From 3000126790b0513c38e9352e1b0b320b0274b78a Mon Sep 17 00:00:00 2001
From: smoretti <sebastien.moretti@sib.swiss>
Date: Thu, 16 Feb 2023 12:26:04 +0100
Subject: [PATCH] Add ALL apache conf
---
conf/bchub.epfl.ch.conf | 28 +++++++++
conf/ccg.vital-it.ch.conf.xz | Bin 0 -> 368 bytes
conf/ccg2.conf.disabled.xz | Bin 0 -> 696 bytes
conf/cleanex.epfl.ch.conf.old.xz | Bin 0 -> 1392 bytes
conf/cleanex.vital-it.ch.conf.xz | Bin 0 -> 372 bytes
conf/cleanex2.conf.disabled.xz | Bin 0 -> 604 bytes
conf/epd.epfl.ch.conf | 104 +++++++++++++++++++++++++++++++
conf/epd.vital-it.ch.conf.xz | Bin 0 -> 368 bytes
conf/epd2.conf.disabled.xz | Bin 0 -> 620 bytes
9 files changed, 132 insertions(+)
create mode 100644 conf/bchub.epfl.ch.conf
create mode 100644 conf/ccg.vital-it.ch.conf.xz
create mode 100644 conf/ccg2.conf.disabled.xz
create mode 100644 conf/cleanex.epfl.ch.conf.old.xz
create mode 100644 conf/cleanex.vital-it.ch.conf.xz
create mode 100644 conf/cleanex2.conf.disabled.xz
create mode 100644 conf/epd.epfl.ch.conf
create mode 100644 conf/epd.vital-it.ch.conf.xz
create mode 100644 conf/epd2.conf.disabled.xz
diff --git a/conf/bchub.epfl.ch.conf b/conf/bchub.epfl.ch.conf
new file mode 100644
index 0000000000..c9482e431e
--- /dev/null
+++ b/conf/bchub.epfl.ch.conf
@@ -0,0 +1,28 @@
+#OnlyRedirect to SSL VirtualHost
+<VirtualHost *:80>
+ ServerName bchub.epfl.ch
+ ServerAdmin giovanna.ambrosini@epfl.ch
+
+ ErrorLog logs/bchub-error_log
+ CustomLog logs/bchub-access_log common
+
+ RewriteEngine On
+ RewriteCond %{HTTPS} !on
+ RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
+</VirtualHost>
+
+<VirtualHost *:443>
+ ServerName bchub.epfl.ch
+ ServerAdmin giovanna.ambrosini@epfl.ch
+
+ SSLEngine on
+ Redirect permanent / https://ccg.epfl.ch/bchub/
+ SSLProtocol All -SSLv2 -SSLv3
+ SSLHonorCipherOrder on
+ SSLCipherSuite HIGH:!aNULL:!MD5
+ SSLCertificateFile /etc/pki/tls/certs/bchub.epfl.ch.pem
+ SSLCertificateKeyFile /etc/pki/tls/private/bchub.epfl.ch.key
+ SSLCertificateChainFile /etc/pki/tls/certs/bchub.epfl.ch.pem
+
+ Header add Strict-Transport-Security "max-age=15768000"
+</VirtualHost>
diff --git a/conf/ccg.vital-it.ch.conf.xz b/conf/ccg.vital-it.ch.conf.xz
new file mode 100644
