rcprofile rcprofile
AddType application/vnd.irepository.package+xml irp
AddType application/vnd.is-xpr xpr
AddType application/vnd.jam jam
AddType application/vnd.jcp.javame.midlet-rms rms
AddType application/vnd.jisp jisp
AddType application/vnd.kahootz ktr
AddType application/vnd.kahootz ktz
AddType application/vnd.kde.karbon karbon
AddType application/vnd.kde.kchart chrt
AddType application/vnd.kde.kformula kfo
AddType application/vnd.kde.kivio flw
AddType application/vnd.kde.kontour kon
AddType application/vnd.kde.kpresenter kpr
AddType application/vnd.kde.kpresenter kpt
AddType application/vnd.kde.kspread ksp
AddType application/vnd.kde.kword kwd
AddType application/vnd.kde.kword kwt
AddType application/vnd.kenameaapp htke
AddType application/vnd.kidspiration kia
AddType application/vnd.kinar kne
AddType application/vnd.kinar knp
AddType application/vnd.koan skd
AddType application/vnd.koan skm
AddType application/vnd.koan skp
AddType application/vnd.koan skt
AddType application/vnd.llamagraphics.life-balance.desktop lbd
AddType application/vnd.llamagraphics.life-balance.exchange+xml lbe
AddType application/vnd.lotus-1-2-3 123
AddType application/vnd.lotus-approach apr
AddType application/vnd.lotus-freelance pre
AddType application/vnd.lotus-notes nsf
AddType application/vnd.lotus-organizer org
AddType application/vnd.lotus-screencam scm
AddType application/vnd.lotus-wordpro lwp
AddType application/vnd.macports.portpkg portpkg
AddType application/vnd.mcd mcd
AddType application/vnd.medcalcdata mc1
AddType application/vnd.mediastation.cdkey cdkey
AddType application/vnd.mfer mwf
AddType application/vnd.mfmp mfm
AddType application/vnd.micrografx.flo flo
AddType application/vnd.micrografx.igx igx
AddType application/vnd.mif mif
AddType application/vnd.mobius.daf daf
AddType application/vnd.mobius.dis dis
AddType application/vnd.mobius.mbk mbk
AddType application/vnd.mobius.mqy mqy
AddType application/vnd.mobius.msl msl
AddType application/vnd.mobius.plc plc
AddType application/vnd.mobius.txf txf
AddType application/vnd.mophun.application mpn
AddType application/vnd.mophun.certificate mpc
AddType application/vnd.mozilla.xul+xml xul
AddType application/vnd.ms-artgalry cil
AddType application/vnd.ms-asf asf
AddType application/vnd.ms-cab-compressed cab
AddType application/vnd.ms-excel xla
AddType application/vnd.ms-excel xlc
AddType application/vnd.ms-excel xlm
AddType application/vnd.ms-excel xls
AddType application/vnd.ms-excel xlt
AddType application/vnd.ms-excel xlw
AddType application/vnd.ms-fontobject eot
AddType application/vnd.ms-htmlhelp chm
AddType application/vnd.ms-ims ims
AddType application/vnd.ms-lrm lrm
AddType application/vnd.ms-powerpoint pot
AddType application/vnd.ms-powerpoint pps
AddType application/vnd.ms-powerpoint ppt
AddType application/vnd.ms-project mpp
AddType application/vnd.ms-project mpt
AddType application/vnd.ms-works wcm
AddType application/vnd.ms-works wdb
AddType application/vnd.ms-works wks
AddType application/vnd.ms-works wps
AddType application/vnd.ms-wpl wpl
AddType application/vnd.ms-xpsdocument xps
AddType application/vnd.mseq mseq
AddType application/vnd.musician mus
AddType application/vnd.neurolanguage.nlu nlu
AddType application/vnd.noblenet-directory nnd
AddType application/vnd.noblenet-sealer nns
AddType application/vnd.noblenet-web nnw
AddType application/vnd.nokia.n-gage.data ngdat
AddType application/vnd.nokia.n-gage.symbian.install n-gage
AddType application/vnd.nokia.radio-preset rpst
AddType application/vnd.nokia.radio-presets rpss
AddType application/vnd.novadigm.edm edm
AddType application/vnd.novadigm.edx edx
AddType application/vnd.novadigm.ext ext
AddType application/vnd.oasis.opendocument.chart odc
AddType application/vnd.oasis.opendocument.chart-template otc
AddType application/vnd.oasis.opendocument.formula odf
AddType application/vnd.oasis.opendocument.formula-template otf
AddType application/vnd.oasis.opendocument.graphics odg
AddType application/vnd.oasis.opendocument.graphics-template otg
AddType application/vnd.oasis.opendocument.image odi
AddType application/vnd.oasis.opendocument.image-template oti
AddType application/vnd.oasis.opendocument.presentation odp
AddType application/vnd.oasis.opendocument.presentation-template otp
AddType application/vnd.oasis.opendocument.spreadsheet ods
AddType application/vnd.oasis.opendocument.spreadsheet-template ots
AddType application/vnd.oasis.opendocument.text odt
AddType application/vnd.oasis.opendocument.text-master otm
AddType application/vnd.oasis.opendocument.text-template ott
AddType application/vnd.oasis.opendocument.text-web oth
AddType application/vnd.olpc-sugar xo
AddType application/vnd.oma.dd2+xml dd2
AddType application/vnd.openofficeorg.extension oxt
AddType application/vnd.osgi.dp dp
AddType application/vnd.palm oprc
AddType application/vnd.palm pdb
AddType application/vnd.palm pqa
AddType application/vnd.palm prc
AddType application/vnd.pg.format str
AddType application/vnd.pg.osasli ei6
AddType application/vnd.picsel efif
AddType application/vnd.pocketlearn plf
AddType application/vnd.powerbuilder6 pbd
AddType application/vnd.previewsystems.box box
AddType application/vnd.proteus.magazine mgz
AddType application/vnd.publishare-delta-tree qps
AddType application/vnd.pvi.ptid1 ptid
AddType application/vnd.quark.quarkxpress qwd
AddType application/vnd.quark.quarkxpress qwt
AddType application/vnd.quark.quarkxpress qxb
AddType application/vnd.quark.quarkxpress qxd
AddType application/vnd.quark.quarkxpress qxl
AddType application/vnd.quark.quarkxpress qxt
