#0 -1 » serveur web » Le 03/06/2013, à 17:24
- ilyestahabel
- Réponses : 5
bonjour
j ai crée un certificat ssl pour apache2 sous ubuntu 10.04 et j ai tester sous internet avec Windows sa a marcher avec mon adresse iplocal c est a dire en tapent l URL suivante https://adreseip mais se que je souhaite faire c'est d'avoir la page que j ai crée c est a dire www.monsite.com et non pas index.html.
cordialement
#1 Re : -1 » serveur web » Le 05/06/2013, à 11:01
- ilyestahabel
- Réponses : 5
#
# Based upon the NCSA server configuration files originally by Rob McCool.
#
# This is the main Apache server configuration file. It contains the
# configuration directives that give the server its instructions.
# See http://httpd.apache.org/docs/2.2/ for detailed information about
# the directives.
#
# Do NOT simply read the instructions in here without understanding
# what they do. They're here only as hints or reminders. If you are unsure
# consult the online docs. You have been warned.
#
# The configuration directives are grouped into three basic sections:
# 1. Directives that control the operation of the Apache server process as a
# whole (the 'global environment').
# 2. Directives that define the parameters of the 'main' or 'default' server,
# which responds to requests that aren't handled by a virtual host.
# These directives also provide default values for the settings
# of all virtual hosts.
# 3. Settings for virtual hosts, which allow Web requests to be sent to
# different IP addresses or hostnames and have them handled by the
# same Apache server process.
#
# Configuration and logfile names: If the filenames you specify for many
# of the server's control files begin with "/" (or "drive:/" for Win32), the
# server will use that explicit path. If the filenames do *not* begin
# with "/", the value of ServerRoot is prepended -- so "/var/log/apache2/foo.log"
# with ServerRoot set to "" will be interpreted by the
# server as "//var/log/apache2/foo.log".
#
### Section 1: Global Environment
#
# The directives in this section affect the overall operation of Apache,
# such as the number of concurrent requests it can handle or where it
# can find its configuration files.
#
#
# ServerRoot: The top of the directory tree under which the server's
# configuration, error, and log files are kept.
#
# NOTE! If you intend to place this on an NFS (or otherwise network)
# mounted filesystem then please read the LockFile documentation (available
# at <URL:http://httpd.apache.org/docs-2.1/mod/mpm_common.html#lockfile>);
# you will save yourself a lot of trouble.
#
# Do NOT add a slash at the end of the directory path.
#
ServerRoot "/etc/apache2"
#
# The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
#
#<IfModule !mpm_winnt.c>
#<IfModule !mpm_netware.c>
LockFile /var/lock/apache2/accept.lock
#</IfModule>
#</IfModule>
#
# PidFile: The file in which the server should record its process
# identification number when it starts.
# This needs to be set in /etc/apache2/envvars
#
PidFile ${APACHE_PID_FILE}
#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout 300
#
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
#
KeepAlive On
#
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.
#
MaxKeepAliveRequests 100
#
# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.
#
KeepAliveTimeout 15
##
## Server-Pool Size Regulation (MPM specific)
##
# prefork MPM
# StartServers: number of server processes to start
# MinSpareServers: minimum number of server processes which are kept spare
# MaxSpareServers: maximum number of server processes which are kept spare
# MaxClients: maximum number of server processes allowed to start
# MaxRequestsPerChild: maximum number of requests a server process serves
<IfModule mpm_prefork_module>
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 150
MaxRequestsPerChild 0
</IfModule>
# worker MPM
# StartServers: initial number of server processes to start
# MaxClients: maximum number of simultaneous client connections
# MinSpareThreads: minimum number of worker threads which are kept spare
# MaxSpareThreads: maximum number of worker threads which are kept spare
# ThreadsPerChild: constant number of worker threads in each server process
# MaxRequestsPerChild: maximum number of requests a server process serves
<IfModule mpm_worker_module>
StartServers 2
MinSpareThreads 25
MaxSpareThreads 75
ThreadLimit 64
ThreadsPerChild 25
MaxClients 150
MaxRequestsPerChild 0
</IfModule>
# event MPM
# StartServers: initial number of server processes to start
# MaxClients: maximum number of simultaneous client connections
# MinSpareThreads: minimum number of worker threads which are kept spare
# MaxSpareThreads: maximum number of worker threads which are kept spare
# ThreadsPerChild: constant number of worker threads in each server process
# MaxRequestsPerChild: maximum number of requests a server process serves
<IfModule mpm_event_module>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadLimit 64
