--- loncom/loncapa_apache.conf 2013/08/09 20:59:57 1.215.2.9 +++ loncom/loncapa_apache.conf 2014/01/08 18:56:25 1.215.2.11 @@ -2,7 +2,7 @@ ## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file ## -# $Id: loncapa_apache.conf,v 1.215.2.9 2013/08/09 20:59:57 raeburn Exp $ +# $Id: loncapa_apache.conf,v 1.215.2.11 2014/01/08 18:56:25 raeburn Exp $ # # LON-CAPA Section (extensions to httpd.conf daemon configuration) @@ -30,7 +30,7 @@ PerlSetVar MODPERL2 1 # =============================================================== Miscellaneous -ServerAdmin korte@lite.msu.edu +ServerAdmin consortium@loncapa.org ExtendedStatus On # # LON-CAPA Section (extensions to srm.conf name space servicing) @@ -64,11 +64,11 @@ PerlSetVar lonOtherAuthen no #PerlWarn On -PerlAuthenHandler 'sub { return OK }' +PerlAuthzHandler 'sub { return OK }' # Send proper expires header to avoid unnecessary HTTP request for static content - + ExpiresActive On ExpiresDefault "access plus 12 hours" Header set Cache-Control "public, no-transform" @@ -416,8 +416,8 @@ ErrorDocument 413 /adm/overloaded.tx AuthType LONCAPA Require valid-user -SetHandler perl-script PerlAuthzHandler Apache::lonacc +SetHandler perl-script PerlHandler Apache::lonmeta @@ -635,8 +635,8 @@ PerlHandler Apache::lonlogin PerlAccessHandler Apache::publiccheck AuthType LONCAPA Require valid-user -SetHandler perl-script PerlAuthzHandler Apache::lonacc +SetHandler perl-script PerlHandler Apache::restrictedaccess ErrorDocument 500 /adm/errorhandler @@ -645,8 +645,8 @@ ErrorDocument 500 /adm/errorhandler PerlAccessHandler Apache::publiccheck AuthType LONCAPA Require valid-user -SetHandler perl-script PerlAuthzHandler Apache::lonacc +SetHandler perl-script PerlHandler Apache::blockedaccess ErrorDocument 500 /adm/errorhandler @@ -1440,8 +1440,13 @@ PerlChildExitHandler Apache::lonacc::goo Options None AllowOverride None -order deny,allow -deny from all + + Require all denied + + + order deny,allow + deny from all + # Allow uploaded files to be served @@ -1449,8 +1454,13 @@ deny from all Options Includes FollowSymLinks AllowOverride None -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # Allow construction space files to be served @@ -1458,8 +1468,13 @@ allow from all Options Includes FollowSymLinks AllowOverride -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # Yes to symbolic links and server-side includes @@ -1467,8 +1482,13 @@ allow from all Options Includes FollowSymLinks AllowOverride None -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # If it is in cgi-bin, then it can be executed as a CGI script. @@ -1476,8 +1496,13 @@ allow from all AllowOverride None Options ExecCGI FollowSymLinks -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # Allow serving of files in prtspool @@ -1485,8 +1510,13 @@ allow from all Options Includes FollowSymLinks AllowOverride None -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # Allow serving of files in zipspool @@ -1494,8 +1524,13 @@ allow from all Options Includes FollowSymLinks AllowOverride None -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + # Allow serving of files in captchaspool @@ -1503,10 +1538,19 @@ allow from all Options Includes FollowSymLinks AllowOverride None -order allow,deny -allow from all + + Require all granted + + + order allow,deny + allow from all + + + DirectoryIndex disabled + + # ============================================================= Access Handlers # ------------------------------------------------- Allow server-status reports @@ -1525,10 +1569,15 @@ ErrorDocument 500 /adm/errorhandler # ------------------- Allow access to local system documentation from localhost Alias /doc /usr/doc -order deny,allow -deny from all -allow from localhost Options Indexes FollowSymLinks + + Require local + + + order deny,allow + deny from all + allow from localhost + # ******** THESE "SHOULD" NEVER BE ALTERED BY THE USER ************************ @@ -1541,7 +1590,7 @@ PerlSetVar lonTabDir /home/http PerlSetVar lonUsersDir /home/httpd/lonUsers PerlSetVar lonIconsURL /adm/lonIcons PerlSetVar londPort 5663 -PerlSetVar lonSysEMail korte@lite.msu.edu +PerlSetVar lonSysEMail techsupport@loncapa.org PerlSetVar lonDaemons /home/httpd/perl PerlSetVar lonLib /home/httpd/lib PerlSetVar lonSockDir /home/httpd/sockets