AddType application/vnd.recordare.musicxml mxl
# AddType application/vnd.rn-realmedia rm
AddType application/vnd.seemail see
AddType application/vnd.sema sema
AddType application/vnd.semd semd
AddType application/vnd.semf semf
AddType application/vnd.shana.informed.formdata ifm
AddType application/vnd.shana.informed.formtemplate itp
AddType application/vnd.shana.informed.interchange iif
AddType application/vnd.shana.informed.package ipk
AddType application/vnd.simtech-mindmapper twd
AddType application/vnd.simtech-mindmapper twds
AddType application/vnd.smaf mmf
AddType application/vnd.solent.sdkm+xml sdkd
AddType application/vnd.solent.sdkm+xml sdkm
AddType application/vnd.spotfire.dxp dxp
AddType application/vnd.spotfire.sfs sfs
AddType application/vnd.sus-calendar sus
AddType application/vnd.sus-calendar susp
AddType application/vnd.svd svd
AddType application/vnd.syncml+xml xsm
AddType application/vnd.syncml.dm+wbxml bdm
AddType application/vnd.syncml.dm+xml xdm
AddType application/vnd.tao.intent-module-archive tao
AddType application/vnd.tmobile-livetv tmo
AddType application/vnd.trid.tpt tpt
AddType application/vnd.triscape.mxs mxs
AddType application/vnd.trueapp tra
AddType application/vnd.ufdl ufd
AddType application/vnd.ufdl ufdl
AddType application/vnd.uiq.theme utz
AddType application/vnd.umajin umj
AddType application/vnd.unity unityweb
AddType application/vnd.uoml+xml uoml
AddType application/vnd.vcx vcx
AddType application/vnd.visio vsd
AddType application/vnd.visio vss
AddType application/vnd.visio vst
AddType application/vnd.visio vsw
AddType application/vnd.visionary vis
AddType application/vnd.vsf vsf
AddType application/vnd.wap.wbxml wbxml
AddType application/vnd.wap.wmlc wmlc
AddType application/vnd.wap.wmlscriptc wmlsc
AddType application/vnd.webturbo wtb
AddType application/vnd.wordperfect wpd
AddType application/vnd.wqd wqd
AddType application/vnd.wt.stf stf
AddType application/vnd.xara xar
AddType application/vnd.xfdl xfdl
AddType application/vnd.yamaha.hv-dic hvd
AddType application/vnd.yamaha.hv-script hvs
AddType application/vnd.yamaha.hv-voice hvp
AddType application/vnd.yamaha.smaf-audio saf
AddType application/vnd.yamaha.smaf-phrase spf
AddType application/vnd.yellowriver-custom-menu cmp
AddType application/vnd.zzazz.deck+xml zaz
AddType application/voicexml+xml vxml
AddType application/winhlp hlp
AddType application/wsdl+xml wsdl
AddType application/wspolicy+xml wspolicy
AddType application/x-ace-compressed ace
AddType application/x-bcpio bcpio
AddType application/x-bittorrent torrent
AddType application/x-bzip bz
AddType application/x-bzip2 boz
AddType application/x-bzip2 bz2
AddType application/x-cdlink vcd
AddType application/x-chat chat
AddType application/x-chess-pgn pgn
AddType application/x-cpio cpio
AddType application/x-csh csh
AddType application/x-director dcr
AddType application/x-director dir
AddType application/x-director dxr
AddType application/x-director fgd
AddType application/x-dvi dvi
AddType application/x-futuresplash spl
AddType application/x-gtar gtar
AddType application/x-hdf hdf
AddType application/x-httpd-php php
AddType application/x-httpd-php-source phps
AddType application/x-httpd-php3 php3
AddType application/x-java-jnlp-file jnlp
AddType application/x-latex latex
AddType application/x-ms-wmd wmd
AddType application/x-ms-wmz wmz
AddType application/x-msaccess mdb
AddType application/x-msbinder obd
AddType application/x-mscardfile crd
AddType application/x-msclip clp
AddType application/x-msdownload bat
AddType application/x-msdownload com
AddType application/x-msdownload dll
AddType application/x-msdownload exe
AddType application/x-msdownload msi
AddType application/x-msmediaview m13
AddType application/x-msmediaview m14
AddType application/x-msmediaview mvb
AddType application/x-msmetafile wmf
AddType application/x-msmoney mny
AddType application/x-mspublisher pub
AddType application/x-msschedule scd
AddType application/x-msterminal trm
AddType application/x-mswrite wri
AddType application/x-netcdf cdf
AddType application/x-netcdf nc
AddType application/x-pkcs12 p12
AddType application/x-pkcs12 pfx
AddType application/x-pkcs7-certificates p7b
AddType application/x-pkcs7-certificates spc
AddType application/x-pkcs7-certreqresp p7r
AddType application/x-quicktimeplayer qtl
AddType application/x-rar-compressed rar
AddType application/x-sh sh
AddType application/x-shar shar
AddType application/x-shockwave-flash swf
AddType application/x-stuffit sit
AddType application/x-stuffitx sitx
AddType application/x-sv4cpio sv4cpio
AddType application/x-sv4crc sv4crc
AddType application/x-tar tar
AddType application/x-tar tgz
AddType application/x-tcl tcl
AddType application/x-tex tex
AddType application/x-texinfo texi
AddType application/x-texinfo texinfo
AddType application/x-ustar ustar
AddType application/x-wais-source src
AddType application/x-x509-ca-cert crt
AddType application/x-x509-ca-cert der
AddType application/xenc+xml xenc
AddType application/xhtml+xml xht
AddType application/xhtml+xml xhtm
AddType application/xhtml+xml xhtml
AddType application/xml xml
AddType application/xml xsl
AddType application/xml-dtd dtd
AddType application/xop+xml xop
AddType application/xslt+xml xslt
AddType application/xspf+xml xspf
AddType application/xv+xml mxml
AddType application/xv+xml xhvml
AddType application/xv+xml xvm
AddType application/xv+xml xvml
AddType application/zip zip
AddType audio/basic au
AddType audio/basic snd
AddType audio/midi kar
AddType audio/midi mid
AddType audio/midi midi
AddType audio/midi rmi
