Difference between revisions of "Apache"
From Fixme.ch
| Line 2: | Line 2: | ||
== Services == | == Services == | ||
| − | * [https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security HSTS] is | + | * [https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security HSTS] is enabled in /etc/apache2/mods-enabled/headers.load with: |
<syntaxhighlight lang="apache"> | <syntaxhighlight lang="apache"> | ||
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains" | Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains" | ||
Revision as of 23:55, 14 March 2012
- This is part of the Internal_Server
Services
- HSTS is enabled in /etc/apache2/mods-enabled/headers.load with:
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
BUT HSTS is deactivated for now because we don't have a valid SSL certificate
- Reverse Proxy (0.0.0.0:80/443 -> 127.0.0.1:9001) for Etherpad configured in /etc/apache2/sites-available/1_Etherpad