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
# These need to be set in /etc/apache2/envvars
User ${APACHE_RUN_USER}
Group ${APACHE_RUN_GROUP}
#
# AccessFileName: The name of the file to look for in each directory
# for additional configuration directives. See also the AllowOverride
# directive.
#
AccessFileName .htaccess
#
# The following lines prevent .htaccess and .htpasswd files from being
# viewed by Web clients.
#
<Files ~ "^\.ht">
Order allow,deny
Deny from all
Satisfy all
</Files>
#
# DefaultType is the default MIME type the server will use for a document
# if it cannot otherwise determine one, such as from filename extensions.
# If your server contains mostly text or HTML documents, "text/plain" is
# a good value. If most of your content is binary, such as applications
# or images, you may want to use "application/octet-stream" instead to
# keep browsers from trying to display binary files as though they are
# text.
#
DefaultType text/plain
#
# HostnameLookups: Log the names of clients or just their IP addresses
# e.g., www.apache.org (on) or 204.62.129.132 (off).
# The default is off because it'd be overall better for the net if people
# had to knowingly turn this feature on, since enabling it means that
# each client request will result in AT LEAST one lookup request to the
# nameserver.
#
HostnameLookups Off
# ErrorLog: The location of the error log file.
# If you do not specify an ErrorLog directive within a <VirtualHost>
# container, error messages relating to that virtual host will be
# logged here. If you *do* define an error logfile for a <VirtualHost>
# container, that host's errors will be logged there and not here.
#
ErrorLog /var/log/apache2/error.log
#
# LogLevel: Control the number of messages logged to the error_log.
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
#
LogLevel warn
# Include module configuration:
Include /etc/apache2/mods-enabled/*.load
Include /etc/apache2/mods-enabled/*.conf
# Include all the user configurations:
Include /etc/apache2/httpd.conf
# Include ports listing
Include /etc/apache2/ports.conf
#
# The following directives define some format nicknames for use with
# a CustomLog directive (see below).
# If you are behind a reverse proxy, you might want to change %h into %{X-Forwarded-For}i
#
LogFormat "%v:%p %h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" vhost_combined
LogFormat "%h %l %u %t \"%r\" %>s %O \"%{Referer}i\" \"%{User-Agent}i\"" combined
LogFormat "%h %l %u %t \"%r\" %>s %O" common
LogFormat "%{Referer}i -> %U" referer
LogFormat "%{User-agent}i" agent
#
# Define an access log for VirtualHosts that don't define their own logfile
CustomLog /var/log/apache2/other_vhosts_access.log vhost_combined
# Include of directories ignores editors' and dpkg's backup files,
# see README.Debian for details.
# Include generic snippets of statements
Include /etc/apache2/conf.d/
# Include the virtual host configurations:
Include /etc/apache2/sites-enabled/
<VirtualHost *:80>
ServerAdmin webmaster@localhost
DocumentRoot /var/www
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory /var/www/>
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
</Directory>
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
AllowOverride None
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
ErrorLog /var/log/apache2/error.log
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
CustomLog /var/log/apache2/access.log combined
Alias /doc/ "/usr/share/doc/"
<Directory "/usr/share/doc/">
Options Indexes MultiViews FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all
Allow from 127.0.0.0/255.0.0.0 ::1/128
</Directory>
</VirtualHost>
<IfModule mod_ssl.c>
<VirtualHost _default_:443>
ServerAdmin webmaster@localhost
DocumentRoot /var/www
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory /var/www/>
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
</Directory>
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
AllowOverride None
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
ErrorLog /var/log/apache2/error.log
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.
LogLevel warn
CustomLog /var/log/apache2/ssl_access.log combined
Alias /doc/ "/usr/share/doc/"