AddType audio/mp4 mp4a
AddType audio/mp4a-latm m4a
AddType audio/mp4a-latm m4p
AddType audio/mpeg m2a
AddType audio/mpeg m3a
AddType audio/mpeg mp2
AddType audio/mpeg mp2a
AddType audio/mpeg mp3
AddType audio/mpeg mpga
AddType audio/vnd.digital-winds eol
AddType audio/vnd.lucent.voice lvp
AddType audio/vnd.nuera.ecelp4800 ecelp4800
AddType audio/vnd.nuera.ecelp7470 ecelp7470
AddType audio/vnd.nuera.ecelp9600 ecelp9600
AddType audio/wav wav
AddType audio/x-aiff aif
AddType audio/x-aiff aifc
AddType audio/x-aiff aiff
AddType audio/x-m4a m4a
AddType audio/x-mpegurl m3u
AddType audio/x-ms-wax wax
AddType audio/x-ms-wma wma
AddType audio/x-pn-realaudio ra
AddType audio/x-pn-realaudio ram
AddType audio/x-pn-realaudio rm
AddType audio/x-pn-realaudio-plugin rmp
AddType audio/x-scpls pls
AddType audio/x-wav wav
AddType chemical/x-cdx cdx
AddType chemical/x-cif cif
AddType chemical/x-cmdf cmdf
AddType chemical/x-cml cml
AddType chemical/x-csml csml
AddType chemical/x-pdb pdb
AddType chemical/x-xyz xyz
AddType image/bmp bmp
AddType image/cgm cgm
AddType image/g3fax g3
AddType image/gif gif
AddType image/ief ief
AddType image/jp2 jp2
AddType image/jpeg jpe
AddType image/jpeg jpeg
AddType image/jpeg jpg
AddType image/pict pct
AddType image/pict pic
AddType image/pict pict
AddType image/png png
AddType image/prs.btif btif
AddType image/svg+xml svg
AddType image/svg+xml svgz
AddType image/tiff tif
AddType image/tiff tiff
AddType image/vnd.adobe.photoshop psd
AddType image/vnd.djvu djv
AddType image/vnd.djvu djvu
AddType image/vnd.dwg dwg
AddType image/vnd.dxf dxf
AddType image/vnd.fastbidsheet fbs
AddType image/vnd.fpx fpx
AddType image/vnd.fst fst
AddType image/vnd.fujixerox.edmics-mmr mmr
AddType image/vnd.fujixerox.edmics-rlc rlc
AddType image/vnd.microsoft.icon ico
AddType image/vnd.ms-modi mdi
AddType image/vnd.net-fpx npx
AddType image/vnd.wap.wbmp wbmp
AddType image/vnd.xiff xif
AddType image/x-cmu-raster ras
AddType image/x-cmx cmx
AddType image/x-macpaint mac
AddType image/x-macpaint pnt
AddType image/x-macpaint pntg
AddType image/x-pcx pcx
AddType image/x-pict pct
AddType image/x-pict pic
AddType image/x-portable-anymap pnm
AddType image/x-portable-bitmap pbm
AddType image/x-portable-graymap pgm
AddType image/x-portable-pixmap ppm
AddType image/x-quicktime qti
AddType image/x-quicktime qtif
AddType image/x-rgb rgb
AddType image/x-xbitmap xbm
AddType image/x-xpixmap xpm
AddType image/x-xwindowdump xwd
AddType message/rfc822 eml
AddType message/rfc822 mime
AddType model/iges iges
AddType model/iges igs
AddType model/mesh mesh
AddType model/mesh msh
AddType model/mesh silo
AddType model/vnd.dwf dwf
AddType model/vnd.gdl gdl
AddType model/vnd.gtw gtw
AddType model/vnd.mts mts
AddType model/vnd.vtu vtu
AddType model/vrml vrml
AddType model/vrml wrl
AddType text/calendar ics
AddType text/calendar ifb
AddType text/css css
AddType text/csv csv
AddType text/html htm
AddType text/html html
AddType text/html shtml
AddType text/plain asc
AddType text/plain conf
AddType text/plain def
AddType text/plain in
AddType text/plain list
AddType text/plain log
AddType text/plain text
AddType text/plain txt
AddType text/prs.lines.tag dsc
AddType text/richtext rtx
AddType text/rtf rtf
AddType text/sgml sgm
AddType text/sgml sgml
AddType text/tab-separated-values tsv
AddType text/troff man
AddType text/troff me
AddType text/troff ms
AddType text/troff roff
AddType text/troff t
AddType text/troff tr
AddType text/uri-list uri
AddType text/uri-list uris
AddType text/uri-list urls
AddType text/vnd.fly fly
AddType text/vnd.fmi.flexstor flx
AddType text/vnd.in3d.3dml 3dml
AddType text/vnd.in3d.spot spot
AddType text/vnd.sun.j2me.app-descriptor jad
AddType text/vnd.wap.wml wml
AddType text/vnd.wap.wmlscript wmls
AddType text/x-asm s
AddType text/x-asm sm
AddType text/x-c c
AddType text/x-c cc
AddType text/x-c cpp
AddType text/x-c cxx
AddType text/x-c dic
AddType text/x-c h
AddType text/x-c hh
AddType text/x-fortran f
AddType text/x-fortran f77
AddType text/x-fortran f90
AddType text/x-fortran for
AddType text/x-java-source java
AddType text/x-pascal p
AddType text/x-pascal pas
AddType text/x-setext etx
AddType text/x-uuencode uu
AddType text/x-vcalendar vcs
AddType text/x-vcard vcf
AddType video/3gp2 3gp2
AddType video/3gpp 3gp
AddType video/3gpp 3gpp
AddType video/3gpp2 3g2
AddType video/h261 h261
AddType video/h263 h263
AddType video/h264 h264
AddType video/jpeg jpgv
AddType video/jpm jpgm
AddType video/jpm jpm
AddType video/mj2 mj2
AddType video/mj2 mjp2
AddType video/mp4 m4v
AddType video/mp4 mp4
AddType video/mp4 mp4v
AddType video/mp4 mpg4
AddType video/mpeg m1v
AddType video/mpeg m2v
AddType video/mpeg mpe
AddType video/mpeg mpeg
AddType video/mpeg mpg
AddType video/quicktime mov
AddType video/quicktime qt
AddType video/vnd.fvt fvt
AddType video/vnd.mpegurl m4u
AddType video/vnd.mpegurl mxu
AddType video/vnd.vivo viv
AddType video/x-dv dif
AddType video/x-dv dv
AddType video/x-fli fli
AddType video/x-ms-asf asf
AddType video/x-ms-asf asx
AddType video/x-ms-wm wm
AddType video/x-ms-wmv wmv
AddType video/x-ms-wmx wmx
AddType video/x-ms-wvx wvx
AddType video/x-msvideo avi
AddType video/x-sgi-movie movie
AddType x-conference/x-cooltalk ice
