maybe chmod 0644 'apache2/apache2.conf'
maybe chmod 0755 'apache2/conf-available'
maybe chmod 0644 'apache2/conf-available/charset.conf'
+maybe chmod 0644 'apache2/conf-available/custom-log.conf'
maybe chmod 0644 'apache2/conf-available/iredadmin.conf'
maybe chmod 0644 'apache2/conf-available/javascript-common.conf'
maybe chmod 0644 'apache2/conf-available/localized-error-pages.conf'
maybe chmod 0644 'apache2/conf-available/serve-cgi-bin.conf'
maybe chmod 0755 'apache2/conf-enabled'
maybe chmod 0644 'apache2/envvars'
+maybe chmod 0644 'apache2/info_users_passwd'
maybe chmod 0644 'apache2/magic'
maybe chmod 0755 'apache2/mods-available'
maybe chmod 0644 'apache2/mods-available/access_compat.load'
maybe chmod 0755 'apache2/mods-enabled'
maybe chmod 0644 'apache2/ports.conf'
maybe chmod 0755 'apache2/sites-available'
+maybe chmod 0644 'apache2/sites-available/000-default-ssl.conf'
maybe chmod 0644 'apache2/sites-available/000-default.conf'
+maybe chmod 0644 'apache2/sites-available/default-include.conf'
maybe chmod 0644 'apache2/sites-available/default-ssl.conf'
maybe chmod 0755 'apache2/sites-enabled'
maybe chmod 0755 'apm'
maybe chmod 0644 'letsencrypt/live/README'
maybe chmod 0755 'letsencrypt/live/mail.uhu-banane.net'
maybe chmod 0644 'letsencrypt/live/mail.uhu-banane.net/README'
+maybe chmod 0644 'letsencrypt/options-ssl-apache.conf'
maybe chmod 0644 'letsencrypt/options-ssl-nginx.conf'
maybe chmod 0755 'letsencrypt/renewal'
maybe chmod 0755 'letsencrypt/renewal-hooks'
--- /dev/null
+
+LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" \"%T\" \"%v\" \"%f\"" full
+LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\" \"%T\" \"%v\" \"%f\"" full_combined
+
+<IfModule logio_module>
+ # You need to enable mod_logio.c to use %I and %O
+ LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" \"%T\" \"%v\" \"%f\" %I %O" full_io
+ LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
+ LogFormat "%v %h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" vhostio
+</IfModule>
+
+# vim: filetype=apache ts=4 sw=4 sts=4 sr noet
--- /dev/null
+../conf-available/custom-log.conf
\ No newline at end of file
--- /dev/null
+../conf-available/iredadmin.conf
\ No newline at end of file
--- /dev/null
+monitoring:$apr1$rq/i6DzS$Qk6YAABQSeIgXe5Z0cc7K0
+uhu:$apr1$cFagqyiq$T2azAWwszStOUz/mmfONd/
+frank:$apr1$q0RMdmRi$5egjyB4c32Ts/swS3hkuN0
#
<Location /server-info>
SetHandler server-info
- Require local
+ #Require local
#Require ip 192.0.2.0/24
+ AuthName "Server Status Access"
+ AuthType Basic
+ AuthBasicProvider file
+ AuthUserFile /etc/apache2/info_users_passwd
+ <RequireAny>
+ Require local
+ Require valid-user
+ </RequireAny>
</Location>
</IfModule>
<Location /server-status>
SetHandler server-status
- Require local
+ #Require local
#Require ip 192.0.2.0/24
+ AuthName "Server Status Access"
+ AuthType Basic
+ AuthBasicProvider file
+ AuthUserFile /etc/apache2/info_users_passwd
+ <RequireAny>
+ Require local
+ Require valid-user
+ </RequireAny>
</Location>
# Keep track of extended status information for each request
--- /dev/null
+../mods-available/socache_shmcb.load
\ No newline at end of file
--- /dev/null
+../mods-available/ssl.conf
\ No newline at end of file
--- /dev/null
+../mods-available/ssl.load
\ No newline at end of file
--- /dev/null
+<IfModule mod_ssl.c>
+ <VirtualHost _default_:443>
+
+ Include sites-available/default-include.conf
+
+ SSLEngine on
+
+ SSLCertificateFile /etc/letsencrypt/live/mail.uhu-banane.net/fullchain.pem
+ SSLCertificateKeyFile /etc/letsencrypt/live/mail.uhu-banane.net/privkey.pem
+
+ Include /etc/letsencrypt/options-ssl-apache.conf
+
+ #SSLCertificateChainFile /etc/apache2/ssl.crt/server-ca.crt
+
+ #SSLCACertificatePath /etc/ssl/certs/
+ #SSLCACertificateFile /etc/apache2/ssl.crt/ca-bundle.crt
+
+ #SSLCARevocationPath /etc/apache2/ssl.crl/
+ #SSLCARevocationFile /etc/apache2/ssl.crl/ca-bundle.crl
+
+ #SSLVerifyClient require
+ #SSLVerifyDepth 10
+
+ #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
+
+ <FilesMatch "\.(cgi|shtml|phtml|php)$">
+ SSLOptions +StdEnvVars
+ </FilesMatch>
+ <Directory /usr/lib/cgi-bin>
+ SSLOptions +StdEnvVars
+ </Directory>
+
+ BrowserMatch "MSIE [2-6]" \
+ nokeepalive ssl-unclean-shutdown \
+ downgrade-1.0 force-response-1.0
+ # MSIE 7 and newer should be able to use keepalive
+ BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
+
+ ServerName mail.uhu-banane.net
+ ServerAlias mail
+ ServerAlias mail.brehm-berlin.de
+ ServerAlias mail.brehm-online.com
+ ServerAlias mail.brehm-online.eu
+ ServerAlias mail.frankepedia.eu
+ ServerAlias mail.hennig-berlin.org
+ ServerAlias mail.uhu-banane.com
+ ServerAlias mail.uhu-banane.de
+ ServerAlias mail.uhu-banane.eu
+ ServerAlias mail.uhu-banane.org
+ ServerAlias sarah.uhu-banane.de
+ ServerAlias sarah
+ ServerAlias sarah.brehm-online.com
+ ServerAlias sarah.uhu-banane.com
+ ServerAlias sarah.uhu-banane.net
+ ServerAlias sarah.uhu-banane.org
+
+ </VirtualHost>
+</IfModule>
+
+# vim: filetype=apache ts=8 sw=4 sts=4 sr noet
<VirtualHost *:80>
- # The ServerName directive sets the request scheme, hostname and port that
- # the server uses to identify itself. This is used when creating
- # redirection URLs. In the context of virtual hosts, the ServerName
- # specifies what hostname must appear in the request's Host: header to
- # match this virtual host. For the default virtual host (this file) this
- # value is not decisive as it is used as a last resort host regardless.