<Directory "/usr/share/doc/">
Options Indexes MultiViews FollowSymLinks
AllowOverride None
Order deny,allow
Deny from all
Allow from 127.0.0.0/255.0.0.0 ::1/128
</Directory>
# SSL Engine Switch:
# Enable/Disable SSL for this virtual host.
SSLEngine on
# A self-signed (snakeoil) certificate can be created by installing
# the ssl-cert package. See
# /usr/share/doc/apache2.2-common/README.Debian.gz for more info.
# If both key and certificate are stored in the same file, only the
# SSLCertificateFile directive is needed.
SSLCertificateFile /etc/apache2/ssl-certs/www.ilyes-belhouari.com.crt
SSLCertificateKeyFile /etc/apache2/ssl-certs/www.ilyes-belhouari.com.key
# Server Certificate Chain:
# Point SSLCertificateChainFile at a file containing the
# concatenation of PEM encoded CA certificates which form the
# certificate chain for the server certificate. Alternatively
# the referenced file can be the same as SSLCertificateFile
# when the CA certificates are directly appended to the server
# certificate for convinience.
#SSLCertificateChainFile /etc/apache2/ssl.crt/server-ca.crt
# Certificate Authority (CA):
# Set the CA certificate verification path where to find CA
# certificates for client authentication or alternatively one
# huge file containing all of them (file must be PEM encoded)
# Note: Inside SSLCACertificatePath you need hash symlinks
# to point to the certificate files. Use the provided
# Makefile to update the hash symlinks after changes.
#SSLCACertificatePath /etc/ssl/certs/
#SSLCACertificateFile /etc/apache2/ssl.crt/ca-bundle.crt
# Certificate Revocation Lists (CRL):
# Set the CA revocation path where to find CA CRLs for client
# authentication or alternatively one huge file containing all
# of them (file must be PEM encoded)
# Note: Inside SSLCARevocationPath you need hash symlinks
# to point to the certificate files. Use the provided
# Makefile to update the hash symlinks after changes.
#SSLCARevocationPath /etc/apache2/ssl.crl/
#SSLCARevocationFile /etc/apache2/ssl.crl/ca-bundle.crl
# Client Authentication (Type):
# Client certificate verification type and depth. Types are
# none, optional, require and optional_no_ca. Depth is a
# number which specifies how deeply to verify the certificate
# issuer chain before deciding the certificate is not valid.
#SSLVerifyClient require
#SSLVerifyDepth 10
# Access Control:
# With SSLRequire you can do per-directory access control based
# on arbitrary complex boolean expressions containing server
# variable checks and other lookup directives. The syntax is a
# mixture between C and Perl. See the mod_ssl documentation
# for more details.
#<Location />
#SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
# and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
# and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
# and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
# and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \
# or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
#</Location>
# SSL Engine Options:
# Set various options for the SSL engine.
# o FakeBasicAuth:
# Translate the client X.509 into a Basic Authorisation. This means that
# the standard Auth/DBMAuth methods can be used for access control. The
# user name is the `one line' version of the client's X.509 certificate.
# Note that no password is obtained from the user. Every entry in the user
# file needs this password: `xxj31ZMTZzkVA'.
# o ExportCertData:
# This exports two additional environment variables: SSL_CLIENT_CERT and
# SSL_SERVER_CERT. These contain the PEM-encoded certificates of the
# server (always existing) and the client (only existing when client
# authentication is used). This can be used to import the certificates
# into CGI scripts.
# o StdEnvVars:
# This exports the standard SSL/TLS related `SSL_*' environment variables.
# Per default this exportation is switched off for performance reasons,
# because the extraction step is an expensive operation and is usually
# useless for serving static content. So one usually enables the
# exportation for CGI and SSI requests only.
# o StrictRequire:
# This denies access when "SSLRequireSSL" or "SSLRequire" applied even
# under a "Satisfy any" situation, i.e. when it applies access is denied
# and no other module can change it.
# o OptRenegotiate:
# This enables optimized SSL connection renegotiation handling when SSL
# directives are used in per-directory context.
#SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory /usr/lib/cgi-bin>
SSLOptions +StdEnvVars
</Directory>
# SSL Protocol Adjustments:
# The safe and default but still SSL/TLS standard compliant shutdown
# approach is that mod_ssl sends the close notify alert but doesn't wait for
# the close notify alert from client. When you need a different shutdown
# approach you can use one of the following variables:
# o ssl-unclean-shutdown:
# This forces an unclean shutdown when the connection is closed, i.e. no
# SSL close notify alert is send or allowed to received. This violates
# the SSL/TLS standard but is needed for some brain-dead browsers. Use
# this when you receive I/O errors because of the standard approach where
# mod_ssl sends the close notify alert.
# o ssl-accurate-shutdown:
# This forces an accurate shutdown when the connection is closed, i.e. a
# SSL close notify alert is send and mod_ssl waits for the close notify
# alert of the client. This is 100% SSL/TLS standard compliant, but in
# practice often causes hanging connections with brain-dead browsers. Use
# this only for browsers where you know that their SSL implementation
# works correctly.
# Notice: Most problems of broken clients are also related to the HTTP
# keep-alive facility, so you usually additionally want to disable
# keep-alive for those clients, too. Use variable "nokeepalive" for this.
# Similarly, one has to force some clients to use HTTP/1.0 to workaround
# their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
# "force-response-1.0" for this.
BrowserMatch "MSIE [2-6]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
# MSIE 7 and newer should be able to use keepalive
BrowserMatch "MSIE [17-9]" ssl-unclean-shutdown
</VirtualHost>
</IfModule>
#2 Re : -1 » serveur web » Le 05/06/2013, à 19:16
- ilyestahabel
- Réponses : 5
vou vlouler dir dans le ssl
#3 -1 » Activer SSLEngine sur Apache2 ? » Le 22/05/2013, à 19:48
- ilyestahabel
- Réponses : 2
bonjour
pouviez vous m indiquer svp comment ajoutez les directive suivante au virtualhost.