# Settings for hosting different languages.
# Required modules: mod_mime, mod_negotiation
# DefaultLanguage and AddLanguage allows you to specify the language of
# a document. You can then use content negotiation to give a browser a
# file in a language the user can understand.
# Specify a default language. This means that all data
# going out without a specific language tag (see below) will
# be marked with this one. You probably do NOT want to set
# this unless you are sure it is correct for all cases.
# * It is generally better to not mark a page as
# * being a certain language than marking it with the wrong
# * language!
# DefaultLanguage nl
# Note 1: The suffix does not have to be the same as the language
# keyword --- those with documents in Polish (whose net-standard
# language code is pl) may wish to use "AddLanguage pl .po" to
# avoid the ambiguity with the common suffix for perl scripts.
# Note 2: The example entries below illustrate that in some cases
# the two character 'Language' abbreviation is not identical to
# the two character 'Country' code for its country,
# E.g. 'Danmark/dk' versus 'Danish/da'.
# Note 3: In the case of 'ltz' we violate the RFC by using a three char
# specifier. There is 'work in progress' to fix this and get
# the reference data for rfc1766 cleaned up.
# Catalan (ca) - Croatian (hr) - Czech (cs) - Danish (da) - Dutch (nl)
# English (en) - Esperanto (eo) - Estonian (et) - French (fr) - German (de)
# Greek-Modern (el) - Hebrew (he) - Italian (it) - Japanese (ja)
# Korean (ko) - Luxembourgeois* (ltz) - Norwegian Nynorsk (nn)
# Norwegian (no) - Polish (pl) - Portugese (pt)
# Brazilian Portuguese (pt-BR) - Russian (ru) - Swedish (sv)
# Simplified Chinese (zh-CN) - Spanish (es) - Traditional Chinese (zh-TW)
AddLanguage ca .ca
AddLanguage cs .cz .cs
AddLanguage da .dk
AddLanguage de .de
AddLanguage el .el
AddLanguage en .en
AddLanguage eo .eo
AddLanguage es .es
AddLanguage et .et
AddLanguage fr .fr
AddLanguage he .he
AddLanguage hr .hr
AddLanguage it .it
AddLanguage ja .ja
AddLanguage ko .ko
AddLanguage ltz .ltz
AddLanguage nl .nl
AddLanguage nn .nn
AddLanguage no .no
AddLanguage pl .po
AddLanguage pt .pt
AddLanguage pt-BR .pt-br
AddLanguage ru .ru
AddLanguage sv .sv
AddLanguage zh-CN .zh-cn
AddLanguage zh-TW .zh-tw
# LanguagePriority allows you to give precedence to some languages
# in case of a tie during content negotiation.
# Just list the languages in decreasing order of preference. We have
# more or less alphabetized them here. You probably want to change this.
LanguagePriority en ca cs da de el eo es et fr he hr it ja ko ltz nl nn no pl pt pt-BR ru sv zh-CN zh-TW
# ForceLanguagePriority allows you to serve a result page rather than
# MULTIPLE CHOICES (Prefer) [in case of a tie] or NOT ACCEPTABLE (Fallback)
# [in case no accepted languages matched the available variants]
ForceLanguagePriority Prefer Fallback
# Commonly used filename extensions to character sets. You probably
# want to avoid clashes with the language extensions, unless you
# are good at carefully testing your setup after each change.
# See http://www.iana.org/assignments/character-sets for the
# official list of charset names and their respective RFCs.
AddCharset us-ascii.ascii .us-ascii
AddCharset ISO-8859-1 .iso8859-1 .latin1
AddCharset ISO-8859-2 .iso8859-2 .latin2 .cen
AddCharset ISO-8859-3 .iso8859-3 .latin3
AddCharset ISO-8859-4 .iso8859-4 .latin4
AddCharset ISO-8859-5 .iso8859-5 .cyr .iso-ru
AddCharset ISO-8859-6 .iso8859-6 .arb .arabic
AddCharset ISO-8859-7 .iso8859-7 .grk .greek
AddCharset ISO-8859-8 .iso8859-8 .heb .hebrew
AddCharset ISO-8859-9 .iso8859-9 .latin5 .trk
AddCharset ISO-8859-10 .iso8859-10 .latin6
AddCharset ISO-8859-13 .iso8859-13
AddCharset ISO-8859-14 .iso8859-14 .latin8
AddCharset ISO-8859-15 .iso8859-15 .latin9
AddCharset ISO-8859-16 .iso8859-16 .latin10
AddCharset ISO-2022-JP .iso2022-jp .jis
AddCharset ISO-2022-KR .iso2022-kr .kis
AddCharset ISO-2022-CN .iso2022-cn .cis
AddCharset Big5.Big5 .big5 .b5
AddCharset cn-Big5 .cn-big5
# For russian, more than one charset is used (depends on client, mostly):
AddCharset WINDOWS-1251 .cp-1251 .win-1251
AddCharset CP866 .cp866
AddCharset KOI8 .koi8
AddCharset KOI8-E .koi8-e
AddCharset KOI8-r .koi8-r .koi8-ru
AddCharset KOI8-U .koi8-u
AddCharset KOI8-ru .koi8-uk .ua
AddCharset ISO-10646-UCS-2 .ucs2
AddCharset ISO-10646-UCS-4 .ucs4
AddCharset UTF-7 .utf7
AddCharset UTF-8 .utf8
AddCharset UTF-16 .utf16
AddCharset UTF-16BE .utf16be
AddCharset UTF-16LE .utf16le
AddCharset UTF-32 .utf32
AddCharset UTF-32BE .utf32be
AddCharset UTF-32LE .utf32le
AddCharset euc-cn .euc-cn
AddCharset euc-gb .euc-gb
AddCharset euc-jp .euc-jp
AddCharset euc-kr .euc-kr
#Not sure how euc-tw got in - IANA doesn't list it???
AddCharset EUC-TW .euc-tw
AddCharset gb2312 .gb2312 .gb
AddCharset iso-10646-ucs-2 .ucs-2 .iso-10646-ucs-2
AddCharset iso-10646-ucs-4 .ucs-4 .iso-10646-ucs-4
AddCharset shift_jis .shift_jis .sjis
</IfModule>
## The modmimemagic module allows the server to use various hints from the
## contents of the file itself to determine its type. The MIMEMagicFile
## directive tells the module where the hint definitions are located.
<IfModule modmimemagic.c>
MIMEMagicFile /etc/apache2/magic
</IfModule>
## HostnameLookups: Log the names of clients or just their IP addresses
## e.g., www.apache.org (on) or 204.62.129.132 (off).
## The default is off because it'd be overall better for the net if people
## had to knowingly turn this feature on, since enabling it means that
## each client request will result in AT LEAST one lookup request to the
## nameserver.
HostnameLookups Off
## LogLevel: Control the number of messages logged to the error_log.
## Possible values include: debug, info, notice, warn, error, crit,
## alert, emerg.
LogLevel warn
<IfModule modlogconfig.c>
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %b" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
