summaryrefslogtreecommitdiff
path: root/config
diff options
context:
space:
mode:
Diffstat (limited to 'config')
-rw-r--r--config/apache-dhelp-2.2.conf53
-rw-r--r--config/apache-dhelp.conf14
2 files changed, 60 insertions, 7 deletions
diff --git a/config/apache-dhelp-2.2.conf b/config/apache-dhelp-2.2.conf
new file mode 100644
index 0000000..ff20368
--- /dev/null
+++ b/config/apache-dhelp-2.2.conf
@@ -0,0 +1,53 @@
+# This config file is for Apache version 2.2.x and is installed
+# into /etc/apache2/conf.d. It is ignored by Apache version 2.4.x;
+# that has its own configuration file available in
+# /etc/apache2/conf-available
+<Location ~ /cgi-bin/d(search|help_fetcher)(\?.*)?>
+ order deny,allow
+ deny from all
+ allow from localhost
+ Options -Indexes -MultiViews
+</Location>
+
+<Directory /usr/share/doc>
+ order deny,allow
+ deny from all
+ allow from localhost
+ Options Indexes MultiViews FollowSymLinks
+</Directory>
+
+# The following directives are needed for the operation of Debian Online Help
+# and are assumed to already be enabled on the server's configuration:
+#
+#Alias /doc /usr/share/doc
+#
+#ScriptAlias /cgi-bin /usr/lib/cgi-bin
+#<Directory /usr/lib/cgi-bin>
+# AllowOverride None
+# Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
+# order allow,deny
+# allow from all
+#</Directory>
+#
+# Note that enabling /doc/ alias may result in a security vulnerability,
+# specifically CVE-2012-0216. Thus newer versions of the apache2 package
+# do NOT have the /doc/ alias enabled by default.
+#
+# See http://www.debian.org/security/2012/dsa-2452 for reference and to
+# decide whether the conditions stated there apply to your case.
+#
+# Then, enable the /doc/ alias by uncommenting the line above, if you judge
+# that it is secure to do so. Else you can uncomment the following two lines
+# to allow a secure partial operation of Debian Online Help, even if the
+# above vulnerability is present:
+#
+#Alias /doc/HTML /usr/share/doc/HTML
+#Alias /doc/dhelp/css /usr/share/doc/dhelp/css
+#
+# Using the above two alias you will be able to see descriptions and search
+# for terms, but the documents themselves will be inaccessible. You will need
+# to manually add an alias directive *for each document* that you want it to
+# become accessible.
+#
+# See also /usr/share/doc/dhelp/README.Debian for more information.
+
diff --git a/config/apache-dhelp.conf b/config/apache-dhelp.conf
index 48a2ccd..ae9dda2 100644
--- a/config/apache-dhelp.conf
+++ b/config/apache-dhelp.conf
@@ -1,14 +1,14 @@
+# This config file is for Apache version 2.4.x and is installed
+# into /etc/apache2/conf-available. It is ignored by Apache version 2.2.x;
+# that has its own configuration file available in
+# /etc/apache2/conf.d
<Location ~ /cgi-bin/d(search|help_fetcher)(\?.*)?>
- order deny,allow
- deny from all
- allow from localhost
+ Require local
Options -Indexes -MultiViews
</Location>
<Directory /usr/share/doc>
- order deny,allow
- deny from all
- allow from localhost
+ Require local
Options Indexes MultiViews FollowSymLinks
</Directory>
@@ -27,7 +27,7 @@
# Note that enabling /doc/ alias may result in a security vulnerability,
# specifically CVE-2012-0216. Thus newer versions of the apache2 package
# do NOT have the /doc/ alias enabled by default.
-#
+#
# See http://www.debian.org/security/2012/dsa-2452 for reference and to
# decide whether the conditions stated there apply to your case.
#