index 0000000000000000000000000000000000000000..b62ef4d4c29ab42280493695c61a11fb0ab89ddd
GIT binary patch
literal 368
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqrFl}Pgk7bY(?NnF3y6Gb`hxJW96ZUCg
zoA0eMQ#e2S&96DN`Y$r>E?nzz#f@Xb{KHumfe(L_bhXK<9NK?*sz&?En@5Gu-TA5B
z{&L3Mg-_zvz4OnNnjZQuI?h;O-GO!CPZM@6H&(vzNbl1f_n(bhHfI<ANc`LLHDV8^
z+uua_<Tmjp1!<4&&xb6E=cF{QQ-94e?Y6BnzkktDU!lTmh8@A#CLi~#)!$(5Y2NeB
zmSf_i+7(R~7W>+l8B}lzX4h96S>8$Bl)U&R*T*1nhZXGmXIjYQJpMH6-h$NH%@gjv
z(z|i-qkfq|ncV6Fv-y)&hg2zq&v+oa;LjDYW>z8JKVLh{C(d-@zWk_m+J~EucL*K7
zeRfaxPadTuJPe1|T+HW@Tw^-*$;DM>3obA>964h)>AA4PJIDDNN*4bZ7%nf$p2yU7
f`2z#vX{ODr3=E-O+fHvhlKz{Cfq{X6B{B*CZjr7j
literal 0
HcmV?d00001
diff --git a/conf/ccg2.conf.disabled.xz b/conf/ccg2.conf.disabled.xz
new file mode 100644
index 0000000000000000000000000000000000000000..fb7545494ebc3d10ebaea48d81b50b99596f2eeb
GIT binary patch
literal 696
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqruwG&+k7bY(?NnF3y6Gb`hxJW96ZUCg
zoA0eMQxuqIXL!NlVMpXK!`)SP8MBkrW6RfaKKoX=`08RCuX&xq9cl%#({FhlnH(q+
zdsJY*SAEE>+yA~xv)t+}m^rs^&A}fNJfA2z1m*Lc|0Qg{ab-H&4fZf+#f%wAw#Pn(
zpZvzSN8!cuoLzaBHl*@hoG3l#I_LcSeHmsQ8L=YoUu8^-mSiq>UB&xq%ZpM?uY^yt
z<Biuvx|uAiT{bf`c}2q7?FBAxS5@3eG-mdgZOAdBeOgNLiQoH`f~pSNFw{<1<CT2J
z_i}g3RYBpSz2PUKO!60=_u_nV=iD`h52+RxXI<EvZapKgvE=rI(kiPmZcVwPle0Ku
zZ*NuRzU=y-H|R^@W%meSuK&AT?*BY`&`tkR!80937gmM@Ee30KYwnGkp1UL;btqr+
zvgW|4?75}2D+3QdI^iL|C+cyfje`JxvR~U}hlTH#tF9FZda9H5khg1{X~J^V+P;e&
zrKORq1$_ONGG0Hwdrk6EPUWJcs?1mUTW)K8IK8o3->5@GoF!!Y38#~`mop7Z?;H8|
z9=^ObP~~yY!y|Q325jMz+zk9aUr@Pt^n~&MyUg2L&vz7E-nQWQjf=@5uj^MzT%B+%
zF`vh^s$C)H-&WC&e_fw!VmsF%lDOpR`zviXx4XWJO%$kY%c^-V=C<O7TAc@%rp}-9
z=Ssb|s?Rd*J>4i}F`ZL!@sl61cVuhk3*Y8BxVv2QOz6~Hy~IVPGR--BsdJSKJlINR
zUrzoP@TiWV+v50<vs(lFjVAs-Q@$+v>u%nEd)<DE>Pg%%*6RLs)bZ%kgGNy=&axf<
zIHzE}4WFj9M#u}9El)1&*eqHe|K~0PL#6L(*Gr<uJ~A*)X1&bKz;Nx@=M@`|r2l4O
LU|?WiiHrgO1V&72
literal 0
HcmV?d00001
diff --git a/conf/cleanex.epfl.ch.conf.old.xz b/conf/cleanex.epfl.ch.conf.old.xz
new file mode 100644
index 0000000000000000000000000000000000000000..67f6a4c9eddd7be7ce5e66a8e2e5236388c75639
GIT binary patch
literal 1392
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqr@F=nB$1(^`K6&g2tF*-w%ZYd7c7(ar
z7yhdgwqL*MXWKuCTW5~E+kHVP`f<<JZwve6<d4@p%+7sV&v0^@9^>R|&Q+$zGvmIT