<IfModule mod_logio.c>
# You need to enable mod_logio.c to use %I and %O
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
</IfModule>
# The location and format of the access logfile (Common Logfile Format).
# If you do not define any access logfiles within a <VirtualHost>
# container, they will be logged here. Contrariwise, if you do
# define per-<VirtualHost> access logfiles, transactions will be
# logged therein and not in this file.
#### For Mac OS X Server: Server Admin manages CustomLog directives
#### on a virtual host basis.
#CustomLog /var/log/apache2/access_log common
# If you prefer a logfile with access, agent, and referer information
# (Combined Logfile Format) you can use the following directive.
#CustomLog /var/log/apache2/access_log combined
</IfModule>
## Optionally add a line containing the server version and virtual host
## name to server-generated pages (error documents, FTP directory listings,
## mod_status and mod_info output etc., but not CGI generated documents).
## Set to "EMail" to also include a mailto: link to the ServerAdmin.
## Set to one of: On | Off | EMail
ServerSignature On
UseCanonicalName Off
## Aliases: Add here as many aliases as you need (with no limit). The format is
## Alias fakename realname
<IfModule mod_alias.c>
# Redirect: Allows you to tell clients about documents that used to
# exist in your server's namespace, but do not anymore. The client
# will make a new request for the document at its new location.
# Example:
# Redirect permanent /foo http://www.example.com/bar
# Alias: Maps web paths into filesystem paths and is used to
# access content that does not live under the DocumentRoot.
# Example:
# Alias /webpath /full/filesystem/path
# If you include a trailing / on /webpath then the server will
# require it to be present in the URL. You will also likely
# need to provide a <Directory> section to allow access to
# the filesystem path.
# ScriptAlias: This controls which directories contain server scripts.
# ScriptAliases are essentially the same as Aliases, except that
# documents in the target directory are treated as applications and
# run by the server when requested rather than as documents sent to the
# client. The same rules about trailing "/" apply to ScriptAlias
# directives as to Alias.
ScriptAliasMatch ^/cgi-bin/((?!(?i:webobjects)).*$) "/Library/WebServer/CGI-Executables/$1"
#### For Mac OS X Server: Uncomment this line to enable web-based
#### configuration of mailman:
#Include /etc/apache2/httpd_mailman.conf
<IfModule mod_setenvif.c>
<IfModule mod_negotiation.c>
# Allow convenient access to Apache manual
AliasMatch ^/manual(?:/(?:de|en|es|fr|ja|ko|pt-br|ru))?(/.*)?$ "/Library/WebServer/share/httpd/manual$1"
<Directory "/Library/WebServer/share/httpd/manual">
Options Indexes
AllowOverride None
Order allow,deny
Allow from all
<Files *.html>
SetHandler type-map
</Files>
SetEnvIf Request_URI ^/manual/(de|en|es|fr|ja|ko|pt-br|ru)/ prefer-language=$1
RedirectMatch 301 ^/manual(?:/(de|en|es|fr|ja|ko|pt-br|ru)){2,}(/.*)?$ /manual/$1$2
LanguagePriority en de es fr ja ko pt-br ru ForceLanguagePriority Prefer Fallback
</Directory>
</IfModule>
</IfModule>
</IfModule>
## Directives controlling the display of server-generated directory listings.
#### For Mac OS X Server: Note that indexing is further controlled
#### by the Server Admin application, which adds "Options +/-Indexes
#### in the virtual host scope.
<IfModule mod_autoindex.c>
## FancyIndexing is whether you want fancy directory indexing or standard
IndexOptions FancyIndexing
## AddIcon* directives tell the server which icon to show for different
## files or filename extensions. These are only displayed for
## FancyIndexed directories.
AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
AddIconByType (TXT,/icons/text.gif) text/*
AddIconByType (IMG,/icons/image2.gif) image/*
AddIconByType (SND,/icons/sound2.gif) audio/*
AddIconByType (VID,/icons/movie.gif) video/*
AddIcon /icons/binary.gif .bin .exe
AddIcon /icons/binhex.gif .hqx
AddIcon /icons/tar.gif .tar
AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
AddIcon /icons/a.gif .ps .ai .eps
AddIcon /icons/layout.gif .html .shtml .htm .pdf
AddIcon /icons/text.gif .txt
AddIcon /icons/c.gif .c
AddIcon /icons/p.gif .pl .py
AddIcon /icons/f.gif .for
AddIcon /icons/dvi.gif .dvi
AddIcon /icons/uuencoded.gif .uu
AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
AddIcon /icons/tex.gif .tex
AddIcon /icons/bomb.gif core
AddIcon /icons/back.gif ..
AddIcon /icons/hand.right.gif README
AddIcon /icons/folder.gif ^^DIRECTORY^^
AddIcon /icons/blank.gif ^^BLANKICON^^
## DefaultIcon is which icon to show for files which do not have an icon
## explicitly set.
DefaultIcon /icons/unknown.gif
## AddDescription allows you to place a short description after a file in
## server-generated indexes. These are only displayed for FancyIndexed
## directories.
## Format: AddDescription "description" filename
#AddDescription "GZIP compressed document" .gz
#AddDescription "tar archive" .tar
#AddDescription "GZIP compressed tar archive" .tgz
#AddDescription "Mac OS Disk Image file" .dmg
## ReadmeName is the name of the README file the server will look for by
## default, and append to directory listings.
## HeaderName is the name of a file which should be prepended to
## directory indexes.
## If MultiViews are amongst the Options in effect, the server will
## first look for name.html and include it if found. If name.html
## doesn't exist, the server will then look for name.txt and include
## it as plaintext if found.
ReadmeName README
HeaderName HEADER
## IndexIgnore is a set of filenames which directory indexing should ignore
## and not include in the listing. Shell-style wildcarding is permitted.
IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t
</IfModule>
## MetaDir: specifies the name of the directory in which Apache can find
## meta information files. These files contain additional HTTP headers
## to include when sending the document
#MetaDir .web
## MetaSuffix: specifies the file name suffix for the file containing the
## meta information.
#MetaSuffix .meta
# Customizable error responses come in three flavors:
# 1) plain text 2) local redirects 3) external redirects
# Some examples:
#ErrorDocument 500 "The server made a boo boo."
