wiki.blueonyx.it

Server Management > Network Services > Web

Various parameters pertaining to the web server (Apache) configuration can be modified using the settings available on this page. IMPORTANT: Any changes made here will apply to all virtual sites.

This turns on hostname lookups for the web server. This causes the server to do a DNS lookup on the client IP when it connects to the server, and record it in the log files. This hostname information is then available in the server usage web reports. Without this feature, only client IP addresses are reported in the web server usage domain report. WARNING: Enabling this option will decrease the performance of your web server and is not recommended for most cases.

Normally the Apache Webserver runs on Port 80 (HTTP). If you want to change it to a different port, then you can do so here. This is only useful if you want to use something else in front of Apache to filter, cache or redirect traffic such as a Varnish Cache, a forwarding proxy or a load balancer. If you change this setting, then all existing virtual sites will be moved to the new port and all new sites will be created to use this new port. IP addresses of virtual sites will not be changed.

Normally the Apache Webserver uses Port 443 for HTTPS traffic. If you want to change it to a different port, then you can do so here. This is only useful if you want to use something else in front of Apache to filter, cache or redirect traffic such as a Varnish Cache, a forwarding proxy or a load balancer. If you change this setting, then all existing virtual sites with SSL enabled will switch from port 443 to the new port for SSL traffic. IP addresses of virtual sites will not be changed.

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797. For more info see: http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security

This is the maximum number of requests that can be made to the server at any instance. Each connection requires its own web server process. If this number is exceeded, clients will receive a message that the server is busy,and asked to try again later. This setting is useful for controlling the load on your server. The maximum number of web servers is limited by the amount of RAM installed in this server.

When the web server starts or is in an idle state, this is the minimum number of web server processes available for serving web requests. The maximum number of web servers is limited by the amount of RAM installed in this server.

The web server will launch additional processes, as needed, to service additional load. This number is the maximum number of processes the system will launch. High traffic sites should increase this number for better performance. The maximum number of web servers is limited by the amount of RAM installed in this server.

Options:

• All: All options except for MultiViews.
• FollowSymLinks: The server will follow symbolic links. (Default: On)
• Includes: Server-side includes are permitted. (Default: On)
• Indexes: If a URL which maps to a directory is requested, and the there is no DirectoryIndex (e.g., index.html) in that directory, then the server will return a formatted listing of the directory. (Default: On)
• MultiViews: Content negotiated MultiViews are allowed. Used for displaying pages in different languages based on browser locales. (Default: On)
• SymLinksIfOwnerMatch: The server will only follow symbolic links for which the target file or directory is owned by the same user id as the link. (Default: Off)

AllowOverride:

• All: When the server finds an .htaccess file it needs to know which directives declared in that file can override earlier access information. Ticking this box will allow to override ALL Apache settings (Dangerous! Default: Off)
• AuthConfig: Allow use of the authorization directives (AuthDBMGroupFile, AuthDBMUserFile, AuthGroupFile, AuthName, AuthDigestRealmSeed, AuthType, AuthUserFile, Require, etc.). (Default: On)
• FileInfo: Allow use of the directives controlling document types (AddEncoding, AddLanguage, AddType, DefaultType, ErrorDocument, LanguagePriority, etc.). (Default: Off)
• Indexes: Allow use of the directives controlling directory indexing (AddDescription,AddIcon, AddIconByEncoding, AddIconByType, DefaultIcon, DirectoryIndex,FancyIndexing, HeaderName, IndexIgnore, IndexOptions, ReadmeName, etc.).(Default: On)
• Limit: Allow use of the directives controlling host access (Allow, Deny and Order). (Default: On)
• Options: Allow use of the directives controlling specific directory features(Options and XBitHack). (Default: Off)