Apache2.4/src/conf-available/zzz-apache2.conf at main · ojullien/Apache2.4 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
## -----------------------------------------------------
## Apache 2.4
## User Apache server configuration file.
##
## @context server config
## @module Core
## @author Olivier Jullien <https://github.com/ojullien>
## -----------------------------------------------------

#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout 10

#
# LogLevel: Control the severity of messages logged to the error_log.
# Available values: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the log level for particular modules, e.g.
# "LogLevel info ssl:warn"
#
LogLevel error

#
# Default charset parameter to be added when a response content-type is
#  text/plain or text/html
#
AddDefaultCharset utf-8

# Sets the default security model of the Apache2 HTTPD server. It does
# not allow access to the root filesystem outside of /usr/share and /var/www.
# The former is used by web applications packaged in Debian,
# the latter may be used for local directories served by the web server. If
# your system is serving content from a sub-directory in /srv you must allow
# access here, or in any related virtual host.
<Directory />
    Options FollowSymLinks
    AllowOverride None
    Require all denied
</Directory>

<Directory /usr/share>
    AllowOverride None
    Require all granted
</Directory>

<Directory /var/www/>
    Options FollowSymLinks
    AllowOverride None
    Require all denied
</Directory>