#ErrorDocument 404 /missing.html
#ErrorDocument 404 "/cgi-bin/missing_handler.pl"
#ErrorDocument 402 http://www.example.com/subscription_info.html
# The configuration below implements multi-language error documents through
# content-negotiation, and via the default Alias for /error in the vhost config file.
<Directory "/usr/share/httpd/error">
AllowOverride None
Options IncludesNoExec
AddOutputFilter Includes html
AddHandler type-map var
Order allow,deny
Allow from all
LanguagePriority en cs de es fr it ja ko nl pl pt-br ro sv tr
ForceLanguagePriority Prefer Fallback
</Directory>
ErrorDocument 400 /error/HTTPBADREQUEST.html.var
ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var
ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var
ErrorDocument 404 /error/HTTPNOTFOUND.html.var
ErrorDocument 405 /error/HTTPMETHOD_NOTALLOWED.html.var
ErrorDocument 408 /error/HTTPREQUEST_TIMEOUT.html.var
ErrorDocument 410 /error/HTTP_GONE.html.var
ErrorDocument 411 /error/HTTPLENGTHREQUIRED.html.var
ErrorDocument 412 /error/HTTPPRECONDITIONFAILED.html.var
ErrorDocument 413 /error/HTTPREQUEST_ENTITY_TOOLARGE.html.var
ErrorDocument 414 /error/HTTPREQUEST_URI_TOOLARGE.html.var
ErrorDocument 415 /error/HTTPUNSUPPORTED_MEDIATYPE.html.var
ErrorDocument 500 /error/HTTPINTERNAL_SERVERERROR.html.var
ErrorDocument 501 /error/HTTPNOTIMPLEMENTED.html.var
ErrorDocument 502 /error/HTTPBADGATEWAY.html.var
ErrorDocument 503 /error/HTTPSERVICEUNAVAILABLE.html.var
ErrorDocument 506 /error/HTTPVARIANT_ALSOVARIES.html.var
# Allow server status reports generated by mod_status,
# with the URL of http://servername/server-status
<IfModule mod_status.c>
<Location /server-status>
SetHandler server-status
Order deny,allow
Deny from all
Allow from 127.0.0.1
</Location>
# ExtendedStatus controls whether Apache will generate "full" status
# information (ExtendedStatus On) or just basic information (ExtendedStatus
# Off) when the "server-status" handler is called. The default is Off.
ExtendedStatus On
</IfModule>
# Allow remote server configuration reports, with the URL of
# http://servername/server-info (requires that mod_info.c be loaded).
#<IfModule mod_info.c>
# <Location /server-info>
# SetHandler server-info
# Order deny,allow
# Deny from all
# Allow from .your-domain.com
# </Location>
#</IfModule>
## Proxy Server directives.
<IfModule mod_proxy.c>
ProxyRequests Off
<IfModule moddiskcache.c>
CacheEnable disk /
CacheRoot "/var/run/proxy"
</IfModule>
</IfModule>
## SSL stuff
<IfModule mod_ssl.c>
SetEnvIf User-Agent ".MSIE." nokeepalive ssl-unclean-shutdown
SSLPassPhraseDialog exec:/etc/apache2/getsslpassphrase
SSLSessionCache shmcb:/var/run/ssl_scache(512000)
SSLSessionCacheTimeout 300
SSLMutex file:/var/log/apache2/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
AddType application/x-x509-ca-cert crt
AddType application/x-pkcs7-crl crl
</IfModule>
<IfModule mod_jk.c>
JkWorkersFile /etc/apache2/workers.properties
JkLogFile /var/log/apache2/mod_jk.log
JkLogLevel error
JkMount /*.jsp JBoss1
JkMount /servlet/* JBoss1
JkMount /examples/* JBoss1
</IfModule>
## The default server is used for status on a special port
#ServerName www.example.com
Listen 127.0.0.1:9010
DocumentRoot "/var/empty"
ErrorLog "/var/log/apache2/error_log"
<Directory /var/empty>
Order Deny,Allow
Deny from All
</Directory>
<IfModule modspotlightapple2.c>
Spotlight On
</IfModule>
<IfModule modauth_digestapple.c>
BrowserMatch "MSIE" AuthDigestEnableQueryStringHack=On
</IfModule>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_METHOD} ^TRACE
RewriteRule .* - [F]
</IfModule>
<IfModule mod_headers.c>
Header add MS-Author-Via "DAV"
RequestHeader set XFORWARDEDPROTO 'https' env=https
</IfModule>
<IfModule mod_encoding.c>
EncodingEngine on
NormalizeUsername on
DefaultClientEncoding UTF-8
# Windows XP?
AddClientEncoding "Microsoft-WebDAV-MiniRedir/" MSUTF-8
# Windows 2K SP2 with .NET
AddClientEncoding "(Microsoft .* DAV\$)" MSUTF-8
# Windows 2K SP2/Windows XP
AddClientEncoding "(Microsoft .* DAV 1.1)" CP932
# Windows XP?
AddClientEncoding "Microsoft-WebDAV*" CP932
# RealPlayer
AddClientEncoding "RMA/*" CP932
# MacOS X webdavfs
AddClientEncoding "WebDAVFS" UTF-8
# cadaver
AddClientEncoding "cadaver/" EUC-JP
</IfModule>
RLimitNPROC max max
ExtendedStatus On
Timeout 300
KeepAlive On
MaxKeepAliveRequests 500
KeepAliveTimeout 15
# As of Mac OS X Server 10.5, the compiled-in server limit is 2048
ServerLimit 2048
# Server Admin manages ListenBackLog as a function of MaxClients: min(511, MaxClients/2)
MaxClients 1024
ListenBackLog 512
# Including WebObjects Configs
Include /System/Library/WebObjects/Adaptors/Apache2.2/apache.conf
#### The following Include directive is essential for the virtual hosts to be usable.
Include "/etc/apache2/sites/*.conf"
========HTTPD.CONF==========I am modifying the correct httpd.conf file on the server, it just doesn't seem to work. - If I put the rewrite rules in the <Directory /> the rewrite works but it adds /Library/WebServer/Documents to the URL.
I also tried putting the rewrite rules in <IfModule mod_rewrite.c> but that did not work either.
mod_rewrite is enabled and running on the server.
I will post the rewrite rules again in the code brackets. Sorry for the long post. - If some one can try them out on their Leopard Server to see if they can get them to work, it would be much appreciated. Again, these work on my Leopard Client but I can't get them to work on Server.
-- The httpd.conf file posted above is just the default conf file found in /private/etc/apache2/
<code>
RewriteEngine On
Options +FollowSymLinks
RewriteRule ^(.+)/$ http://%{HTTP_HOST}$1 [R=301, L]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.php(.*)\ HTTP
RewriteRule (.+)\.php(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.asp(.*)\ HTTP
RewriteRule (.+)\.asp(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.aspx(.*)\ HTTP
RewriteRule (.+)\.aspx(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.htm.(.)\ HTTP
RewriteRule (.+)\.htm.(.)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.cfm(.*)\ HTTP
RewriteRule (.+)\.cfm(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.bak(.*)\ HTTP
RewriteRule (.+)\.bak(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\.inc(.*)\ HTTP
RewriteRule (.+)\.inc(.*)$ $1$2 [R, L]]
RewriteCond %{THE_REQUEST} ^GET\ ([^\?]+)\..(.)\ HTTP
RewriteRule (.+)\..(.)$ $1$2 [R, L]]
<code> -
Dual OS system booting issue - Solaris with Windows XP Pro
Hi,
I have installed Windows XP Professional with SP2 on my laptop Dell Inspiron 6400 (Intel Core 2 Duo). I created partition as below,
C: 25GB (Primary : Active) Installed XP
D: 15GB (Primary) - Tried to install Solaris here
F: 10GB (Primary)
G: 20 GB (Logical)
H: 20 GB (Logical)
1. I tried to install Solaris 10, booted up system from DVD and selected Solaris. I got a message related to "License..." and it stopped right there, nothing showed up on screen after the message. I forced it to shutdown.