Directive SSLEngine :
Cette directive permet d'activer le moteur SSL au sein d'un hôte virtuel, Elle peut prendre deux arguments –> on/off
Directive SSLCertificateFile :
Cette directive définit le certificat authentifiant le Serveur auprès des clients. L'argument est le chemin d'accès au certificat. En ce qui nous concerne, le certificat se trouve dans le répertoire /etc/apache2/
Directive SSLCertificateKeyFile :
Cette directive définit la clé privée du Serveur utilisée pour signer l'échange de clé entre le client et le serveur. Elle prend en argument le chemin d'accès à la clé (fichier). Dans notre cas, la clé se trouve dans le répertoire /etc/apache2/.
cordialement.
(edit modo : comme cela t'a été demandé à des dizaines de reprises, merci d'utiliser un titre explicite !)
#4 -1 » correction d'erreur de configuration » Le 13/05/2013, à 19:54
- ilyestahabel
- Réponses : 2
j ai configurai le serveur web apache et lorsque j ai vérifier la configuration il me dit qu'il y a une erreur comme le montre la figure suivante erreru de configuration d apache le ficher que j ai mi a apache2.conf et le suivant
### Section 1: Global Environment
# ServerRoot: The top of the directory tree under which the server's configuration, error, # and log files are kept. ServerRoot "/etc/apache2"
# The accept serialization lock file MUST BE STORED ON A LOCAL DISK. LockFile /var/lock/apache2/accept.lock
# PidFile: The file in which the server should record its process identification number when
# it starts. PidFile ${APACHE_PID_FILE} # Timeout: The number of seconds before receives and sends time out. Timeout 300 # KeepAlive: Whether or not to allow persistent connections. KeepAlive On
# MaxKeepAliveRequests: The maximum number of requests to allow during a persistent
# connection. MaxKeepAliveRequests 100
# KeepAliveTimeout: Number of seconds to wait for the next request from the same client on
# the same connection. KeepAliveTimeout 15
## Server-Pool Size Regulation (MPM specific)
# prefork MPM
<IfModule mpm_prefork_module>
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 150
MaxRequestsPerChild 0
</IfModule>
# worker MPM
<IfModule mpm_worker_module>
StartServers 2
MaxClients 150
MinSpareThreads 25
MaxSpareThreads 75
ThreadsPerChild 25
MaxRequestsPerChild 0
</IfModule>
# These need to be set in /etc/apache2/envvars User ${APACHE_RUN_USER} Group ${APACHE_RUN_GROUP}
# AccessFileName: The name of the file to look for in each directory for additional
# configuration directives. AccessFileName .htaccess # The following lines prevent .htaccess and .htpasswd files from being viewed by Web
# clients.
<Files ~ "^\.ht">
Order allow,deny Deny from all
</Files>
# DefaultType is the default MIME type the server will use for a document
# if it cannot otherwise determine one, such as from filename extensions.
DefaultType text/plain # HostnameLookups: Log the names of clients or just their IP addresses HostnameLookups Off # ErrorLog: The location of the error log file. ErrorLog /var/log/apache2/error.log
# LogLevel: Control the number of messages logged to the error_log. LogLevel warn # Include module configuration: Include mods-enabled/*.load Include mods-enabled/*.conf
#5 -1 » serveur web apache » Le 29/04/2013, à 11:04
- ilyestahabel
- Réponses : 18
salut j arrive pas a avoir its works lorsque je mais localhost dans la barre adresse du navigateur web j ai essayer de redemander apache mais j ai u un problème http://www.hostingpics.net/viewer.php?id=940231appa.jpg cest a dir j arrive pas a demarer et redemarer apache.
acceptez mes remerciement.
#6 Re : -1 » serveur web apache » Le 29/04/2013, à 12:06
- ilyestahabel
- Réponses : 18
ok merci tiramiseb de ton aide
#7 Re : -1 » serveur web apache » Le 29/04/2013, à 12:18
- ilyestahabel
- Réponses : 18
meme probleme malgre que j ai changer la syntax http://www.hostingpics.net/viewer.php?id=741533appa.jpg.
