diff options
Diffstat (limited to 'config')
-rw-r--r-- | config/apache-dhelp-2.2.conf | 53 | ||||
-rw-r--r-- | config/apache-dhelp.conf | 14 |
2 files changed, 60 insertions, 7 deletions
diff --git a/config/apache-dhelp-2.2.conf b/config/apache-dhelp-2.2.conf new file mode 100644 index 0000000..ff20368 --- /dev/null +++ b/config/apache-dhelp-2.2.conf @@ -0,0 +1,53 @@ +# This config file is for Apache version 2.2.x and is installed +# into /etc/apache2/conf.d. It is ignored by Apache version 2.4.x; +# that has its own configuration file available in +# /etc/apache2/conf-available +<Location ~ /cgi-bin/d(search|help_fetcher)(\?.*)?> + order deny,allow + deny from all + allow from localhost + Options -Indexes -MultiViews +</Location> + +<Directory /usr/share/doc> + order deny,allow + deny from all + allow from localhost + Options Indexes MultiViews FollowSymLinks +</Directory> + +# The following directives are needed for the operation of Debian Online Help +# and are assumed to already be enabled on the server's configuration: +# +#Alias /doc /usr/share/doc +# +#ScriptAlias /cgi-bin /usr/lib/cgi-bin +#<Directory /usr/lib/cgi-bin> +# AllowOverride None +# Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch +# order allow,deny +# allow from all +#</Directory> +# +# Note that enabling /doc/ alias may result in a security vulnerability, +# specifically CVE-2012-0216. Thus newer versions of the apache2 package +# do NOT have the /doc/ alias enabled by default. +# +# See http://www.debian.org/security/2012/dsa-2452 for reference and to +# decide whether the conditions stated there apply to your case. +# +# Then, enable the /doc/ alias by uncommenting the line above, if you judge +# that it is secure to do so. Else you can uncomment the following two lines +# to allow a secure partial operation of Debian Online Help, even if the +# above vulnerability is present: +# +#Alias /doc/HTML /usr/share/doc/HTML +#Alias /doc/dhelp/css /usr/share/doc/dhelp/css +# +# Using the above two alias you will be able to see descriptions and search +# for terms, but the documents themselves will be inaccessible. You will need +# to manually add an alias directive *for each document* that you want it to +# become accessible. +# +# See also /usr/share/doc/dhelp/README.Debian for more information. + diff --git a/config/apache-dhelp.conf b/config/apache-dhelp.conf index 48a2ccd..ae9dda2 100644 --- a/config/apache-dhelp.conf +++ b/config/apache-dhelp.conf @@ -1,14 +1,14 @@ +# This config file is for Apache version 2.4.x and is installed +# into /etc/apache2/conf-available. It is ignored by Apache version 2.2.x; +# that has its own configuration file available in +# /etc/apache2/conf.d <Location ~ /cgi-bin/d(search|help_fetcher)(\?.*)?> - order deny,allow - deny from all - allow from localhost + Require local Options -Indexes -MultiViews </Location> <Directory /usr/share/doc> - order deny,allow - deny from all - allow from localhost + Require local Options Indexes MultiViews FollowSymLinks </Directory> @@ -27,7 +27,7 @@ # Note that enabling /doc/ alias may result in a security vulnerability, # specifically CVE-2012-0216. Thus newer versions of the apache2 package # do NOT have the /doc/ alias enabled by default. -# +# # See http://www.debian.org/security/2012/dsa-2452 for reference and to # decide whether the conditions stated there apply to your case. # |