2. Next, I tried with Solaris Express Developer edition DVD. I was able to proceed until "Install" option. After clicking "Install" button, it reported some account name(no account name found) setting problem and quitted from installation. It asked to remove the DVD manually. But I was not able to eject it, got stuck. I switched off it and removed DVD.
When I bootup the system next time from HDD or CD or USB bootable backup, it showed blank screen and blinking cursor. I am not able to boot system with Win XP or USB Win Xp bootable. I am able to enter BIOS setup.
Please let me know how to boot up Win Xp and install Solaris with it.with my little experience i find solaris 10 isn't able to install on sata hdd but with solaris express edition 5.11 i was able to install it on my lap top toshiba tecra and now i can boot with xp sp2 and solaris i hope this answer your question .
-
Help me Decide on OpenBSD or Solaris as my web and file server please
Hi
5 questions
i have been using OpenBSD as my Web and file server for a while now
and FreeBSD as my Desktop
i decided on OpenBSD as my Server because of its Security
1) But now i hear Solaris is the most Secure OS pn the Planet? is this true
And which is real Unix?
i seem to always have trouble with things such as PHP on OpenBSD
Most of my pages run as *.html but i also have a forum which uses PHP 4
But all my PHP pages come up blank..
i am always encountering errors using PHP
2) If i Switch to Solaris will it b even harder to use or
is it precompiled with PHP 4 and higher when i install Apache
3) Also what about cgi and the ability to use *.htaccess files should i use them
4) Also i i still would like to generate SSH keys ssh-keygen
is that possible?Forcing the user to login using only a key and
not a password on SSH
5) Does Solaris have any Linux compatibility as well?as FreeBSD has
Concider me a newbie even though i use to post on this forum once before
i am always experimenting trying new things out
Message was edited by:
heathervalEither will work just fine. Since you're asking in the Sun forums, you should receive more Solaris replies of course! :-)
The weak point in your setup (as far as security goes) would be the use of PHP either way... -
Zone setup in solaris 10 some problem and doubts
Hi Experts
I have small problem and doubt
If i login to global zone ... "zlogin -C -e @ testzone" how to logout from global zone......
testzone# when i press exit button it is comeing to zone login prompt
zone1 console login: @ ( from Zone login prompt i want to come
back to my normal solaris prompt i tried with pressing "shift+@ "
nothing is happening could you please tell me how to come out from zonelogin prompt ................
one more query after installation we are using " zlogin -C -e testzone "
is it rquire this same login commmand we have to use every time or only one time after installation of zone. we can use
"zlogin testzone " also what is difrrent these two... if you use " zlogin -C -e testzone " then only it will prompt for locale and language settings......
i have seen it is asking for locale setting and language ...... and it is asking only one time but if you use "zlogin testzone" it won't ask any such seetings......( only one time it will ask after the zone configuration)
Thanks
RKThis particular forum is for issues with applications, daemons
and applets that provide reports to you about a system state or condition.
Sun Remote Servies and Net Connect, are some of those reporting services
that you would subscribe to from Sun Support.
This is NOT a forum for you to report about an issue.
None of your postings, thus far, are within the scope of this particular forum.
For example, this latest thread would be better suited in the forum for Solaris Zones.
Put some planning into your posts and place each one into its appropriate place. -
Developer2000 application with Oracle 8i AND 9iDS
Hello,
We have a large application written in Developer 2000 and Oracle8i. We got three new products : Oracle 9i database, Oracle 9iAS and Oracle 9iDS (developer Suite).
I have the following questions :
(1) Can I compile and run my dev2k application with 9iDS (forms and reports dveloper) and view through a browser over the web ? Someone suggested that we can. I like to verify.
(2) What is the relationship of 9iDS with 9iAS ? Can I just install 9iDS and backend Oracle database and run my application (without 9iAS) ? This is very important for me.
(3) Can 9iAS talk to Oracle 8i seamlessly or we have to have Oracle 9i database in the backend ? Oracle 9i database has a large footprint and it needs Itenium 2 for executions which we do not have.
PLEASE HELP ME BY ANSWERING THESE QUESTIONS.
Thanks,
Shyam Sarkar
[email protected]quick answers:
1. Yes
2. you can develop with 9iDS and be able to "view" what you developed with it. When it comes to deployment, then you need 9iAS Enterprise Edition (the only version which has forms/reports services). Another words, you need license for both 9iDS and 9iAS EE.
3. I just verified from Metalink (only for the solaris platform) that 9iAS is certified against 9i and 8.1.7 database servers. For other platforms, please check Metalink.
hope this proves useful.
regards
Zafer AKTAN
Oracle DBA/Developer -
Dual Boot Solaris 2.5.1 and 2.8
Is it possible to dual boot a Sparc Ultra 10 workstation with Solaris 2.5.1 and a more recent version (such as 2.8). If so please point me to some documentation.
This is required as we are running several pieces of software licensed against the hostid, that will soon require different versions of Solaris.
Thanks in anticipation.You should make an alias for your second OS location, for example disksol28.The easiest way to do this is run the format command. Write down the physical path for each disk you see. Your boot disk is probably c0t0d0 and the second disk, if you have one would be c0t1d0. If you are going to install 2.8 on another slice/partition of the first disk, write down that pathname, you'll need it for the nvalias command. If you are going to install it on the second disk then the alias "disk1" will probably work already, if you did not change the eeprom during install. You'll just have to:
ok
boot disk1
If you install 2.8 on another slice of your single disk then do not forget to include the slice in your alias.
If I asume your 2.5.1 is a flat file system (/ only, no /usr, /var, /opt, /export etc.) on slice 0 and swap is on Slice 1, then I can put another flat file system on Slice 3 - don't touch Slice 2. This OS can use the same swap Slice 1. To create an alias to boot from Slice 3:
ok
nvalias disksol28 <pathname from format goes here> :d
reset <- (locks it in to NVRAM)
example:
nvalias disksol28 /pci@1f,400/pci@1/disk@0,0:d
reset
Note:Slice 0 is asumed in most aliases. For example if your alias ends wih disk@0,0 Slice 0 is assumed. You can also say disk@0,0:a to indicate Slice 0 but ":a" is not really needed.