zQJx>o(U<z|_wi%rg8Mm+z1%6V_yqIah`aL^9jZ~e{q|N4<CerX{egE+|Iv2ddvxia
zJ9A{0%)Pi-vZ3qrjpC>WVL^A!ddjh9+gnKn{!|DqVQrW+pJS&Rci3xF#y*BuFM3MZ
z_MDXcHhc4}gMYbWEqEMNe@<lE{7PIS^`wYwmH4V_-%{Okd*}W7a_83C&wc3?R<krM
z9sF;6&9zv(ui<irhU*cw=+wh`JT0N2%0KolX!sM9_Sx}o<GO7jhD)DMn=iK3^7GU>
zUbP(mZ?2te?CqS_M87V7^TJA5-|yDzOZ`2`3Q3HQ774g#F@$b)m+ie&yxDcpN(O(U
zB{x@m`1Qc*okO#Vas5*b-;52n!d5u`+9kDuf5yK`8O689*V=vF9wo_;JSDrYQ9IB%
z-Qi8(Vx^hQ%`0kSr|nv-V7fS=<_mYq)MO{0J-MBS4d=Qn+i`iPk#G(tpYI=|c9xa=
zM`csD3oq>B^9(C5)><k5(eapj`h+N*ZH=?enJ>Cl_rIjt>+YR6W3l&r8uPT19FA7X
zyycn5ThsRF#bv3>$-AmoCi+dx=hI%Pu;dlrkMH}p?yl+euG;m3d3le^+h7m-6FdFu
z&N+NOm>`h9;yve9KG%oyWmII{_Bx(5usx};w5IIb$*xGoZ!XtfwD7q|745p=bM_&B
zhMdSn8Mgb6YmR@@F`Rn!;&J}SJNkEG{$Djn?%j9psdi#xXXb)O)=Mv3Rx(NC4Qyin
z6Mr(POizrHX?yne;H|YYge32s2wt#VpfjyS|MAvUS~LDUkzaefS;;qlmDe}xxm`AV
z;{4NP`SKj5?Oo;Wo~Wj2D;>(!bs*Dm*2PQZVcX44ZZmEYw4VQsLp6+BvS_<@>ziU%
z;hi3)a#t(Gd%t8U$8TFT-y@XyVw9HON53DH%lvm7JfeJb+qqq4SN}QM-&QSPTy^7Z
zF8iGDIWdi`=^J*ZS7=21`1RCh<vQIp;YJLP4#}}DKhIURG)VbUY=@-eD(wXl4?p&~
z|4J&~YBOW|@%eRzQQ<SoZ(97F;OViz)gpZLiw>&}=~uCr?-X^h*mB;8U+}hDAZ->y
z8_S-a^u;rR*7f}Vx#asi(~O6jyE5J%+wQSW_13(($Nyw~U9V7+{I{X8A<*te+Ml;y
z1Uy|osC4MEtIZQx)MO+#tM=eRz5jOQBLBCs-TFKA!Z{}PNe3-wTh|H&G#q#Czgo52
zZiAu8nJsVFyt+MfThmOYZT~c5!IYXT{SV8Z1t@K?eDL!V@3&J|#SThe=rvf&`K0y7
zi(|)bOZVT1R$9xG@Hu1yUmt_?)AofY*EMNn#^winI)3l3;^KL~^L;jadpl9kOQa%F
zc2&UDo#l2M`}NKp`IwRF@I8t1d{^|(6RY0rGTrp~(A>|x<~awiINw$*^}STO`-Zl|
z8=Ynoj+Ers)T|pDG*_PczT!*BwP`Z^@p48lCR~0dIq}r5Sr2D~DSp-byU4izphn6j
z?^9uWo~~hfrEit`WT#|zi*eJr^%8eQt^0U69nLQ=pWyyP@1`%`8xM^sq2?w|+T0t=
zW;~sAgze-+_80L&J-fRr*G83o%}G8a*!d_XLOe=Pef>LTv(os-+l6NE^I3%i)qiza
zzEJzedugqBRw0R{@#pTx$BXH%w?D9r*=<8O)15mf%&#<O8>F@hPr1r@Tj0(L7RR+O
zla9JYtA1WNp(=^1Bh+)^&6E>I4fk-ZGcsG#!@$7M+Ewwd*m>y#2FBA|izOHsG}09J
RZ#<Izn~8yefq^A53IGaLqyGQ^
literal 0
HcmV?d00001
diff --git a/conf/cleanex.vital-it.ch.conf.xz b/conf/cleanex.vital-it.ch.conf.xz
new file mode 100644
index 0000000000000000000000000000000000000000..9eff3c443fed5141355e7b414d86d36d25306fa4
GIT binary patch
literal 372
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqrFkN6Yj%AP&?NnF3y6Gb`hxJW96ZUCg
zoA0eMQ#e2S&96DN`Y$r>E?nzz`~KPQ>D^n`U*%X_D*am{^ysQJn{4d&Mp)D;UO6ms
ze&Lfqt8itB(!y^7oK`xr*5<jB)>gL5raZo^{?WYg)t#8LE4#jR7eyvL@Z3ISb(MpD
