圖片-php apache 配置問題 大家幫幫忙唄

來源:互聯網
上載者:User
關鍵字 php 圖片 apache
php圖片apache

這是哪個設定檔

################################################################### SSL Demo Configuration for Apache Haus Distribution # FileName: conf/extras/mod_ahssl.conf## This is the Apache server configuration file providing SNI support.# It contains the configuration directives to instruct the server how to# serve pages over an https connection. For detailed information about these # directives see # # Do NOT simply read the instructions in here without understanding# what they do.  They're here only as hints or reminders.  If you are unsure# consult the online docs. You have been warned.  ## Required modules: mod_log_config, mod_setenvif, mod_ssl,#          socache_shmcb_module (for default value of SSLSessionCache)Listen 443 https####  SSL Global Context####  All SSL configuration in this context applies both to##  the main server and all SSL-enabled virtual hosts.###   SSL Protocols:#   List the protocols that the client is permitted to negotiate.#   See the mod_ssl documentation for a complete list.SSLProtocol all#   SSL Cipher Suite:#   List the ciphers that the client is permitted to negotiate.#   See the mod_ssl documentation for a complete list.SSLCipherSuite ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH #   SSL Honer Cipher Suite Order:#   Forces the order of allowed cipher suites to the order above.#   See the mod_ssl documentation for a complete list.SSLHonorCipherOrder On#   Pass Phrase Dialog:#   Configure the pass phrase gathering process.#   The filtering dialog program (`builtin' is a internal#   terminal dialog) has to provide the pass phrase on stdout.SSLPassPhraseDialog  builtin#   Inter-Process Session Cache:#   Configure the SSL Session Cache: First the mechanism #   to use and second the expiring timeout (in seconds).#SSLSessionCache         "dbm:${SRVROOT}/logs/ssl_scache"SSLSessionCache        "shmcb:${SRVROOT}/logs/ssl_scache(512000)"SSLSessionCacheTimeout  300##   Some MIME-types for downloading Certificates and CRLs#AddType application/x-x509-ca-cert .crtAddType application/x-pkcs7-crl    .crl#   SSL Engine Options:#   Set various options for the SSL engine.#   o FakeBasicAuth:#     Translate the client X.509 into a Basic Authorisation.  This means that#     the standard Auth/DBMAuth methods can be used for access control.  The#     user name is the `one line' version of the client's X.509 certificate.#     Note that no password is obtained from the user. Every entry in the user#     file needs this password: `xxj31ZMTZzkVA'.#   o ExportCertData:#     This exports two additional environment variables: SSL_CLIENT_CERT and#     SSL_SERVER_CERT. These contain the PEM-encoded certificates of the#     server (always existing) and the client (only existing when client#     authentication is used). This can be used to import the certificates#     into CGI scripts.#   o StdEnvVars:#     This exports the standard SSL/TLS related `SSL_*' environment variables.#     Per default this exportation is switched off for performance reasons,#     because the extraction step is an expensive operation and is usually#     useless for serving static content. So one usually enables the#     exportation for CGI and SSI requests only.#   o StrictRequire:#     This denies access when "SSLRequireSSL" or "SSLRequire" applied even#     under a "Satisfy any" situation, i.e. when it applies access is denied#     and no other module can change it.#   o OptRenegotiate:#     This enables optimized SSL connection renegotiation handling when SSL#     directives are used in per-directory context. #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire    SSLOptions +StdEnvVars    SSLOptions +StdEnvVars#   SSL Protocol Adjustments:#   The safe and default but still SSL/TLS standard compliant shutdown#   approach is that mod_ssl sends the close notify alert but doesn't wait for#   the close notify alert from client. When you need a different shutdown#   approach you can use one of the following variables:#   o ssl-unclean-shutdown:#     This forces an unclean shutdown when the connection is closed, i.e. no#     SSL close notify alert is sent or allowed to be received.  This violates#     the SSL/TLS standard but is needed for some brain-dead browsers. Use#     this when you receive I/O errors because of the standard approach where#     mod_ssl sends the close notify alert.#   o ssl-accurate-shutdown:#     This forces an accurate shutdown when the connection is closed, i.e. a#     SSL close notify alert is send and mod_ssl waits for the close notify#     alert of the client. This is 100% SSL/TLS standard compliant, but in#     practice often causes hanging connections with brain-dead browsers. Use#     this only for browsers where you know that their SSL implementation#     works correctly. #   Notice: Most problems of broken clients are also related to the HTTP#   keep-alive facility, so you usually additionally want to disable#   keep-alive for those clients, too. Use variable "nokeepalive" for this.#   Similarly, one has to force some clients to use HTTP/1.0 to workaround#   their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and#   "force-response-1.0" for this.BrowserMatch "MSIE [2-5]" \         nokeepalive ssl-unclean-shutdown \         downgrade-1.0 force-response-1.0#   Per-Server Logging:#   The home of a custom SSL log file. Use this when you want a#   compact non-error SSL logfile on a virtual host basis.CustomLog "${SRVROOT}/logs/ssl_request.log" \          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"#### SSL Virtual Host Context##  SSLEngine on  ServerName localhost:443  SSLCertificateFile "${SRVROOT}/conf/ssl/server.crt"  SSLCertificateKeyFile "${SRVROOT}/conf/ssl/server.key"  DocumentRoot "${SRVROOT}/htdocs"# DocumentRoot access handled globally in httpd.conf    CustomLog "${SRVROOT}/logs/ssl_request.log" \          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"            Options Indexes Includes FollowSymLinks        AllowOverride AuthConfig Limit FileInfo    Require all granted      SSLEngine on  ServerName serverone.tld:443  SSLCertificateFile "${SRVROOT}/conf/ssl/serverone.crt"  SSLCertificateKeyFile "${SRVROOT}/conf/ssl/serverone.key"  DocumentRoot "${SRVROOT}/htdocs"    CustomLog "${SRVROOT}/logs/ssl_request.log" \          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"            Options Indexes Includes FollowSymLinks        AllowOverride AuthConfig Limit FileInfo    Require all granted      SSLEngine on  ServerName servertwo.tld:443  SSLCertificateFile "${SRVROOT}/conf/ssl/servertwo.crt"  SSLCertificateKeyFile "${SRVROOT}/conf/ssl/servertwo.key"  DocumentRoot "${SRVROOT}/htdocs"    CustomLog "${SRVROOT}/logs/ssl_request.log" \          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"            Options Indexes Includes FollowSymLinks        AllowOverride AuthConfig Limit FileInfo    Require all granted     # End SNI Demonstration Config

  • 相關文章

    聯繫我們

    該頁面正文內容均來源於網絡整理,並不代表阿里雲官方的觀點,該頁面所提到的產品和服務也與阿里云無關,如果該頁面內容對您造成了困擾,歡迎寫郵件給我們,收到郵件我們將在5個工作日內處理。

    如果您發現本社區中有涉嫌抄襲的內容,歡迎發送郵件至: info-contact@alibabacloud.com 進行舉報並提供相關證據,工作人員會在 5 個工作天內聯絡您,一經查實,本站將立刻刪除涉嫌侵權內容。

    A Free Trial That Lets You Build Big!

    Start building with 50+ products and up to 12 months usage for Elastic Compute Service

    • Sales Support

      1 on 1 presale consultation

    • After-Sales Support

      24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.