- # However, you must set it for any further virtual host explicitly.
- #ServerName www.example.com
-
- ServerAdmin webmaster@localhost
- DocumentRoot /var/www/html
-
- # Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
- # error, crit, alert, emerg.
- # It is also possible to configure the loglevel for particular
- # modules, e.g.
- #LogLevel info ssl:warn
-
- ErrorLog ${APACHE_LOG_DIR}/error.log
- CustomLog ${APACHE_LOG_DIR}/access.log combined
-
- # For most configuration files from conf-available/, which are
- # enabled or disabled at a global level, it is possible to
- # include a line for only one particular virtual host. For example the
- # following line enables the CGI configuration for this host only
- # after it has been globally disabled with "a2disconf".
- #Include conf-available/serve-cgi-bin.conf
+ Include sites-available/default-include.conf
</VirtualHost>
# vim: syntax=apache ts=4 sw=4 sts=4 sr noet
--- /dev/null
+#ServerName www.example.com
+
+ServerAdmin frank@brehm-online.com
+DocumentRoot /var/www/html
+
+#LogLevel info ssl:warn
+
+ErrorLog ${APACHE_LOG_DIR}/error.log
+CustomLog ${APACHE_LOG_DIR}/access.log full_combined
+
+#Include conf-available/serve-cgi-bin.conf
+
+#Alias /Debian/ /home/repo/repos/Debian/
+#<Directory "/home/repo/repos/Debian">
+# Options Indexes FollowSymLinks
+# AllowOverride All
+# Order allow,deny
+# Allow from all
+#</Directory>
+
+#Alias /Ubuntu/ /home/repo/repos/Ubuntu/
+#<Directory "/home/repo/repos/Ubuntu">
+# Options Indexes FollowSymLinks
+# AllowOverride All
+# Order allow,deny
+# Allow from all
+#</Directory>
+
+#Alias /public/ /home/repo/public/
+#<Directory "/home/repo/public">
+# Options Indexes FollowSymLinks
+# AllowOverride All
+# Order allow,deny
+# Allow from all
+#</Directory>
+
+
+# vim: filetype=apache ts=4 sw=4 sts=4 sr noet
# nokeepalive ssl-unclean-shutdown \
# downgrade-1.0 force-response-1.0
+ WSGIScriptAlias /iredadmin /opt/www/iredadmin/iredadmin.py/
+ Alias /iredadmin/static /opt/www/iredadmin/static/
+
</VirtualHost>
</IfModule>
--- /dev/null
+../sites-available/000-default-ssl.conf
\ No newline at end of file
--- /dev/null
+# This file contains important security parameters. If you modify this file
+# manually, Certbot will be unable to automatically provide future security
+# updates. Instead, Certbot will print and log an error message with a path to
+# the up-to-date file that you will need to refer to when manually updating
+# this file.
+
+SSLEngine on
+
+# Intermediate configuration, tweak to your needs
+SSLProtocol all -SSLv2 -SSLv3
+SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
+SSLHonorCipherOrder on
+SSLCompression off
+
+SSLOptions +StrictRequire
+
+# Add vhost name to log entries:
+LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-agent}i\"" vhost_combined
+LogFormat "%v %h %l %u %t \"%r\" %>s %b" vhost_common
+
+#CustomLog /var/log/apache2/access.log vhost_combined
+#LogLevel warn
+#ErrorLog /var/log/apache2/error.log
+
+# Always ensure Cookies have "Secure" set (JAH 2012/1)
+#Header edit Set-Cookie (?i)^(.*)(;\s*secure)??((\s*;)?(.*)) "$1; Secure$3$4"
|____/ \__,_|_| \__,_|_| |_|
-Wer führen will, muß lernen, Emotionen zu produzieren.
- -- Ruperet Lay
+Leitfaden durch die Phraseologie wissenschaftlicher Veröffentlichungen:
+Englisch:
+ Besides the obvious scientific value of this study, an understanding
+ of the structure of X may also be important clinically.
+Deutsch:
+ Der wissenschaftliche Wert der Untersuchung ist durchschnittlich und
+ eine klinische Anwendung nicht absehbar.
Today is Pungenday, the 20th day of Discord in the YOLD 3187