Securing-Optimizing-RH-Linux-1_2_370
Comments and suggestions concerning this book should be mailed to gmourani@videotron.ca
© Copyright 1999-2000 Gerhard Mourani and Open Network Architecture ®
370
be to your responsibility to modify, adjust for your needs and place the files related to Apache
software to their appropriated places on your server machine, like show bellow. The server
configuration files archive to download is located at the following Internet address:
http://pages.infinit.net/lotus1/opendocs/floppy.tgz
·
To run Apache server, the following files are require and must be create or copied to their
appropriated directories on your server.
Copy the httpd.conf file to the /etc/httpd/conf/ directory.
Copy the apache file to the /etc/logrotate.d/ directory.
Copy the httpd script file to the /etc/rc.d/init.d/ directory.
You can obtain configuration files listed bellow on our floppy.tgz archive. Copy the following files
from the decompressed floppy.tgz archive to their appropriated places or copy and paste them
directly from this book to the concerned file.
Configuration of the /etc/httpd/conf/httpd.conf file
The httpd.conf file is the main configuration file for the Apache web server. A lot options exist
and its important to read the documentation that come with Apache for more information of
different setting and parameters. The following configuration example is a minimal working
configuration file for Apache with SSL support. Also its important to note that we comment in this
Apache configuration only parameters that relate to security and optimization and let all the
others to your own research and knowledge.
Edit the httpd.conf file (vi /etc/httpd/conf/httpd.conf) and add:
### Section 1: Global Environment
#
ServerType standalone
ServerRoot "/etc/httpd"
PidFile /var/run/httpd.pid
ResourceConfig /dev/null
AccessConfig /dev/null
Timeout 300
KeepAlive On
MaxKeepAliveRequests 0
KeepAliveTimeout 15
MinSpareServers 16
MaxSpareServers 64
StartServers 16
MaxClients 512
MaxRequestsPerChild 100000
### Section 2: 'Main' server configuration
#
Port 80
<IfDefine SSL>
Listen 80
Listen 443
</IfDefine>
User www
Group www
ServerAdmin admin@openarch.com
ServerName www.openarch.com
DocumentRoot "/home/httpd/ona"