Apache Extra Configuration
						===================

Shanker Balan
http://shankerbalan.com/

Changelog:

Thu May  8 12:24:10 IST 2003
- Added SSL part
Wed May  7 17:13:53 IST 2003
- Initial commit.

###
### apache2/httpd.conf
###

# Listen: Allows you to bind Apache to specific IP addresses and/or ports,
# instead of the default.

#Listen 12.34.56.78:80
Listen 127.0.0.1:80
Listen [::1]:80
Listen 192.168.1.24:80
Listen 192.168.1.23:80

# ServerAdmin: Your address, where problems with the server should be e-mailed.
# This address appears on some server-generated pages, such as error documents.
# e.g. admin@your-domain.com

#ServerAdmin you@your.address
ServerAdmin www@mydomain.com

# ServerName gives the name and port that the server uses to identify itself.
# This can often be determined automatically, but we recommend you specify it
# explicitly to prevent problems during startup.

Servername www.mydomain.com:80

# ServerTokens
# This directive configures what you return as the Server HTTP response
# Header. The default is 'Full' which sends information about the OS-Type
# and compiled in modules.
# Set to one of:  Full | OS | Minor | Minimal | Major | Prod
# where Full conveys the most information, and Prod the least.

#ServerTokens Full
ServerTokens Prod

# Optionally add a line containing the server version and virtual host
# name to server-generated pages (internal error documents, FTP directory 
# listings, mod_status and mod_info output etc., but not CGI generated 
# documents or custom error documents).
# Set to "EMail" to also include a mailto: link to the ServerAdmin.
# Set to one of:  On | Off | EMail

ServerSignature Off

# Use name-based virtual hosting.
NameVirtualHost *

<VirtualHost *>
    ServerAdmin webmaster@mydomain.com
    DocumentRoot /usr/local/www/mydomain
    ServerName www.mydomain.com
    ErrorLog /var/log/httpd/www.mydomain.com-error_log
    CustomLog /var/log/httpd/www.mydomain.com-access_log common
</VirtualHost>

<VirtualHost 192.168.1.23>
    ServerAdmin www2.mydomain.com
    DocumentRoot /usr/local/www/data
    ServerName www2.mydomain.com
    ErrorLog /var/log/httpd/www2.mydomain.com-error_log
    CustomLog /var/log/httpd/www2.mydomain.com-access_log common
</VirtualHost>

###
### apache2/ssl.conf
###

Listen 127.0.0.1:443
Listen [::1]:443
Listen 192.168.1.24:443

<VirtualHost 192.168.1.24:443>
DocumentRoot "/usr/local/www/data"
ServerName www.mydomain.com:443
ServerAdmin www@mydomain.com
ErrorLog /var/log/httpd-error.log
TransferLog /var/log/httpd-access.log

SSLEngine on

SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL

SSLCertificateFile /usr/local/etc/apache2/ssl.crt/server.crt
SSLCertificateKeyFile /usr/local/etc/apache2/ssl.key/server.key
SSLCertificateChainFile /usr/local/etc/apache2/ssl.crt/ca.crt
</VirtualHost>

Notes:

- Directories apache2/ssl.crt and apache2/ssl.key are "root:wheel" with 0750
  perms.  server.crt, server.key  and ca.crt 0400 perms and owener "www:www"