z^VA&{%fGVgt*-gHKkRI~i>vStU)BSAlD*Dsyr&pC`-0y&<w+@X=e2U`{TBFsI?TvU
z|K*jxDpQ+f-CLT3HIw?Ls632Z!LPu^Y-oN%+L?3fvhp8yUv+bMORm3TzhOi3#5=_$
zY8(DnC$0>#NMK-%={w$1r{?-4&3oRLZj)&TS6GT=W_jN^J|j!`yl~={dn^wQ=Pc#)
z5x%YY?Uli7#kkp<m?UnlX=uHBMdr<gg;UObe|CJ<nM?8eey?i(^{}%ujC&#jgMs|I
jT??|${AXZ1&vcQMf#I|{$H9$9(tk5CFfcH%L`DGs>*KCj
literal 0
HcmV?d00001
diff --git a/conf/cleanex2.conf.disabled.xz b/conf/cleanex2.conf.disabled.xz
new file mode 100644
index 0000000000000000000000000000000000000000..01ee2aca5460baf12ee997b3daf8a0c8dd4afe5a
GIT binary patch
literal 604
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqru$*I(iDi%z?NnF3y6Gb`hxJW96ZUCg
zoA0eMQxuqIXL!Nl!JQtZ`+Lm1_vP92?7p^C{$%^E<HpAqY&V#Gar4WMTP%A#^ye%%
z)Kju6->!4-`UzKLY?(jpoZ@tO@irc{z_w`{J=WYaWcQF=P$Q9g{94yX=aS!PX)adb
z5;r6!|4inn5OkLNptZAZgGkcO8I6niSRMD~%UrpBC;O=JzNW~@s}kKTGfKLTvE3=P
z-s%+9pjfYdE$mMn|CW+vY}!}PCbDaVsed@QRWt3Bk7&&;1E2FRlioSE9SC2~^HRH_
z&p3cnBBMpT_}hiO34WKw%+IAw-L0=|b5f9_lH<V4zzt7JrPlK-iroBE)Y@z6yZj!3
ztGi2HW$`Y$l&Z-mJ-PD?|IduC_3Kyf-YfW4teCOfH}Ox=O%3%kb#9Vs^J~3#G?>b~
zo>P(|Y*P4#?bS<_=7r&08crg=xTa3_F%v0>EIB?!W#2@NM{inqB(ylsY`#>g?>hCV
z)5	PycD`I3#lPS*O#HSZ^sE$B*Amzh`{<>O<h0V`;A~)`aH=UTiXRx#zn;LuN+#
z6f41%azfd)m!|)FpyO6^+~&=`e_gCor}(8G%AKXYP2|u$^Hg6gKCOj1M^%~ss2NKx
zTPA1p{6f`B<H@HU??3SJ+{8m1&2d7fPtV)kvo2yv8PCn)IUV~Sbg!FQ{r{)QWRqHl
zy*|=Gb?56|9~Q|A6zSXZE?D$zR^_{dUB>mBk60aGkPhHxnXx;}f`M@d%Xv-)hFfZz
SA8tI7{+o$`fq{V~G712}(-~s`
literal 0
HcmV?d00001
diff --git a/conf/epd.epfl.ch.conf b/conf/epd.epfl.ch.conf
new file mode 100644
index 0000000000..4f06b4261a
--- /dev/null
+++ b/conf/epd.epfl.ch.conf
@@ -0,0 +1,104 @@
+#OnlyRedirect to SSL VirtualHost
+<VirtualHost *:80>
+ ServerAdmin giovanna.ambrosini@epfl.ch
+ DocumentRoot /home/local/epd/htdocs
+ ServerName epd.epfl.ch
+ #ServerAlias epd2.vital-it.ch
+ # ServerAlias www.epd.isb-sib.ch epd.isb-sib.ch epdtest.vital-it.ch
+ ErrorLog logs/epd2-error_log
+ CustomLog logs/epd2-access_log common
+
+ # Redirect all access to the corresponding HTTPS site
+
+ RewriteEngine On
+ RewriteCond %{HTTPS} !on
+ RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
+</VirtualHost>
+
+#
+# Example config for SSL-VirtualHost
+#
+# SSL config will only be used if 'mod_ssl' has been activated (see '/etc/httpd/conf.modules.d/00-ssl.conf')
