From 9304ecba6edb39ec6a9d253ef4b84e2f7811219e Mon Sep 17 00:00:00 2001 From: Marius Date: Mon, 8 Jan 2018 17:13:24 +0100 Subject: [PATCH] Add back apache2.conf --- docs/apach2.conf | 35 +++++++++++++++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 docs/apach2.conf diff --git a/docs/apach2.conf b/docs/apach2.conf new file mode 100644 index 0000000..9718504 --- /dev/null +++ b/docs/apach2.conf @@ -0,0 +1,35 @@ +# Please make sure that you have the modules mod_ssl, mod_headers, +# mod_proxy and mod_proxy_http enabled. If not, you can use following +# command: +# $ sudo a2enmod ssl headers proxy proxy_http + + + ServerName localhost + + # Enable secure communication using HTTPS + # Adjust the paths to the certificates files to your environment + SSLEngine on + SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem + SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key + + # Tell tusd that the HTTPS protocol is used, in order to + # allow constructing correct upload URLs. + RequestHeader set X-Forwarded-Proto "https" + + # Pass requests to tusd server + ProxyPass /files http://localhost:1080/files + ProxyPassReverse /files http://localhost:1080/files + + +# This SSL configuration has been taken from Mozilla SSL Generator: +# https://mozilla.github.io/server-side-tls/ssl-config-generator/?server=nginx-1.10.1&openssl=1.0.1e&hsts=no&profile=intermediate +SSLProtocol all -SSLv3 +SSLCipherSuite ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-$ +SSLHonorCipherOrder on +SSLCompression off + +# OCSP Stapling, only in httpd 2.3.3 and later +SSLUseStapling on +SSLStaplingResponderTimeout 5 +SSLStaplingReturnResponderErrors off +SSLStaplingCache shmcb:/var/run/ocsp(128000)