If you are booting off of any other slice then it must be indicated in your alias.
Slice
0 :a
1 :b
2 :c
3 :d
4 :e
5 :f
6 :g
7 :h
If you want to create an alias for your second disk (c0t1d0) with root on slice 0:
ok
nvalias disksol28 <pathname from format goes here>
reset <- (locks it in to NVRAM)
example:
nvalias disksol28 /pci@1f,400/pci@1/disk@1,0
reset
Please write down any custom aliases because a Stop+n or set-defaults will wipe them out.
If you make a mistake with nvalias then:
ok
nvunalias disksol28
reset
If you want disksol28 to be your primary boot device then:
ok
setenv boot-device disksol28
setenv diag-device disksol28
reset
Good Luck,
John -
How install Solaris 2.5.1 and Windows Together
Hi, We�ve a registered copy of Solaris 2.5.1 and we can�t install solaris and windows in the same Hard disk.
I�ve been trying since two weeks. I can�t found a document that help me with this task.
Please, help me with the directions to do that or try to indicate me an internet link to read it.
Thanks a lot.OK, this is that I did.
1. With solaris 2.5.1. boot disk install solaris from CDROM
2. I do the partition in hard disk, the disk has 3 GB, and make a 940 MB partition for solaris and the rest for Windows
3. I install solaris in stangalong mode
4. When I finished solaris installation, it ask me wich partition are going to use to boot de machine.
5. I format a WINDOWS disk partition to install it.
6. I transfered the system to the windows partition
7. Reboot the machine and the solaris still ask me by wich O/S are going to use to boot.
8. Then, install Windows 95 B version, and when rebbot the machine, the boot manager of salaris dissaper.
9. With FDISK of windows and put the second partition (solaris) as active, and nothing happens.
Note: I`m using the solaris partition as second one, i mean that the main partition is Windows (is exactly that I did have it). -
Problem with logical domain and boot net
Trying to install a new domain on a T2000. Able to get to "Configuring devices" but then it just sits and twirls... What have I configured wrong in the domain creation?
I have:
{0} ok show-devs
/cpu@7
/cpu@6
/cpu@5
/cpu@4
/cpu@3
/cpu@2
/cpu@1
/cpu@0
/virtual-devices@100
/virtual-memory
/memory@m0,8000000
/aliases
/options
/openprom
/chosen
/packages
-virtual-devices@100/channel-devices@200
\virtual-devices@100/console@1
/virtual-devices@100/ncp@4
/virtual-devices@100/channel-devices@200/disk@0
/virtual-devices@100/channel-devices@200/network@0
/openprom/client-services
/packages/obp-tftp
/packages/kbd-translator
/packages/SUNW,asr
/packages/dropins
/packages/terminal-emulator
/packages/disk-label
/packages/deblocker
/packages/SUNW,builtin-drivers
|0} ok show-disks
/) /virtual-devices@100/channel-devices@200/disk@0There are a number of issues with network booting in LDOM 1.0.2, I think they affect all versions of the LDOM software though. If you add a vnet to a guest domain and then try and jumpstart a guest domain from time to time immediately after the guest domain does the RARP request it hangs. Just sending a break to the guest domain, going back to the ok prompt and starting the boot net - install again generally fixes it.
Also there are some gotcha's with LDOM's that affect jumpstart.
1) If you chose option a) harden the OS using JASS when doing the installation of the LDOM software and you have the jumpstart server on the control domain then it isn't going to work. JASS turns off things like rpcbind which will prevent jumpstart from working. The same problem affects network booting. You would think that running a jass-execute -u to undo the hardening of the o/s in the control domain would work but it doesn't and you have to start over with a fresh solaris image for the control domain. This only applies if you have your jumpstart server on your control domain.
2) Since jumpstart relies on the MAC of the client to function and since with LDOM's the MAC is dynamically assigned from a pool of address's you can end up with the wrong entry in /etc/ethers on your jumpstart server. That is worth checking.
3) Since the MAC of the virtual network device isn't the same as the MAC shown when you run banner at the ok prompt in the guest domain you can end up with the wrong entry in /etc/ethers. Either do a boot net (vnet1 whatever) and then make a note of the MAC its broadcasting or do an ldm list-bindings domainname for the guest you want to network boot and copy and paste the MAC of the virtual network you are going to be booting from.
All the regular gotcha's with net boot and jumpstart still apply with LDOM's but so do all the usual fixes. Use of snoop will allow you do debug most problems. Also using show-nets at the ok prompt in the guest domain and make sure that you have the right number of virtual networks.
Paul. -
Minimum requirement, hardware of SUN Solaris with ECC 6.0
hi all
can anyone tell me what is minimum requirement of hardware of SUN Solaris with ECC 6.0
i serach out in marketplace but didn't get the answer.
so any one can solve my problem
rgds
aftabhi juan
i go to quick sizing but its looks too confusing like FI, HR, SCM etc and asking too many values which we don't need to specify in our case. We only need hardware minimum / maximum requirement to install SAP ECC6 SR3 on Solaris Sparc machine..
tell me how can i do in simplified way
thanks in advance
Rgds+
Aftab
Maybe you are looking for
-
Need help on Null value check function
Hey guys, I need to create a function that will accept two values and perform a comparison on them and based on whether or not they're different, return true or false. Initially I had no idea about the problems of comparing when a value was null, hen
-
Eigene Konturenstärken in InDesign CS5.5?
Hallo liebes Forum, die Grundvoraussetzungen sind Folgende: InDesign CS5.5, Design Standard, MacOSX. Wisst Ihr, ob es möglich ist, eigene Konturenstärken als Standard zu definieren und dieses ins Drop-Down-Menü zu integrieren? Derzeit ist als Standar
-
Does anyone know why my documents won't open on the desktop
Neither JPG/Word/folders nor the MacintoshHD will open when either single or double clicked? Any ideas why this could be?
-
Data loss in the secure file transfer using java
Hi, My java Appllication uses the sftp(secure file transfer protocol) for file transferring. when the load is high like 150 GB , data loss occuring for some files especially last chunk of data is missing. Core file transfer code while (true) int read
-
Exchange rate over ride not possible
Hello we have for a certain date the exchange rate defined in TCURR as GBP->USD @ .50448 for usage type "M". But for few entries we want the exchange rate to be a different value. When we enter the document via FBV1 - we put the amount as 200 GBP (co