+#
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+ ServerAdmin giovanna.ambrosini@epfl.ch
+ DocumentRoot /home/local/epd/htdocs
+ ServerName epd.epfl.ch
+ #ServerAlias epd2.vital-it.ch
+ # ServerAlias www.epd.isb-sib.ch epd.isb-sib.ch epdtest.vital-it.ch
+
+ ScriptAlias /cgi-bin/ "/home/local/epd/cgi-bin/"
+ Alias /icons/ "/home/local/ccgweb/htdocs/icons/"
+
+ ErrorLog logs/epd2-ssl_error_log
+ CustomLog logs/epd2-ssl_access_log common
+
+
+ SSLEngine on
+ SSLProtocol All -SSLv2 -SSLv3
+ SSLHonorCipherOrder on
+ SSLCipherSuite HIGH:!aNULL:!MD5
+ SSLCertificateFile /etc/pki/tls/certs/epd.epfl.ch.crt.pem
+ SSLCertificateKeyFile /etc/pki/tls/private/epd.epfl.ch.key
+ SSLCertificateChainFile /etc/pki/tls/certs/epd.epfl.ch.crt.pem
+
+
+ # If completely SSL VirtualHost (!! http VHost redirects to https !!)
+ Header add Strict-Transport-Security "max-age=15768000"
+
+# # Optional SSL-specific options, needed to pass SSL_* variables to scripts
+# <Files ~ "\.(cgi|shtml|phtml|php3?)$">
+# SSLOptions +StdEnvVars
+# </Files>
+# <Directory "/var/vhosts/.../cgi-bin">
+# SSLOptions +StdEnvVars
+# </Directory>
+
+# Optional SSL-protocol adjustment
+# BrowserMatch "MSIE [2-5]" \
+# nokeepalive ssl-unclean-shutdown \
+# downgrade-1.0 force-response-1.0
+# Optional Per-Server Logging:
+# CustomLog /var/vhosts/.../sslhost1/log/sslhost1-ssl-request_log \
+# "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
+
+ <Directory "/home/local/epd/cgi-bin">
+ AllowOverride None
+ DirectoryIndex disabled
+ Options FollowSymLinks
+ DirectoryIndex index.html index.php
+ # Apache 2.4 style:
+ Require all granted
+ </Directory>
+ <Directory "/home/local/epd/htdocs">
+ AllowOverride None
+ DirectoryIndex disabled
+ Options FollowSymLinks
+ DirectoryIndex index.html index.php
+ # Apache 2.4 style:
+ Require all granted
+ </Directory>
+
+ # Example of how to use the 'tools/' directory to include an external
+ # framework into your URL tree:
+ #
+ # Alias /exttool /var/vhosts/.../sslhost1/tools/exttool/htdocs
+
+
+ #
+ # mod_security: Disable some rules
+ #
+ <IfModule mod_security2.c>
+ # Put mod_security into "Log-only" mode (VF, 2015.01.16)
+ # See also below...