#8 Re : -1 » serveur web apache » Le 29/04/2013, à 12:31
- ilyestahabel
- Réponses : 18
qu ece que je relis mon amies tiramiseb
#9 Re : -1 » serveur web apache » Le 29/04/2013, à 13:04
- ilyestahabel
- Réponses : 18
a d accord oui mais malgre sa j arrive pas a demarrer et redemarer apapche http://www.hostingpics.net/viewer.php?id=431325appa.jpg
#10 Re : -1 » serveur web apache » Le 29/04/2013, à 14:23
- ilyestahabel
- Réponses : 18
au les gas faut etre serieux!!!!
#11 Re : -1 » serveur web apache » Le 29/04/2013, à 14:43
- ilyestahabel
- Réponses : 18
tiramiseb tu peut m indiquer ou es qu elle est la page des message d'erreur stp ?
#12 Re : -1 » serveur web apache » Le 30/04/2013, à 07:49
- ilyestahabel
- Réponses : 18
lorsque j ai configurer le apache j ai copier coller le fichier de la documentation de se site la ligne 391 contient que sites-availables c est tout.
#13 Re : -1 » serveur web apache » Le 30/04/2013, à 12:20
- ilyestahabel
- Réponses : 18
il ne faut jamais laisser la configuration par default a cause du haking . tu dit que j ai pas fait attention stp dit moi se qu il faut faire
#14 -1 » difference entre les serveur » Le 06/04/2013, à 17:41
- ilyestahabel
- Réponses : 8
bon soir
1 ece que le serveur web apache fait parti des serveur web léger ?
2 quelle est le Mode embarque et le support commercial du serveur web apache et en quelle langage il est écrit?
acceptez mes remerciement.
#15 -1 » apache2.conf » Le 31/03/2013, à 12:31
- ilyestahabel
- Réponses : 2
salut tout le monde
ece que le fichier apache2.conf présent dans la doc.ubuntu c'est le fichier configurer ou bien il manque de configuration . dans l attente d'une réponse acceptez mes remerciements.
#16 -1 » Comment modifier apache2.conf ? » Le 31/03/2013, à 13:10
- ilyestahabel
- Réponses : 1
salut
je cherche a savoir comment accéder au fichier apache2.conf grace a des lingne de commande afin de pouvoir modifier son contenu merci de votre réponse.
(edit modo : comme déjà demandé, un titre clair ne coûte rien mais apporte beaucoup, merci d'y penser la prochaine fois)
#17 -1 » hebergement dans apache » Le 25/03/2013, à 19:08
- ilyestahabel
- Réponses : 3
bonsoir
peut on héberger un site web écrit en langage de programmation lisp dans le serveur web apache.
merci d’avance.
#18 Re : -1 » hebergement dans apache » Le 25/03/2013, à 22:32
- ilyestahabel
- Réponses : 3
c est quoi le cgi s il vous plait?
#19 -1 » serveur web apache » Le 04/03/2013, à 00:36
- ilyestahabel
- Réponses : 1
ece qu il y a une différence entre apache2 et ces version successeur.
#20 -1 » captcha » Le 26/02/2013, à 20:23
- ilyestahabel
- Réponses : 1
bonsoir
Quelle point crucial enpech CAPTCHA dans la sécurité des serveur? merci pour votre aide.
#21 -1 » Modification de fichier » Le 04/02/2013, à 09:32
- ilyestahabel
- Réponses : 4
bonjour
comment modifier la ligne suivante dans mon fichier dir.conf
DirectoryIndex index.htm index.html index.php
acceptez mes remerciement les plus sincère.
#22 Re : -1 » Modification de fichier » Le 04/02/2013, à 20:02
- ilyestahabel
- Réponses : 4
j ai un niveau intermédiaire et puis je pense que tout et bien installer mes. je cherche seulement par quoi modifier la ligne c est a dire qu'ece que je doit mettre a ça place pour être sur que cette étape a été faite. acceptez mes remerciement les plus sincère.
#23 Re : -1 » Modification de fichier » Le 04/02/2013, à 20:23
- ilyestahabel
- Réponses : 4
configuration d apache c est un tutoriel d que je suis entrain de suivre la question que j ai poser et écrite comme sa dans le tutoriel .
#24 Re : -1 » copier des fichier » Le 03/02/2013, à 23:31
- ilyestahabel
- Réponses : 11
c est un oubli