+ SecRuleEngine DetectionOnly
+
+ #SecRuleRemoveById 958291 960020
+ # OR disable mod_security specifically for this site:
+ #SecRuleEngine Off
+ </IfModule>
+
+</VirtualHost>
+
+</IfModule>
diff --git a/conf/epd.vital-it.ch.conf.xz b/conf/epd.vital-it.ch.conf.xz
new file mode 100644
index 0000000000000000000000000000000000000000..5b5edcff06e6082ae79a0c7fdf2cba673fa59ed7
GIT binary patch
literal 368
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqrFl}Nqh-Huy?NnF3y6Gb`hxJW96ZUCg
zoA0eMQ#e2S&96DN`Y$r>E?nz1d!D4|SCd55@}!h6hBf9~|4etkw$2qa4tW)op7pwe
zt)y-qcSwD{yXu1a$jik&zfP4uxtuur^NS5f|IAq6>^j};qOeG^bmQKjjSau5N<Bj+
ztxLc0Fi+%S2xI@X?-9*nP8!}x(RmVCogtGMZyn!Wb6$X->#J3@bYhJde@y$TvQqm8
zZ)VSW@n2@oalIg$R<-SC*A)xrhF^c@eO^YHGwe2h;o*mBs@g){g)Vn_-rr&{I~CNW
z;>IT2@#Ocq#O&UWUd;1VGwgDOr!AHK)tAiwhWo|ukSzH_*B<k0TV&b$J`rB^-~U#o
z@1a%cF{c;DU-<q(B1%~%w^D9KA45Xif3B^K&p2IJ72T}&&6#(5J;PKjjqT;KD?TtV
co?+U|%E0ipYV);?N78>YF)%PNutY`y0LRy(>i_@%
literal 0
HcmV?d00001
diff --git a/conf/epd2.conf.disabled.xz b/conf/epd2.conf.disabled.xz
new file mode 100644
index 0000000000000000000000000000000000000000..b2adeba061face5ab13bfdf80e0a3b11fa9fbe36
GIT binary patch
literal 620
zcmexsUKJ6=z`*kC+7>q^21Q001_lO!^ATqruyQhK#xlr>cB(61-Sm-}!}=zl3H!9L
z&G%NBDGJQ9GrVB&;7*Uy{q5}wH$B(z{cw2w)`d56@?KTXXLXGH_y1TzwPtgE_wv7!
zY}`dTJig8U&gEaM%NfBrBjwMfpEfN9EiV}|qC91{U;Acjc1_9W1<RDwt9u1_mzSJ<
zJELHZ+?td-A4)0~3rv-IYq$0Cq&%^e_IDqwFmvyyyxMT8v-SAG;wQRBR(TfJ68}YO
z$yT%}S$}$%sM2J8P}^4a$Vc12pVJt%AFsA_$#!!5{K?{@MQ+v4sf{xiGzQGO`h0m}
zkz*~3bCS4sqi**dQ@z>Rspk*a@7^GM(Cv`X8?^}!ca-P2J&O)zesC~G^uW8EPWk9R
zO-DJ;S~lrRSG(Vf(cPT7;vTQrXYFZ^cX65>p1EXy;`#ZvT)ic(n`dnhJ*=sxE$(&i
zz~xT)osLav{!8|U^)-vK=`UC;=@gv2X|;yAO%Uh1ER`6cy=jjp{^YsN%P^^zqvXu(
zV|>@*EQ205C4D^~ck<+A<0E%|t(6XOa=&<V^OQ@Ib|&v@`1?XGDdPEQP35~KiVIX(
z!VmB0Oz(TXca8bA@WPb5M9Vu1d|J<|2hX<-y`T^hvnQ*vWSjT8j5WW57QeU}Tqy4%
zc`5wT{x$B^Ddum(TNICXJ-n?H>m#FNGT~6hEcaQrwKFxMnI*3I+AnOl{L$mJ+B_52
zBfheEOCN8W*Yn8lPH2tLq5J$bfnC=w|G&j=o7}qB<XDk&82A7Dt_l+d5GcK(ZzXnV
dmL3D+QI;+)28PLc%|A9CN&n3Rl4OaD0svdLAhrMi
literal 0
HcmV?d00001
--
GitLab